Mock Version: 1.3.4
Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'], uid=1000shell=Falselogger=<mockbuild.trace_decorator.getLog object at 0xffff829715f8>printOutput=Falsegid=425timeout=172800chrootPath='/var/lib/mock/f26-build-8521865-749792/root'env={'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'LANG': 'en_US.UTF-8', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash'}nspawn_args=[]user='mockbuild')
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'LANG': 'en_US.UTF-8', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash'} and shell False
Building target platforms: aarch64
Building for target aarch64
Wrote: /builddir/build/SRPMS/nss-3.30.2-1.1.fc26.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'], uid=1000shell=Falselogger=<mockbuild.trace_decorator.getLog object at 0xffff829715f8>printOutput=Falsegid=425timeout=172800chrootPath='/var/lib/mock/f26-build-8521865-749792/root'env={'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'LANG': 'en_US.UTF-8', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash'}nspawn_args=[]user='mockbuild')
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'TERM': 'vt100', 'HOSTNAME': 'mock', 'LANG': 'en_US.UTF-8', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'HOME': '/builddir', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash'} and shell False
Building target platforms: aarch64
Building for target aarch64
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.tFJGYc
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.30.2
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.30.2.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.30.2
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
Patch #2 (add-relro-linker-option.patch):
+ echo 'Patch #2 (add-relro-linker-option.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 177 (offset 3 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .transitional --fuzz=0
patching file ./nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .539183 --fuzz=0
patching file ./nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 969 (offset 16 lines).
patching file ./nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1679 (offset -32 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skipthem --fuzz=0
patching file ./nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certcgi/Makefile
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/gtests/pk11_gtest/Makefile
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 50 (offset 7 lines).
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/pk11wrap/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):
+ echo 'Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .1185708_3des --fuzz=0
patching file ./nss/lib/ssl/ssl3con.c
Hunk #1 succeeded at 108 (offset -10 lines).
+ pushd nss
~/build/BUILD/nss-3.30.2/nss ~/build/BUILD/nss-3.30.2
Patch #59 (nss-check-policy-file.patch):
+ echo 'Patch #59 (nss-check-policy-file.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Patch #62 (nss-skip-util-gtest.patch):
+ echo 'Patch #62 (nss-skip-util-gtest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skip_util_gtest --fuzz=0
patching file ./gtests/manifest.mn
Patch #63 (nss-gcc7.patch):
+ echo 'Patch #63 (nss-gcc7.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .gcc7 --fuzz=0
patching file lib/libpkix/pkix_pl_nss/pki/pkix_pl_ocsprequest.c
Patch #64 (nss-1328318-v8-3.30.patch):
+ echo 'Patch #64 (nss-1328318-v8-3.30.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .1328318 --fuzz=0
patching file gtests/nss_bogo_shim/nss_bogo_shim.cc
patching file gtests/ssl_gtest/tls_agent.cc
patching file lib/ssl/sslsock.c
patching file gtests/ssl_gtest/Makefile
patching file gtests/ssl_gtest/manifest.mn
patching file gtests/ssl_gtest/ssl_versionpolicy_unittest.cc
+ popd
~/build/BUILD/nss-3.30.2
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
+ /usr/bin/rm -rf ./nss/external_tests/util_gtests
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.1o2CVY
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ NSS_NO_PKCS11_BYPASS=1
+ export NSS_NO_PKCS11_BYPASS
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ /usr/bin/pkg-config --cflags-only-I nspr
++ sed s/-I//
+ NSPR_INCLUDE_DIR='/usr/include/nspr4 '
+ NSPR_LIB_DIR=/usr/lib64
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ sed s/-I//
++ /usr/bin/pkg-config --cflags-only-I nss-util
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export NSSUTIL_LIB_DIR=/usr/lib64
+ NSSUTIL_LIB_DIR=/usr/lib64
++ sed s/-I//
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export FREEBL_LIB_DIR=/usr/lib64
+ FREEBL_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ FREEBL_LIBS='-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ USE_64=1
+ export USE_64
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nsinstall.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pathsub.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o  -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
make[1]: Nothing to be done for 'libs'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/db.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 db.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_bigkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_func.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_func.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_log2.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_page.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_page.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash_buf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mktemp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dirent.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dirent.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/db.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_func.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_page.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dirent.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
+ export POLICY_FILE=nss.config
+ POLICY_FILE=nss.config
+ export POLICY_PATH=/etc/crypto-policies/back-ends
+ POLICY_PATH=/etc/crypto-policies/back-ends
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
true -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
true -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/arena.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 arena.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/error.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 error.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/errorval.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 errorval.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hashops.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hashops.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 libc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tracker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tracker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/item.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 item.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utf8.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 utf8.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/arena.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/error.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/errorval.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hashops.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tracker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/item.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utf8.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devslot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 devslot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 devtoken.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 devutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ckhelper.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devslot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 asymmkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certificate.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certificate.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cryptocontext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 symmkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 trustdomain.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tdcache.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certdecode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkistore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkibase.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pki3hack.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certificate.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_certselector.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_comcertselparams.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_crlselector.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_comcrlselparams.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_basicconstraintschecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_certchainchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_crlchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_ekuchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_expirationchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_namechainingchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_nameconstraintschecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_ocspchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_revocationmethod.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_revocationchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_policychecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_signaturechecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_targetcertchecker.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_trustanchor.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_procparams.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_valparams.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_resourcelimits.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_buildresult.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_policynode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_valresult.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_verifynode.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_store.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_validate.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_lifecycle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_build.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_tools.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_error.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_logger.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_errpaths.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_basicconstraints.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_cert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_certpolicyinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_certpolicymap.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_certpolicyqualifier.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_crl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_crldp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_crlentry.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_date.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_generalname.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_infoaccess.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_nameconstraints.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ocsprequest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ocspresponse.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_publickey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_x500name.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ocspcertid.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_bigint.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_bytearray.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_common.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_error.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_hashtable.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_lifecycle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_mem.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_monitorlock.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_mutex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_object.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_oid.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_primhash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_rwlock.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_string.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_aiamgr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_colcertstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_httpcertstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_httpdefaultclient.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldaptemplates.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldapcertstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldapresponse.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldaprequest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldapdefaultclient.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_nsscontext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_pk11certstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_socket.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 alg1485.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdb.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certdb.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certv3.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certv3.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certxutl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/genname.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 genname.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 stanpcertdb.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 polcyxtn.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secname.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secname.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xauthkid.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xbsconst.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xconst.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xconst.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdb.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certv3.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/genname.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secname.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xconst.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certhtml.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certreq.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certreq.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlv2.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocsp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocspsig.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certhigh.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certvfy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certvfypkix.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xcrldist.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certreq.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dev3hack.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11akey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11auth.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11cert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11cxt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11err.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11kea.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11load.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11mech.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11merge.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11nobj.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11obj.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pars.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pbe.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pk12.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pqg.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11sdr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11skey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11slot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11util.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sechash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sechash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/seckey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 seckey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secsign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secsign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secvfy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dsautil.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sechash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/seckey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secsign.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nssinit.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nssoptions.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nssver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 utilwrap.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certreq.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sechash.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/seckey.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secsign.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdb.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certv3.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crl.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/genname.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secname.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xconst.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certificate.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devslot.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devutil.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/arena.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/error.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/errorval.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hashops.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libc.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tracker.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/item.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utf8.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dtlscon.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/prelib.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 prelib.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3con.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3gthr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslauth.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslcon.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssldef.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslenum.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslerr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslerrstrs.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslinit.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3ext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3exthandle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslmutex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslnonce.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslreveal.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslsecur.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslsnce.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslsock.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssltrace.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/authcert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 authcert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmpcert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3ecc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tls13con.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tls13exthandle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tls13hkdf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslcert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslgrp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 unix_err.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o    -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certread.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certread.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7common.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7common.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7create.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7create.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7decode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7encode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7local.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7local.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmime.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secmime.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certread.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7common.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7create.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7local.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmime.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12local.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12local.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12creat.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12dec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12plcy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12tmpl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12e.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12e.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12d.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12d.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12local.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12e.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12d.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsarray.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsasn1.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsattr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmscinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmscipher.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsdecode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsdigdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsdigest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsencdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsencode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsenvdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsmessage.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmspubkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsrecinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsreclist.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmssigdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmssiginfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsudf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 smimemessage.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 smimeutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimever.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 smimever.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimever.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smime.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smime.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimever.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12local.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12e.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12d.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certread.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7common.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7create.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7local.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmime.o   -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfenc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmftmpl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfreq.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfpop.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfdec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfget.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfcont.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfasn1.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfresp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfrec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfchal.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/servget.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 servget.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 encutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcli.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 respcli.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 respcmn.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/challcli.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 challcli.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 asn1cmn.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/servget.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcli.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/challcli.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarsign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jar.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jar-ds.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarfile.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarint.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarint.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarint.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crypto.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crypto.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/find.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 find.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instance.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 instance.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mutex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mutex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/object.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 object.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/session.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 session.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sessobj.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/slot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 slot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/token.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 token.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/wrap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 wrap.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mechanism.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crypto.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/find.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instance.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/object.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/session.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/slot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/token.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/wrap.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/anchor.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 anchor.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/constants.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 constants.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bfind.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bfind.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/binst.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 binst.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bobject.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bobject.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bsession.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bsession.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bslot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bslot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoken.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 btoken.c
perl certdata.perl certdata.txt Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/anchor.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/constants.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bfind.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/binst.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bobject.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bsession.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bslot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoken.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o   ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw/builtins'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nsssysinit.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 basicutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secpwd.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derprint.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 derprint.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 moreoids.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pppolicy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ffs.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ffs.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11table.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derprint.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ffs.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 shlibsign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o  -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mangle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle.o  -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 addbuiltin.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 atob.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 btoa.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certcgi.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 keystuff.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 chktest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlgen_lex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlgen.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 testcrmf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dbtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 derdump.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 digest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 httpserv.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 listsuites.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 makepqg.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 multinit.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocspclnt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocspresp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 oidcalc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7content.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7env.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7sign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7verify.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk12util.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11ectest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11gcmtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11mode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk1sign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pwdecrypt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 rsaperf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 defkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/defkey.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sdrtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 selfserv.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 signtool.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certgen.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certgen.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/javascript.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 javascript.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/util.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 util.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/verify.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 verify.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/zip.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 zip.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certgen.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/javascript.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sign.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/util.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/verify.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/zip.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 signver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk7print.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssltap.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 strsclnt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 symkeyutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 baddbdir.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 conflict.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dertimetest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 encodeinttest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nonspr10.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 remtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secmodtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tstclnt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 vfychain.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 vfyserv.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 vfyutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 modutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instsec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 instsec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 install.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/installparse.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 installparse.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 install-ds.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 lex.Pk11Install_yy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instsec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/installparse.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix-errcodes.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x gtest/src/gtest-all.cc
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
g++ -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x gtests.cc
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x der_getint_unittest.cc
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_gtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I../../cpputil -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_gtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/config.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/config.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/gtests'
make: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss'
+ unset NSS_BLTEST_NOT_AVAILABLE
~/build/BUILD/nss-3.30.2/nss ~/build/BUILD/nss-3.30.2
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.30.2/nss/doc'
+ popd
~/build/BUILD/nss-3.30.2
+ /usr/bin/mkdir -p ./dist/docs/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/docs/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib64,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.30.2,g -e s,%NSPR_VERSION%,4.14.0,g -e s,%NSSUTIL_VERSION%,3.30.2,g -e s,%SOFTOKEN_VERSION%,3.30.2,g
++ cat nss/lib/nss/nss.h
++ awk '{print $3}'
++ grep '#define.*NSS_VMAJOR'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMINOR'
++ awk '{print $3}'
+ NSS_VMINOR=30
++ grep '#define.*NSS_VPATCH'
++ awk '{print $3}'
++ cat nss/lib/nss/nss.h
+ NSS_VPATCH=2
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib64,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,30,g -e s,@MOD_PATCH_VERSION@,2,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.30.2
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.DV2151
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64
++ dirname /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64
+ cd nss-3.30.2
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/pkgconfig
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/doc/nss-tools
+ mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/nss/unsupported-tools
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/lib64/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/setup-nsssysinit.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/certutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/cmsutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/crlutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/derdump.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/modutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/pk12util.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/signtool.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/signver.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/ssltap.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/vfychain.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man1/vfyserv.1
+ install -c -m 644 ./dist/docs/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/doc/nss-tools/pp.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/man/man5/secmod.db.5
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 50000000 /builddir/build/BUILD/nss-3.30.2
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/bin/certutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/btoa
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/listsuites
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/atob
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/libnsssysinit.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/lib64/libssl3.so
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.30.2/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.30.2/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25235 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/brp-python-hardlink
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.LXlyRj
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ '[' 0 -eq 1 ']'
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ USE_64=1
+ export USE_64
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export NSS_IGNORE_SYSTEM_POLICY=1
+ NSS_IGNORE_SYSTEM_POLICY=1
++ find ./nss/tests
++ grep -c ' '
9505
selfserv_9505
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
+ MYRAND=9505
+ echo 9505
+ RANDSERV=selfserv_9505
+ echo selfserv_9505
++ ls -d ./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
+ echo ./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
++ pwd
~/build/BUILD/nss-3.30.2 ~/build/BUILD/nss-3.30.2
+ pushd /builddir/build/BUILD/nss-3.30.2
+ cd ./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
+ ln -s selfserv selfserv_9505
~/build/BUILD/nss-3.30.2
+ popd
+ find ./nss/tests -type f
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9505/g'
+ grep -v '\.db$'
+ grep -vw CVS
+ grep -v '\.crt$'
+ xargs grep -lw selfserv
+ grep -v '\.crl$'
+ killall selfserv_9505
selfserv_9505: no process found
+ :
+ rm -rf ./tests_results
+ pushd ./nss/tests/
~/build/BUILD/nss-3.30.2/nss/tests ~/build/BUILD/nss-3.30.2
++ echo
+ SKIP_NSS_TEST_SUITE=
+ '[' x == x ']'
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9505
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.30.2/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.30.2/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin)
********************************************
   Platform: Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin against LIB /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Wed May 10 11:39:53 UTC 2017
TIMESTAMP libpkix END: Wed May 10 11:39:53 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Wed May 10 11:39:53 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #70: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #71: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #72: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #73: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #74: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #75: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #76: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #77: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #99: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #100: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #101: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #102: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #104: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #105: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #106: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #107: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:f3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:16 2017
            Not After : Thu Aug 10 11:40:16 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:ab:9c:ae:4a:84:6a:0e:df:53:bf:11:94:12:93:df:
                    43:69:36:21:15:14:d1:be:5f:b8:a0:09:f7:f3:ec:2f:
                    ed:64:09:05:16:08:98:dd:8b:3c:b1:2f:50:75:66:33:
                    a3:cd:5d:44:9c:36:29:df:ac:b1:33:85:39:ed:ee:fc:
                    e8:78:57:67:7d:73:64:f1:1b:5a:f6:d2:c1:12:ee:3d:
                    5e:d2:4f:d9:ad:a4:e5:73:3c:64:48:d3:94:ad:83:30:
                    82:0b:40:1c:43:24:14:f0:5f:d0:1d:31:e0:60:63:d1:
                    ae:b4:05:8e:24:38:32:44:e3:9b:ea:7c:06:fa:b9:b0:
                    d8:1d:ce:9e:64:b7:62:41:3e:2d:b4:bc:d6:ce:c7:de:
                    27:84:bc:c6:af:64:9d:fb:bb:ed:64:5a:fe:3b:fe:ef:
                    16:a4:42:0a:f7:14:2d:99:01:3a:1a:bc:0c:5b:fb:48:
                    18:a7:bd:90:d1:b3:6d:55:66:01:90:f1:d6:8c:46:31:
                    7e:57:57:23:42:91:ed:5c:b9:08:a1:61:98:b9:b3:9d:
                    0f:d5:9e:02:a0:c4:8d:f2:b7:35:5f:c6:e1:83:ca:4e:
                    5e:df:d1:e6:4f:3d:6c:01:e8:71:b1:6a:80:b3:44:7f:
                    8c:80:a1:be:39:27:aa:85:96:fc:6d:ac:c3:90:9f:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:6d:b4:45:b1:b6:c9:f1:1b:8e:02:a4:a1:58:32:4b:
        0d:e9:2f:52:c7:4b:68:99:0e:dd:cd:72:78:03:33:6d:
        45:b8:01:b4:a4:cc:02:61:b9:65:bc:50:b1:bd:84:05:
        1d:2c:79:c4:5e:4b:e0:58:54:8d:05:97:0d:2b:4e:2c:
        d5:34:21:f0:dc:ff:17:94:ca:89:36:93:cb:2a:ca:64:
        e6:40:17:97:7f:de:a3:9c:0b:27:67:58:ca:88:6f:91:
        82:78:45:cb:00:5a:af:6d:2d:29:4d:fc:41:17:a3:c6:
        6b:f8:17:7f:fb:78:53:75:95:64:2c:79:a7:19:07:c1:
        b1:1a:37:44:6b:56:0d:3f:c0:2f:c4:e1:de:b9:5b:4a:
        75:d1:52:73:bc:32:5f:82:53:df:37:6a:74:59:bf:78:
        26:6c:92:bd:a7:16:86:38:b2:27:ef:b0:b0:7b:51:59:
        b3:c8:b9:e2:43:a8:70:5f:30:68:bc:e4:53:03:1c:a9:
        ea:4e:ef:bb:09:95:e7:96:1c:cf:6e:5d:d5:c0:5b:d0:
        67:23:1b:3a:14:a6:dd:03:fb:cd:b0:7f:55:3a:72:11:
        32:3d:89:b0:3e:17:d6:8f:1c:bf:b8:1d:a1:99:33:75:
        f9:5e:7a:1a:fe:7b:1d:bc:c9:01:76:60:17:32:1b:e6
    Fingerprint (SHA-256):
        A0:7A:EB:EA:47:7F:85:F3:F5:B2:19:CD:CF:81:19:81:71:8D:8B:E1:07:90:B9:58:6E:9F:74:AE:4A:D9:F8:3F
    Fingerprint (SHA1):
        C9:A4:4A:0E:22:7A:11:67:36:97:08:62:BC:13:E3:71:43:73:79:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:f4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:17 2017
            Not After : Thu Aug 10 11:40:17 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:c9:62:09:26:41:38:0f:ab:27:ac:8e:82:72:94:a0:
                    5d:35:97:96:e2:49:03:84:c7:2b:9f:38:e5:b1:01:65:
                    51:89:84:99:39:05:04:8b:69:7d:d2:0f:f9:e9:c3:dc:
                    9a:d2:7d:0e:a6:a7:83:60:66:12:31:92:cd:c5:67:fc:
                    7c:d7:5b:fe:b2:e3:f8:60:03:00:a8:d3:f4:d4:41:c4:
                    7e:d8:63:58:bb:00:f6:99:2d:59:d2:98:bd:46:ec:c3:
                    cb:16:a3:46:9d:be:89:77:77:76:fe:4f:df:5d:f1:ad:
                    4a:a9:06:5f:23:23:7d:42:26:c4:3c:b8:93:21:f2:46:
                    95:3c:89:26:45:36:a7:4b:1d:ca:cf:68:85:f1:ac:77:
                    e1:32:4e:3e:6a:40:a3:00:25:bf:85:e6:ff:f2:31:22:
                    52:df:4f:d0:8d:fb:5c:f0:7e:6c:ff:33:c8:23:5c:08:
                    cf:1a:a1:97:d8:d7:e9:41:e1:1d:36:b5:87:6c:16:dd:
                    01:ad:2d:8f:9d:79:93:08:3c:3d:b2:b3:4d:3b:6e:9a:
                    d0:30:91:17:54:4a:b3:4d:d9:db:a3:c1:57:ee:b2:65:
                    f3:66:ea:fd:69:92:75:8b:0e:10:f3:36:22:7f:ef:18:
                    16:48:df:b7:fc:2d:b1:cd:c5:1a:25:fb:07:72:d9:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:c4:9c:3e:0d:d9:e5:08:ac:59:34:36:ff:f5:50:b1:
        27:8d:6c:a4:16:88:c5:01:84:d1:c0:6b:35:e7:72:df:
        78:b9:70:33:d1:5f:34:44:71:e0:4f:44:e6:72:22:53:
        16:3e:5f:0e:da:d0:a9:68:f8:0e:78:7a:71:cb:35:d9:
        be:90:01:0e:18:c6:5c:3b:35:2a:a8:a1:27:04:44:a1:
        58:4b:89:b7:83:03:83:24:b9:bd:da:75:8e:dc:87:03:
        a3:73:e5:73:f8:ee:75:6e:f6:89:6f:77:89:98:d4:c9:
        2a:70:d3:34:05:ee:ea:4b:64:2b:0e:b1:a7:fe:66:b5:
        e4:f3:cf:d2:cc:99:62:4d:8f:8a:e2:8a:e3:63:6a:d9:
        b9:4d:d4:a9:ef:e8:85:6a:cf:11:b3:40:52:ab:96:f6:
        cc:bb:09:43:04:43:af:d0:4f:83:21:48:89:62:e0:b0:
        66:7e:e5:cf:3a:16:74:78:f2:b5:ad:45:fe:4d:14:87:
        a7:c1:d4:c9:a2:69:01:02:47:eb:8d:1e:6f:d3:8b:84:
        41:be:aa:64:c1:64:80:6f:4d:77:6b:c5:a9:a1:e2:03:
        88:23:1b:62:b6:51:1b:86:02:8b:a1:e2:4e:f3:3a:7c:
        1f:a5:dd:87:b0:3f:00:bc:c5:fb:fb:39:f3:b2:f6:c5
    Fingerprint (SHA-256):
        F7:21:92:46:12:8E:67:27:C4:C6:4D:BA:D8:E1:BC:24:4B:61:B5:C1:53:AC:BE:D2:81:3B:02:57:44:03:3F:58
    Fingerprint (SHA1):
        6E:E7:47:4C:AC:50:26:24:74:BE:6B:04:D7:CF:32:CB:FF:10:EE:82
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:f6
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:17 2017
            Not After : Thu Aug 10 11:40:17 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:f8:bc:97:18:3e:f9:83:10:9a:f9:30:78:0c:b3:15:
                    85:09:d7:33:cf:37:1d:ce:d3:91:80:db:8a:72:ee:66:
                    1d:a2:fb:4b:fc:2c:58:bd:ab:8f:38:95:0a:57:52:37:
                    f1:8a:b7:24:3a:c4:5b:ed:36:03:19:5d:b5:d3:8f:58:
                    ae:ec:ea:e1:75:b9:2c:69:77:e2:b9:06:4d:dc:b7:e5:
                    d5:ea:f6:ce:b0:04:38:f1:7d:c3:33:ae:4c:f8:1e:fe:
                    47:08:ec:4d:71:d6:08:a8:0c:eb:73:57:c8:02:12:96:
                    fa:d1:77:71:f5:b5:02:6a:a9:e1:39:69:a8:2d:82:e5:
                    2d:1b:de:5c:9c:7b:ff:5b:bb:93:8f:65:20:6f:30:b2:
                    53:98:e6:31:fb:ab:3d:d8:ac:b6:cf:16:ca:fc:24:f0:
                    ff:cd:64:bd:8b:f8:ec:28:14:db:2d:3d:94:bc:d8:74:
                    69:3f:bf:31:c1:4f:29:0c:13:46:af:bc:d3:8d:09:2d:
                    cd:99:18:da:72:0c:82:1c:4d:57:18:91:d2:ea:47:e6:
                    08:6e:10:b0:d3:3e:ed:f1:11:3e:99:03:61:8c:09:67:
                    6b:c1:41:7d:83:46:30:da:6b:ec:76:02:b5:b6:c4:45:
                    9d:c3:3f:5c:a6:0c:ff:7b:93:45:1b:9e:b6:cf:93:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:26:2b:52:9f:0f:66:07:f1:b5:87:32:19:1b:c5:6e:
        32:d8:54:0f:61:ce:d4:89:33:56:ee:82:d5:d5:48:ee:
        02:13:18:e4:ee:68:50:c5:70:33:27:2a:b7:52:76:c0:
        d8:08:3c:02:72:6c:74:3e:6a:b3:28:20:79:97:87:d5:
        92:39:0b:99:30:b2:d4:87:c8:74:13:67:4a:a4:3e:f0:
        ec:bb:80:6a:f2:bb:4e:4f:c6:fa:90:05:d5:1a:8f:4e:
        f1:15:f7:ae:f7:a5:56:fd:45:c8:fa:6f:99:7e:ef:b0:
        b7:d7:8e:db:12:6b:2b:04:aa:7d:7e:b8:4f:ab:ff:01:
        4d:1e:eb:35:08:4a:47:f4:83:21:fb:d9:d9:56:b7:2d:
        31:a5:22:11:e5:ee:9d:e9:52:d8:89:b1:83:f5:b2:45:
        66:69:e7:4a:93:89:b4:41:93:43:c3:b8:ff:fb:50:9f:
        ae:e3:a9:2d:5a:be:27:04:ad:86:04:a2:94:b9:9a:67:
        96:d8:09:99:be:1f:01:6b:5b:95:13:70:2f:78:22:3f:
        8f:4c:4d:e1:c1:d2:47:5b:29:da:e4:3c:3c:50:da:96:
        4f:07:c7:de:e3:57:d8:06:c6:85:6c:25:c9:ba:1c:0a:
        3a:17:87:6a:38:bd:f1:7c:77:11:bf:c0:74:d4:bc:47
    Fingerprint (SHA-256):
        8F:D5:1D:0A:90:E2:3F:35:DE:7F:13:71:B5:64:34:55:70:81:42:BE:A9:43:C9:C3:11:DB:EA:28:09:42:D8:86
    Fingerprint (SHA1):
        E7:CF:9A:59:D6:3C:8B:A0:4D:24:04:A9:3D:D1:79:7C:D2:B9:44:ED
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:f7
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:18 2017
            Not After : Thu Aug 10 11:40:18 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:1a:e3:ec:5a:11:c1:26:32:ac:4b:92:a2:77:d8:26:
                    87:64:0c:4e:49:be:21:b9:25:59:14:c0:07:c2:06:0b:
                    fc:67:6c:dd:d4:8a:09:83:ae:9c:e1:64:7e:80:c6:79:
                    2b:d1:1e:86:8f:8c:e4:c4:09:d8:d2:b8:f9:64:02:cb:
                    13:e4:a9:a8:a9:a1:a7:a8:74:ad:67:26:dd:f2:c7:0f:
                    26:6d:f1:a3:4e:e3:d5:2e:3a:1f:71:28:d0:d2:b5:66:
                    e0:72:24:ae:cb:42:6e:32:5f:49:da:65:34:cf:ed:44:
                    a6:fe:46:b7:83:27:d2:cc:c4:4b:0c:32:15:cc:3a:14:
                    ac:42:ce:b4:a1:9d:bc:2d:38:67:83:17:85:1d:d9:43:
                    77:60:9f:e0:71:6b:70:28:fa:5e:0a:8f:67:e1:5b:9c:
                    19:99:4d:f8:18:e5:4f:36:d4:f3:26:10:65:1b:d3:52:
                    c9:6b:50:20:e5:97:ca:cf:20:b8:3b:98:da:48:a7:d9:
                    ee:e4:05:b8:68:78:ce:36:25:8b:1c:c9:82:9e:10:08:
                    29:cc:6a:3e:e8:b6:bf:47:7c:64:24:f0:51:bd:bf:d4:
                    ff:7a:e8:17:bd:33:01:8e:53:96:e2:a0:ce:f6:f5:14:
                    8e:f5:e7:ca:e4:f5:0a:05:a4:11:25:7a:d0:69:4d:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:6b:91:d2:b8:a2:8c:6e:62:7e:7b:86:13:12:bc:e0:
        df:82:3d:29:8e:ad:77:bc:07:5a:71:f5:2a:4a:24:2b:
        9e:74:fc:25:ec:61:99:00:bd:6c:09:f7:17:80:08:f5:
        5c:1d:dc:cc:19:09:93:d5:72:86:c6:db:7e:38:9e:b4:
        20:45:70:2f:46:08:0c:30:83:06:af:76:23:4a:4c:92:
        a0:f0:1d:5c:83:7e:26:f4:a8:d4:5e:b0:75:33:2c:a0:
        34:7b:42:4a:48:8a:59:6d:2b:fc:59:38:62:f6:6a:7d:
        5a:ff:c9:e1:2a:0b:2f:4e:73:a4:b7:52:f9:c8:69:fb:
        d4:3c:27:4d:7a:f5:b8:fb:4d:3b:de:15:ee:74:27:55:
        de:c3:ed:92:93:44:0b:89:fc:b4:97:22:8e:8e:46:60:
        f7:f5:3c:44:17:37:ce:b5:69:2f:4b:35:a3:3b:af:d5:
        f0:97:61:64:d7:eb:b6:56:96:af:cc:fe:01:55:59:ae:
        6d:6d:20:9d:cb:ee:80:53:90:33:b8:d3:dc:c1:99:3d:
        71:b0:83:73:ec:f4:e1:f6:56:55:18:9c:e0:12:ab:3c:
        7a:40:31:c2:ef:8c:d5:b7:f2:dc:fd:a7:ca:b9:94:ad:
        a4:22:d6:8a:a3:28:60:33:10:b9:ce:04:dc:04:9b:b8
    Fingerprint (SHA-256):
        C7:EB:8D:14:8E:D8:70:AA:5F:70:FC:D3:95:7D:D7:8A:95:CF:4E:24:9C:D3:5D:BB:3B:06:2D:7B:3C:51:7D:F0
    Fingerprint (SHA1):
        06:82:FF:51:E8:23:E4:A1:F7:A5:91:71:01:A0:87:EA:C1:D7:C6:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:f8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:18 2017
            Not After : Thu Aug 10 11:40:18 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:70:41:7b:86:10:a3:ef:92:cd:84:e2:af:1f:14:ab:
                    b5:b2:0f:1a:99:62:89:94:92:ae:f0:d8:80:77:7f:cb:
                    11:af:34:a6:5c:85:3d:5b:a4:cc:1b:19:00:3d:42:9f:
                    c6:bc:e0:79:55:e6:64:0e:59:94:65:65:89:21:3a:4b:
                    bf:26:d7:ed:fb:a3:0e:a9:b8:66:1e:57:06:ec:0e:c5:
                    2b:83:60:95:82:46:62:b9:88:4d:6c:2d:5c:b0:4b:5a:
                    d9:b9:d4:49:c9:03:aa:df:72:27:ab:ba:99:59:21:b2:
                    2a:7c:ad:91:2b:ec:e9:cc:91:e9:26:1b:81:95:68:69:
                    83:58:cb:e2:6c:14:9e:f8:5b:0b:d9:5c:ac:61:d6:91:
                    f6:81:54:4f:69:41:a8:a4:d5:35:f3:88:49:ab:cd:b8:
                    f5:ed:3e:7a:f0:cb:0a:a7:5c:3e:de:26:40:44:ed:49:
                    86:57:24:88:12:8c:f5:29:af:b9:06:21:32:3f:7f:38:
                    2a:c2:7e:fa:7c:0e:ca:a8:f9:2e:fb:62:e1:c2:38:33:
                    b4:65:85:f9:66:27:95:29:95:62:51:58:b2:7e:20:3e:
                    b7:c1:a1:9c:0a:57:cf:45:b8:27:bb:fe:ab:a3:31:25:
                    6d:25:9f:97:c2:06:5b:4f:45:48:f1:93:08:69:e5:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:50:2a:10:fe:a8:6d:3c:b0:a9:1a:03:12:be:f8:79:
        06:f4:4b:ae:ff:d8:05:de:e8:d7:1f:62:dc:39:8d:47:
        8f:9c:8b:2f:62:4c:d5:59:e4:c3:01:7b:2e:f3:8d:9a:
        62:1b:1e:73:3e:a2:96:b1:eb:c7:81:fe:95:52:f2:f0:
        9b:b6:0d:5f:43:e8:9f:7e:0d:a3:20:df:4d:8e:b3:5d:
        9d:12:7f:d1:95:48:89:78:27:c9:3d:73:08:c1:c6:d2:
        69:80:aa:30:cd:28:41:5e:25:52:8f:75:a1:3c:c1:b5:
        ce:cb:32:b9:2f:0f:e7:67:44:3a:fc:ee:9c:bc:8d:5e:
        0c:4b:76:4e:e9:25:64:07:77:1a:18:6c:b5:82:d0:00:
        e5:6b:35:a0:34:08:4d:8d:61:0e:4d:22:7b:4d:22:69:
        0d:88:2c:99:a6:21:47:68:4d:bf:ff:02:2f:39:3d:9d:
        03:9a:b4:cf:a7:b1:cd:b2:ff:b8:38:0a:b8:dc:57:b6:
        5c:c4:00:ed:95:dd:33:68:bc:ea:a6:6b:90:e0:73:ec:
        d9:d0:64:e2:91:d5:56:14:03:5e:61:3b:3e:52:26:1f:
        f9:c6:e6:32:6d:7a:54:91:1d:e7:32:19:04:6b:55:ac:
        1a:a6:6e:68:d2:ef:c6:db:bb:3c:8a:6c:58:95:e3:00
    Fingerprint (SHA-256):
        4C:14:0B:9A:05:04:A7:41:E6:AB:DE:DD:E3:94:E1:D7:35:29:94:B2:AE:4C:76:56:8C:0E:AF:B0:98:C5:44:F9
    Fingerprint (SHA1):
        6C:DE:2A:95:3C:11:CD:D9:8E:54:7B:46:D8:3F:44:1F:F6:A3:0F:E9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:f9
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:19 2017
            Not After : Thu Aug 10 11:40:19 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:10:36:18:7f:b4:c5:3d:4f:18:57:7f:f3:b1:8f:9a:
                    16:87:d5:2f:02:1b:d3:6b:04:43:0c:36:ca:0d:dd:d3:
                    cd:fe:c6:6e:66:41:49:f0:26:bc:7f:29:3f:cc:c9:53:
                    8c:8e:c1:c6:83:26:50:b5:f0:70:40:2d:e1:18:41:fe:
                    15:7f:6a:2e:96:39:75:e2:21:18:3a:aa:7b:a2:e9:3c:
                    f4:63:da:46:5f:5f:a2:03:5c:f9:50:1c:76:3d:35:59:
                    e5:4f:6c:41:93:42:e1:dd:e7:1e:cc:fd:f6:fc:2f:51:
                    c8:29:7f:6a:cd:d1:9c:99:4d:5f:e9:0a:31:be:0a:10:
                    ff:45:b7:35:d1:53:80:31:21:d1:f3:f0:8d:48:a6:cf:
                    e8:ca:ea:9d:eb:e7:af:8f:5d:0c:01:bf:d1:93:ee:bf:
                    86:8e:f6:c0:1d:5c:b7:c9:ad:48:5d:c9:ad:51:7e:e3:
                    c7:a8:29:ca:6e:36:1e:d5:65:c4:68:3f:2c:77:a4:16:
                    47:05:d9:6d:07:91:d4:79:d2:f4:a8:10:3c:4c:1b:cc:
                    a9:1c:3d:ae:48:94:88:29:be:bf:93:ea:da:e1:72:3a:
                    da:26:69:05:48:3b:37:46:82:bd:08:63:ad:3a:5d:b9:
                    a9:0a:72:eb:9d:fb:14:21:1d:f8:b8:25:10:20:43:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:33:65:f8:df:d2:15:f9:3d:6a:57:19:69:bd:c1:81:
        c9:8e:ee:54:90:37:66:09:53:d6:4b:30:4f:90:ea:ad:
        83:ed:97:d2:78:98:4f:6d:b7:8a:27:da:73:8a:7a:be:
        f4:4f:bd:ae:69:6d:9d:77:07:16:b7:54:b7:86:fb:ae:
        f1:c9:02:4a:51:bc:37:31:8a:47:08:03:47:b5:95:b0:
        68:ae:7a:f9:d1:02:65:68:03:0c:84:c8:8c:66:6a:d8:
        de:b5:86:ad:f7:f6:3d:da:3f:9a:21:bf:25:37:52:f4:
        1d:54:92:65:68:13:d8:d9:03:a1:98:8c:d2:bb:4d:1b:
        fc:5e:3b:0e:80:7a:73:7c:be:c7:b9:9d:1e:c6:89:56:
        d6:ce:28:35:54:02:a7:85:42:98:ac:ae:4d:bd:2a:c4:
        50:6e:27:32:60:8d:0d:7d:b3:d1:35:81:2b:f0:e1:ad:
        8a:ac:d2:ee:a2:51:fc:6d:a4:63:32:ba:f9:39:e0:ff:
        e9:53:9e:70:fa:58:3f:22:04:31:39:0d:6a:04:06:0e:
        c1:30:18:5f:1a:11:c4:f5:61:af:39:58:02:e4:c7:a2:
        c3:f8:1c:e5:ad:ce:91:c0:8d:bb:b2:a8:13:9b:7e:50:
        23:fa:f0:d4:cf:19:2b:e4:fd:b4:d6:29:95:d8:39:da
    Fingerprint (SHA-256):
        94:96:14:55:5A:54:D1:8A:26:04:36:FD:78:03:F4:0D:18:83:D0:25:10:08:34:39:59:0A:81:56:73:C0:45:52
    Fingerprint (SHA1):
        51:A5:09:E1:29:C0:5C:F1:0A:B2:02:A1:F8:E7:7A:B3:E2:23:BB:8F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:fa
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:19 2017
            Not After : Thu Aug 10 11:40:19 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:df:aa:49:d5:cf:af:03:a4:b6:2f:eb:47:ad:f7:85:
                    f4:33:2a:7d:be:88:13:9e:0b:de:55:fd:65:f4:16:2b:
                    a6:a0:6e:2a:c0:12:d7:ce:b1:28:cd:fe:b4:67:df:58:
                    3b:fb:08:db:09:ca:1a:db:f1:06:51:ac:24:71:06:80:
                    2f:c1:fb:d6:c6:24:3f:c2:fb:55:ae:b8:a1:af:cf:47:
                    b0:e3:1e:bb:8a:73:85:8a:45:9f:e9:dc:8e:82:65:46:
                    09:4a:f3:36:b2:d9:68:8f:71:fa:34:ed:e2:43:47:71:
                    f9:1b:3e:9b:30:7a:7b:0c:a0:5d:3b:92:c8:63:e0:86:
                    fe:d7:5c:2a:a3:b3:6b:2f:75:90:2b:93:04:6d:e4:02:
                    fd:3f:c8:d4:ee:76:9c:2b:03:42:6e:57:72:8f:2b:f5:
                    cc:de:1c:06:cf:59:d4:e4:c0:13:2d:c0:99:90:86:a9:
                    cc:9f:01:38:13:68:99:46:f0:f4:dd:68:7d:4e:a6:5a:
                    8b:1e:dd:1e:ac:4b:5a:5b:c6:0e:81:d1:3c:33:ea:89:
                    07:5e:1b:15:3a:3a:bf:c9:6e:c6:bd:12:94:88:3f:9b:
                    17:0d:7f:ff:00:c1:d0:9a:4b:da:25:cb:b4:7a:3e:7a:
                    0a:62:e8:7b:6d:27:ce:25:eb:dc:94:13:d0:b9:b8:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:f1:7f:e5:68:c1:8e:91:91:cd:0e:88:27:9e:71:29:
        a0:8a:89:be:f9:7e:f5:4f:5c:fb:5c:69:c8:01:8c:02:
        92:d5:37:03:e9:ad:1a:da:5a:22:31:3e:86:f5:6c:a2:
        59:28:48:06:97:22:fe:b8:f3:02:a1:0f:3a:3e:96:7e:
        74:2d:bf:2f:7c:92:a1:29:6c:c3:0c:8f:40:f0:c6:99:
        50:13:25:e7:41:02:20:a5:e5:ec:3c:68:7c:20:42:37:
        29:fc:cd:68:0d:14:92:22:da:8c:7a:c0:f9:84:37:4e:
        33:3f:4a:a3:fc:54:8f:14:0d:ff:0e:cb:1a:6b:9f:76:
        12:68:fe:a6:5e:e6:8f:c0:e5:55:1a:13:0b:5a:55:29:
        92:c1:65:38:8b:72:a9:49:97:2a:0b:8d:f9:b8:6c:c0:
        dd:3e:ed:80:a9:d8:7c:9e:a8:0d:c3:76:40:5c:58:71:
        28:eb:fd:ec:67:34:16:d7:3c:54:d7:7e:31:22:a3:10:
        05:7e:25:41:0a:05:b2:52:d9:f0:ce:9e:75:2c:3d:d4:
        a9:70:dc:63:be:03:6f:08:9f:1a:78:ef:8f:d4:a4:3a:
        44:32:7a:e2:99:b0:e4:7a:10:54:7f:35:aa:a6:d9:39:
        94:52:5b:b3:bd:c0:8e:d9:38:2a:56:37:90:35:3d:a4
    Fingerprint (SHA-256):
        4B:D5:E6:50:07:D7:62:C9:66:EE:C8:9A:1E:9B:B0:14:8A:4D:4B:64:EC:EC:64:3D:C8:13:B3:AF:CF:86:F8:6A
    Fingerprint (SHA1):
        D8:18:A6:4B:04:08:CB:28:BC:E3:B5:BF:2D:5C:48:07:A6:DC:04:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:fb
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:20 2017
            Not After : Thu Aug 10 11:40:20 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:ba:29:df:80:85:90:93:1e:8d:fc:1c:84:34:b7:ee:
                    5e:ad:e0:87:fa:da:96:c3:99:c3:e0:22:5b:1a:b6:d9:
                    eb:64:16:7e:d7:03:43:34:b3:22:9b:55:7a:c7:b5:99:
                    30:d7:ab:4c:71:1c:87:68:a0:10:13:f8:58:84:d2:00:
                    85:0d:e7:28:d5:cc:21:6f:21:ad:f9:a6:fb:d5:8d:c7:
                    b6:dd:ac:20:1f:79:b1:ec:e3:6a:9b:6f:83:44:2f:8c:
                    7e:f7:3b:93:63:69:c8:e9:9c:89:da:49:e7:17:30:0b:
                    42:2f:88:94:ca:de:4f:ba:bd:62:ba:85:43:de:d4:05:
                    e5:ec:3d:45:4e:e2:0a:e7:a2:d8:5a:e4:8b:32:41:fb:
                    1d:b8:17:be:e0:48:73:82:61:c1:ff:e0:cd:49:c2:20:
                    37:72:00:37:04:bd:05:19:d5:55:fb:70:cb:51:38:c1:
                    2d:4b:ed:58:e2:f0:bd:a4:22:3f:e7:d2:4d:8f:08:9c:
                    fb:e2:1b:fe:7f:34:ab:7e:aa:9e:d5:69:42:ae:e2:bf:
                    da:8e:bf:12:8d:c0:c9:64:30:a7:84:2e:7e:ed:21:87:
                    7d:a4:dd:4c:d3:33:1f:8f:4f:78:8f:ba:9d:58:84:9b:
                    e7:fd:b0:f8:90:21:05:f0:15:ce:9d:44:51:db:5e:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:7b:d7:6d:22:d3:ca:36:a3:e3:9e:c7:3f:d7:2c:b4:
        41:67:68:27:59:f3:12:76:47:79:0d:65:c2:f8:09:df:
        f7:c1:d8:ce:4f:7a:b9:9b:b3:95:7e:04:8d:10:ce:86:
        f9:d8:d0:ee:ce:12:07:fc:56:be:e9:da:db:28:fa:09:
        bf:30:6d:33:92:a2:8d:94:73:80:9b:2c:31:14:95:6e:
        22:98:68:18:18:06:d6:5f:94:03:3a:f4:1f:73:f3:59:
        78:e8:ac:93:36:85:e5:c1:d1:c6:04:8a:38:f4:ee:e4:
        c5:33:0c:8b:4a:08:2c:81:d3:38:87:6e:5b:de:e3:19:
        f0:c6:4a:cd:bf:0c:46:93:eb:ff:e4:11:a7:eb:5f:b5:
        3c:52:75:72:4c:7d:7b:80:78:03:e1:df:8e:61:36:b7:
        4f:71:82:40:f7:6f:55:0b:29:c5:27:c8:42:ab:5a:cc:
        e1:31:7e:ec:0f:67:59:8b:0d:09:1a:ea:fa:0e:de:42:
        ec:fa:5b:6e:7b:99:85:2a:3a:bb:a5:68:ce:7e:34:0d:
        1d:d7:c0:02:89:53:4a:e7:f7:7f:f9:2b:55:b4:06:31:
        02:2f:c9:21:bd:33:ee:2a:59:b7:57:21:1f:9b:5f:76:
        dd:d4:34:6e:8c:97:f2:96:89:3c:80:cc:55:d2:be:d0
    Fingerprint (SHA-256):
        79:94:11:0B:F6:76:65:17:6E:A5:5E:D5:8D:53:5B:C0:E0:B4:14:AA:36:F4:F8:58:1B:12:C1:6E:E5:00:3C:84
    Fingerprint (SHA1):
        D2:4D:EB:1D:65:E2:4D:DA:55:50:5C:98:88:D8:73:11:AC:83:4C:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:fc
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:21 2017
            Not After : Thu Aug 10 11:40:21 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:01:dc:ec:58:2c:57:5c:ea:05:f0:9a:7d:e6:f1:d2:
                    9b:70:ec:14:04:5a:8f:c3:1f:15:1e:dc:a2:68:1b:8d:
                    42:66:a1:01:1f:b5:45:07:ba:46:71:23:6a:ee:6e:30:
                    8f:81:1c:3b:62:9c:69:0b:af:1c:7f:7a:55:36:c8:0f:
                    5e:f4:47:a6:47:28:fb:cc:23:6d:c7:cf:13:a5:51:b0:
                    bb:2e:40:59:c9:a2:29:0d:d5:5b:a8:d7:70:83:ed:69:
                    bc:7b:81:22:79:98:3b:73:c8:66:ac:e4:dd:54:f9:43:
                    56:61:6b:5a:c6:2f:67:ca:66:9f:6f:33:d6:0b:bb:d9:
                    7d:ed:6d:84:3c:52:a1:61:1e:0e:03:94:3d:4e:a0:0c:
                    43:d0:f9:6d:fe:e9:51:3e:a5:8c:0b:4d:a0:4b:b2:bb:
                    d6:6a:1c:6f:d4:9d:b1:64:9b:f3:dc:6e:02:4f:f1:b2:
                    dd:13:71:37:e3:6c:24:c9:74:ba:29:a2:15:33:56:ae:
                    15:e8:0b:6c:ea:c4:61:0d:13:f8:e2:a5:c9:d9:fd:d9:
                    64:04:0e:26:30:f0:99:84:79:46:bc:12:ef:4e:d2:09:
                    ab:ca:e5:fe:95:a0:ad:4e:bd:44:a4:58:00:10:8c:4c:
                    16:a3:b0:b6:75:fe:c1:99:01:4a:13:8b:c1:74:44:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        81:ca:7d:0d:29:c2:ab:c1:62:b6:fd:62:f9:dd:6e:43:
        dc:c2:d9:54:c4:52:e4:09:9f:13:dc:a5:a0:ab:ff:1f:
        d2:37:b9:70:53:d3:be:0c:79:83:43:d8:b2:6a:8f:8f:
        82:64:e0:d6:bc:fc:8a:a6:90:b5:a0:50:50:93:5e:53:
        e0:be:b1:cc:66:ac:ca:aa:88:14:73:0d:bd:94:20:70:
        dd:81:08:92:e1:e3:96:95:48:6a:59:60:a8:3c:87:01:
        a7:52:3e:0d:44:5b:f0:3e:17:c9:0a:d4:1c:16:a7:69:
        01:0a:6c:ce:c4:5a:f2:6b:44:53:07:64:40:8a:e7:10:
        a8:c3:9e:c7:63:a4:e5:91:b1:09:d7:89:71:d4:3c:3d:
        aa:00:71:1c:3f:4a:90:3e:97:c4:4f:66:99:a1:7d:4c:
        3b:27:6f:26:6a:a2:9d:c1:30:73:3f:ad:20:a0:84:f6:
        d8:7b:7c:e7:4d:72:2b:42:7a:e9:11:c3:f7:d6:4f:8c:
        68:00:d3:18:fa:30:3a:b9:fe:19:99:99:47:5d:8a:ed:
        b0:28:60:bf:0b:89:89:81:2f:2d:09:ca:91:18:df:ca:
        0f:1e:ea:af:d1:2e:13:f6:9f:76:59:01:7d:b3:f3:21:
        af:56:5a:7c:dd:0a:8f:0f:38:89:bf:1e:dd:93:0f:0f
    Fingerprint (SHA-256):
        AF:3A:78:24:F2:9F:30:0D:92:63:5A:5A:22:52:8F:2C:1C:7A:EE:A5:C3:D9:ED:77:EF:29:3D:F2:A0:B7:4C:D0
    Fingerprint (SHA1):
        7F:C8:70:EE:E9:2B:94:8F:12:83:AC:CA:99:CD:F2:38:4F:8B:5C:10
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:fd
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:21 2017
            Not After : Thu Aug 10 11:40:21 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:1d:06:78:b5:3e:1b:3b:05:9f:8c:38:b8:dd:a6:a4:
                    d8:40:42:a4:53:99:f7:7d:61:dc:fd:e4:92:85:a5:67:
                    ee:5f:44:a4:58:0a:57:9a:14:ed:2b:77:3e:5f:e8:dc:
                    59:f7:66:2d:8d:0d:0f:a8:5c:23:2c:67:b7:6d:c4:4c:
                    2e:29:f5:07:04:96:a0:56:94:a9:b6:5d:34:c3:43:8d:
                    78:b2:d3:bc:81:06:c2:c6:d1:5f:9f:a3:21:fb:f9:06:
                    40:98:5c:fb:f1:27:e6:98:c0:cf:67:67:f2:76:d2:ac:
                    a2:ff:3e:6e:e1:d1:b6:38:2b:63:cb:a8:83:47:12:33:
                    45:c7:05:ae:61:04:cb:3a:c3:95:62:f9:20:09:36:ca:
                    47:4e:2b:2b:ff:fd:4e:0a:a9:13:6c:bd:ac:0c:22:74:
                    ac:01:59:a0:1c:35:ff:e5:2a:53:21:fc:15:10:20:05:
                    11:2a:04:10:ec:3d:83:bc:60:1e:7a:42:38:e4:33:66:
                    c1:6a:f6:d5:c2:8b:35:c9:6e:b4:9b:ee:49:97:71:ad:
                    45:35:79:36:82:23:0f:8c:4a:31:05:cf:d0:23:42:bd:
                    ec:ac:eb:96:7c:4f:54:d9:a3:ad:47:e8:71:49:00:b6:
                    72:ae:ec:22:40:74:f8:ce:4b:9a:2a:7d:ce:2b:41:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:35:cd:61:30:e7:b7:37:9a:b4:11:93:da:03:28:14:
        69:4e:4c:47:93:18:1e:fd:aa:04:2b:5b:18:af:21:c5:
        68:84:15:e3:ab:90:99:b8:cb:2c:fb:00:5d:10:f1:db:
        50:88:0e:0f:e5:9f:a5:e5:77:93:d9:50:e1:5a:6d:69:
        fb:8d:d1:53:f1:e4:a0:a4:98:bb:ad:e7:e6:d2:03:15:
        40:76:c8:3a:29:8e:90:c3:06:79:a3:1c:0f:24:3e:49:
        b1:43:05:fa:5b:21:1f:35:b8:a9:4b:63:64:fa:73:8a:
        b4:7c:ec:41:bc:c3:98:a0:f2:5a:94:ec:9f:b4:b8:f5:
        86:94:62:98:e5:b9:98:d9:5a:b3:c2:e8:f7:91:90:1a:
        1e:16:e1:29:64:d4:c3:59:1b:45:00:37:6e:2d:ea:f9:
        be:c3:69:1f:7f:0d:d7:e2:7d:0f:d6:5b:48:a7:65:1c:
        44:d1:ba:67:28:d4:26:6f:9d:46:48:94:64:10:f4:08:
        4b:15:ce:2d:34:c9:42:c9:b7:52:c5:60:1f:23:41:6a:
        d7:5f:fc:1a:44:91:9b:ad:cf:8c:f8:d7:5f:79:9a:49:
        b4:85:ad:d0:c5:ec:34:74:cf:1c:48:af:79:52:86:46:
        69:83:65:3a:95:58:f6:ae:1b:0f:c1:11:99:68:d0:c5
    Fingerprint (SHA-256):
        89:91:51:99:90:B5:90:3A:6B:37:DE:D3:D2:2D:31:1D:26:FF:A2:1C:58:F9:BB:D0:C7:21:79:C0:E5:94:61:82
    Fingerprint (SHA1):
        A3:A1:4F:D1:4F:D4:3D:2B:2E:21:E9:5F:A9:BD:E9:BA:7F:73:8C:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3d:ff
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 11:40:23 2017
            Not After : Thu Aug 10 11:40:23 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:cf:f7:eb:d2:05:b5:b5:85:48:5f:89:c6:26:37:3e:
                    7a:01:a0:14:bf:3e:19:e8:ce:f7:d7:58:88:b1:da:7e:
                    1e:91:f9:86:6c:83:e7:c0:58:3c:12:fd:7e:3a:bd:9d:
                    12:04:f1:3e:cc:b9:c6:04:80:04:e7:38:f5:9f:6d:c4:
                    63:e2:62:fd:0a:84:79:87:5f:62:c3:e6:64:77:cb:e0:
                    0b:3e:90:5c:a0:59:c3:35:39:18:44:7d:df:0b:ee:00:
                    5f:b3:86:9d:2a:d1:e2:86:3e:81:f4:1a:8f:1b:56:34:
                    d6:0c:b8:e7:a5:eb:09:68:22:28:45:e4:25:34:d5:32:
                    30:fe:94:61:24:c8:3f:d8:f4:de:54:23:eb:3c:33:7f:
                    64:c5:e5:34:78:f0:e2:1a:fc:b8:d4:05:1b:1d:d6:99:
                    c1:7c:24:42:00:9b:4e:ca:97:2a:0b:ee:49:b4:79:4a:
                    f3:77:4a:eb:be:80:e0:59:02:4f:c5:ad:fc:9b:dd:3d:
                    1c:62:63:60:ea:f6:ea:19:20:f6:dd:5c:1c:86:91:20:
                    03:de:3a:e4:4a:a7:e5:bb:af:de:02:7d:dd:76:64:dc:
                    bc:87:e6:4c:cc:c2:98:f7:61:dc:cf:06:87:01:aa:33:
                    0f:c9:f1:86:f7:d4:76:ec:c1:6d:b2:6f:05:9d:f9:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:80:93:23:a8:4b:ca:c6:ab:c5:34:cd:f1:d6:35:35:
        2b:d9:28:2e:33:98:b5:fa:ce:ed:64:d2:dd:c5:78:12:
        52:73:9b:21:34:d0:b1:f9:e6:eb:28:40:63:bd:9a:46:
        7c:b7:df:90:2d:28:b8:d2:2e:cc:ae:aa:3c:8b:53:9b:
        97:b0:6a:e9:e4:cd:ca:fe:56:d3:21:67:10:09:70:bc:
        65:8a:35:c5:e5:b7:76:f7:86:e9:83:93:55:0f:77:ba:
        b6:0a:e7:7b:81:9d:d9:e2:31:d7:85:50:52:56:91:30:
        71:ac:de:bf:55:3a:d7:6c:e9:09:e2:c8:8f:b6:f4:75:
        77:89:98:f0:43:e5:48:14:76:c7:58:1f:40:7e:ec:0e:
        23:c2:e4:79:b2:45:86:8b:12:d0:f1:53:b3:45:62:bd:
        fb:d0:93:b2:17:0c:e3:22:51:85:bb:b8:c6:af:f1:27:
        da:8c:cd:10:9a:1c:b9:ac:5b:e6:f6:56:c0:cd:6b:cd:
        51:3d:aa:70:ed:57:44:28:32:1f:ce:11:4e:e3:e0:bd:
        4d:38:00:bc:84:44:6e:e7:2a:db:4b:b2:0f:74:1f:91:
        46:5c:3b:4f:db:91:f0:f3:87:9d:a0:5f:d1:95:c5:65:
        1e:2e:d6:3b:2b:68:71:93:e6:a2:f4:7c:10:55:09:ea
    Fingerprint (SHA-256):
        49:80:14:D9:5C:32:69:CF:C7:FD:58:30:29:4C:7A:28:C9:2C:99:AE:A9:C3:6B:4C:C5:BC:A1:D6:1A:55:5B:34
    Fingerprint (SHA1):
        E5:17:84:67:99:E0:DB:78:CA:E0:98:E2:28:AF:91:C5:FD:5D:09:45
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3e:03
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 11:40:24 2017
            Not After : Thu Aug 10 11:40:24 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:c5:cc:7d:16:9b:21:07:44:15:86:9f:c4:7a:16:cc:
                    9a:df:6d:9d:a9:d3:f8:49:c8:fa:a4:81:f6:cc:74:78:
                    22:e6:4c:0d:4b:8f:61:ce:f6:41:db:a0:a6:73:03:0f:
                    e6:49:51:7a:0e:32:04:e7:4f:bc:9e:c6:98:0a:b8:8e:
                    04:a9:b6:22:62:37:43:3c:c1:4b:ff:cc:ab:83:64:bb:
                    90:a2:9f:15:80:cd:91:73:22:39:ed:74:a9:3c:5b:3c:
                    91:a8:9e:0a:57:6b:54:fd:c7:47:21:8d:3d:32:f9:08:
                    14:7c:09:67:43:cc:2b:bd:a8:72:d2:e5:f5:67:a1:cf:
                    fa:89:6a:15:ce:55:1c:87:ab:b1:8d:db:b7:40:f9:67:
                    4d:f6:0b:ef:3f:d1:53:f5:bd:ba:95:21:7f:f9:3a:6f:
                    8b:bb:a4:b9:45:8b:3b:01:25:1a:eb:fe:3f:52:dd:e4:
                    ef:7a:4e:c2:80:6c:cf:13:11:91:e0:d5:d5:bd:66:f2:
                    e7:1a:83:be:12:e3:f4:a7:e9:dd:f1:6d:40:f2:cb:7a:
                    a0:a5:05:f8:f2:40:88:17:fc:d2:72:60:d7:f2:d4:e3:
                    a6:bb:03:ab:a4:cc:5a:7d:94:db:85:ad:6a:1a:73:4c:
                    21:84:d8:91:70:ff:1f:c8:34:5c:13:78:a2:47:47:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:bc:39:f7:bb:34:1e:76:a3:b1:0b:0e:cd:9a:50:35:
        c6:7d:ee:86:90:78:91:ef:ba:64:38:45:38:4a:e6:cd:
        8e:f8:62:57:b3:0e:ee:1b:e2:e3:4b:d7:ec:bb:1e:29:
        3a:24:06:09:eb:4c:0b:53:80:8f:55:16:da:fc:24:73:
        29:d6:bb:39:e6:86:af:32:7f:0f:9e:6a:66:32:01:d3:
        7f:ba:90:80:85:af:65:77:5b:de:be:0f:ff:7a:68:1e:
        24:1e:fb:ab:52:2e:1b:45:7c:04:53:6a:4d:58:9e:59:
        98:d0:2c:b2:d4:94:ed:89:cd:93:45:71:c5:ee:a9:9c:
        89:86:f3:d1:81:a1:43:79:e1:26:ac:cd:55:8b:e5:92:
        71:66:31:ef:f5:fc:7c:79:d5:5e:cf:85:25:76:a4:60:
        46:8c:18:12:25:ed:ae:58:e7:eb:f7:16:16:9f:5f:19:
        16:0a:ef:b9:20:a3:46:4c:26:f1:c0:24:43:e0:5c:15:
        48:22:d7:40:46:55:5b:ba:9c:79:92:32:c8:5c:b5:92:
        d6:d0:c4:2b:2b:5a:b4:57:79:41:ee:05:f2:63:15:6c:
        09:1e:06:7b:5e:18:67:e4:a3:61:52:7a:41:3f:4e:62:
        1a:c4:dd:20:1e:41:e4:16:30:30:cc:ec:51:c3:09:e9
    Fingerprint (SHA-256):
        1A:D1:3D:35:20:B8:C2:03:CC:6F:CD:FE:B0:EB:D3:0A:1D:9F:BA:26:CE:D2:B5:98:B2:86:9A:DC:64:85:93:C8
    Fingerprint (SHA1):
        57:B2:39:CC:C4:FD:F5:7E:9D:46:6B:CF:C8:85:2F:01:F2:21:66:A3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:3e:09
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 11:40:28 2017
            Not After : Thu Aug 10 11:40:28 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:6d:00:da:53:1f:80:d8:0a:82:d2:97:d2:d0:34:8d:
                    30:3d:cf:bf:51:e5:3a:8b:ed:4e:a9:92:ee:99:4b:4a:
                    0f:d4:cc:86:cd:32:6c:04:ec:7f:72:f9:6c:70:61:ec:
                    a7:0d:0b:fa:08:04:c5:22:d5:9a:cc:14:69:94:6a:7a:
                    fc:11:33:43:83:95:3b:8d:1f:c8:13:5f:14:e1:4a:44:
                    f6:1d:34:85:7a:e2:8a:2e:30:7c:76:5d:ff:5b:4c:ad:
                    77:92:f6:55:fb:80:18:af:af:22:60:54:f7:9d:62:88:
                    f2:3d:f1:6b:b0:87:ba:fc:f9:bd:c6:95:bd:50:66:21:
                    fe:1b:fd:64:c8:99:f4:8a:ae:14:08:8d:da:51:d0:1b:
                    5e:9d:89:76:4f:33:96:65:4c:d7:fd:a3:44:eb:a5:df:
                    7b:ed:d9:2f:10:dc:f8:22:fd:68:c4:10:32:dc:b9:be:
                    3c:87:44:f1:71:14:0a:c5:e5:16:93:e7:5e:2e:f5:9a:
                    22:07:c2:a1:ec:5b:03:0b:ef:23:70:ee:f4:94:8e:d4:
                    c1:87:32:dc:20:2e:9c:37:88:31:64:cd:0b:2b:dd:72:
                    66:9f:47:a2:9f:03:1c:bb:cc:26:93:30:0d:8f:f3:de:
                    85:47:c7:af:8d:d4:ef:46:9f:b7:09:a7:ac:6a:7a:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:3a:c3:71:af:cd:1d:0d:f9:84:99:a3:06:d8:aa:2f:
        98:68:a5:85:00:22:70:83:11:a3:97:a2:97:ac:2e:14:
        79:0c:0b:26:54:f4:c2:95:94:82:dd:ba:8f:63:52:d5:
        ac:64:56:db:b8:bf:2c:db:ad:39:c7:e5:13:47:e1:31:
        61:8b:31:07:83:42:6b:17:d0:d2:8e:55:25:ba:d3:1a:
        2b:7c:88:02:6a:6c:43:70:ec:1b:aa:4e:70:31:40:2f:
        dc:61:b1:78:19:eb:41:48:ac:b7:79:05:8d:c3:6b:53:
        9b:6e:fc:e6:47:3a:79:d7:fa:1b:da:56:ec:1e:2f:82:
        6f:5a:f0:9e:63:8a:f9:3e:72:9d:22:d1:83:24:f9:6d:
        c8:be:2b:a7:3f:5c:02:6b:57:8f:7f:6a:0b:d7:75:21:
        78:7a:73:7f:e2:a7:2e:86:a0:77:a0:6b:39:2a:56:b2:
        12:c2:ff:0e:b5:a7:02:93:ba:74:f2:ca:3b:4a:7d:ce:
        4a:c8:a2:77:6c:24:51:ea:cd:a2:48:6e:5d:62:5b:e0:
        eb:ad:e0:1e:b4:0d:24:ea:1c:41:10:28:eb:50:9e:b9:
        df:3f:f8:fe:62:58:8c:e3:a8:fc:f8:fb:2d:96:7c:14:
        e6:42:0d:ad:ce:f0:ae:79:68:2e:01:22:3f:55:8f:96
    Fingerprint (SHA-256):
        BB:96:12:5A:0F:92:30:E4:73:A3:22:11:DF:95:5E:12:3B:8B:7D:BD:14:FB:14:0B:42:A7:5E:8A:8C:8F:EB:75
    Fingerprint (SHA1):
        27:81:54:06:D6:9E:3B:46:79:10:9C:63:C7:BF:2E:68:9E:82:3D:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed May 10 11:41:01 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Wed May 10 11:41:01 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir
-r--r-----. 1 mockbuild mockbuild   1220 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    579 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 229376 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/cert8.db
-r--------. 1 mockbuild mockbuild 106496 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/key3.db
-r--r-----. 1 mockbuild mockbuild    393 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/req
-r--------. 1 mockbuild mockbuild  16384 May 10 11:41 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:08 2017
            Not After : Tue May 10 11:40:08 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:94:9e:37:38:d4:a1:b9:cd:30:be:8f:bb:a7:4e:5e:
                    a4:6b:22:36:41:0d:3f:e2:c0:f3:09:db:5d:39:67:21:
                    7c:b1:06:4b:4a:57:e3:26:01:aa:1d:45:60:61:fd:11:
                    48:e5:5f:77:eb:48:ec:76:69:1e:a1:f3:9a:26:63:dc:
                    33:91:3e:2a:cc:a1:2c:22:9a:14:23:48:9d:c6:2d:7d:
                    59:7d:b2:d2:3e:6b:d9:2e:b7:e2:83:cf:13:ba:54:bc:
                    b0:5e:a4:09:ee:21:3a:0b:f2:d9:84:f9:0c:8a:a7:e1:
                    09:5f:d1:40:1e:50:df:1f:09:5f:94:79:95:c7:26:24:
                    39:0a:77:03:93:55:12:38:9f:72:18:e0:22:0b:c3:81:
                    ac:91:cb:a8:9f:ab:4d:a0:70:1c:8f:57:ff:2f:67:8d:
                    41:71:26:c2:b3:1a:ab:58:0d:1d:1c:d2:94:e0:6a:11:
                    91:ad:39:1a:c6:cc:31:89:7a:a1:fb:fe:03:4a:ef:8d:
                    29:90:70:bf:96:af:04:88:b9:3f:52:cf:c5:5a:9c:35:
                    48:1c:64:6c:c9:b2:d3:b4:e5:9c:c3:fd:5d:e5:5b:38:
                    91:d8:0b:84:2b:ac:8c:66:06:fb:40:9a:44:28:e4:68:
                    64:be:94:52:14:13:3c:b7:51:76:5c:89:e1:b7:2f:6f
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:06:ff:74:ca:c5:72:f0:98:da:ba:9b:57:e7:0f:2c:
        b8:6e:cb:aa:69:e6:0d:6d:63:cc:78:5d:41:4d:ba:3a:
        12:7c:a2:cb:0b:5f:1d:9b:d3:90:5d:8d:a9:a2:d3:6d:
        31:16:1b:bf:4d:73:76:58:9f:52:53:48:c5:b0:42:ab:
        b4:dc:4c:b6:bd:61:74:e5:f7:19:7c:5d:05:5a:8a:1b:
        ba:65:d0:80:e9:c9:0f:3f:b5:7c:87:68:6f:d2:3f:df:
        15:b5:fc:ae:98:cc:4e:cb:8a:9a:15:e0:d8:04:31:7b:
        23:f7:d3:f4:4f:14:96:03:11:10:fa:59:fb:35:dd:33:
        ef:52:95:f2:b2:ee:ef:2e:db:8e:ab:92:71:37:c2:fd:
        4b:8c:59:cc:65:af:df:0b:7b:ff:2b:8b:9c:5b:16:da:
        27:5b:88:1f:75:8b:ea:f1:72:a7:2c:bf:c6:99:dd:05:
        03:dc:84:8e:30:43:86:9d:38:1d:b6:bf:e1:d1:38:37:
        0c:5e:3c:f9:73:9b:72:3f:a5:24:08:ee:74:45:68:d9:
        bc:a4:0a:b2:43:91:2f:80:2f:e7:65:53:46:31:4c:c3:
        a9:af:a2:29:91:2f:0f:d8:93:2c:e2:72:9a:c9:9d:96:
        b0:be:76:82:ff:04:af:c4:a7:58:b4:08:79:1c:78:2c
    Fingerprint (SHA-256):
        22:ED:AA:F3:64:ED:0B:24:67:A7:FF:11:70:BA:58:33:68:25:F4:E2:0B:8B:2C:EF:CA:50:42:AF:B5:95:9B:7D
    Fingerprint (SHA1):
        CD:24:BC:84:58:AD:B8:56:B7:83:30:E6:B4:CC:9A:F1:1B:58:74:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Wed May 10 11:41:01 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 11:41:01 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b8:ed:c2:4a:38:c5:99:da:ec:05:31:5d:23:30:50:91
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                aa:de:cf:bd:e4:56:42:04:5f:45:2c:14:c2:7a:b7:e8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:39:58 2017
            Not After : Tue May 10 11:39:58 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:ad:16:f5:80:aa:cc:d7:1b:56:9f:f8:e9:0a:39:
                    8e:d8:05:a2:28:59:a1:d3:bc:94:f8:e7:da:c8:59:d6:
                    a3:f3:96:39:11:15:2e:1e:79:82:f6:b6:77:a8:ee:a6:
                    e2:57:cc:8e:be:b3:2b:ef:e3:a7:6a:fd:2b:04:01:0a:
                    bb:28:5d:01:5c:5e:94:6e:09:8f:14:c6:78:5c:57:54:
                    f2:5d:e1:3a:ed:7c:36:6b:cc:a6:2d:5b:b1:db:86:4c:
                    2f:ef:73:77:ad:61:aa:fa:db:5e:1f:8f:98:ef:b3:df:
                    a2:fc:71:79:c4:e0:94:4f:95:6c:d6:44:7b:28:69:b7:
                    da:d4:96:80:d0
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:ae:23:2d:b3:3b:20:e4:c9:0c:46:
        75:67:45:7b:e3:71:b9:d6:4d:66:55:34:11:43:12:e4:
        90:c7:5d:ae:ac:e4:3c:c6:9c:00:5a:a9:8a:75:8d:07:
        00:86:8c:cd:cb:12:69:17:29:0d:01:c6:b6:91:91:d8:
        15:3a:0f:c8:75:d1:2d:02:42:01:ac:ee:77:d1:8b:a1:
        18:b3:5c:70:9c:48:1f:7e:d8:31:e0:9f:67:cf:af:30:
        34:ef:21:7e:ad:b3:c6:c6:1a:c6:8f:8a:b8:aa:11:d1:
        95:4e:c7:e7:b0:e8:ee:68:01:6a:f4:92:96:bf:9a:29:
        48:7f:5a:be:dd:97:1e:34:da:e1:2c
    Fingerprint (SHA-256):
        FB:81:B6:00:78:17:7C:F7:68:D5:22:97:72:DA:03:96:57:15:8B:41:25:36:A8:51:E0:BF:AF:1F:39:D2:0C:A9
    Fingerprint (SHA1):
        FD:C1:1D:1D:E3:7C:B9:39:29:83:64:18:4F:91:6C:E4:ED:2C:9C:EB
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:d2:83:4f:09:dc:f4:6a:81:a7:68:b4:63:89:0e:f4:
                    15:2d:85:df:6c:86:d4:c5:6b:36:0c:2f:cb:7c:d5:9c:
                    f4:7d:a4:ba:9e:70:2d:f5:93:c7:e5:03:00:e5:ed:d0:
                    ac:e9:9b:9d:6e:48:37:e2:dc:71:30:cf:03:65:42:fc:
                    41:f7:91:3c:03:67:12:6c:90:e9:c7:ca:b1:52:b0:d2:
                    30:1f:60:c8:99:cd:de:a9:73:99:38:6e:2f:82:34:ab:
                    da
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:aa:65:0c:b9:bf:0a:67:9b:7b:c8:
        25:f8:ca:0c:ee:7c:6c:08:c0:9c:b7:63:d7:5a:91:ff:
        36:2a:4d:42:87:8e:6d:02:7c:75:c5:c0:a9:21:6b:b0:
        32:75:e9:81:91:19:bd:80:4a:c6:44:1a:bb:1f:18:cb:
        41:f1:7a:82:59:45:79:02:42:01:b9:07:52:33:9f:15:
        8e:e9:38:d5:b6:74:64:8a:0a:1d:00:db:6f:fc:8b:f5:
        d1:52:b8:4f:38:31:9d:d4:b4:a1:1d:fa:1c:a1:93:da:
        bb:a3:a5:ec:e4:80:6f:d9:f1:8f:5e:20:7c:c1:ee:46:
        cd:a3:89:ca:b8:d2:b7:43:72:0a:95
    Fingerprint (SHA-256):
        CB:06:55:2B:7B:97:B0:7B:F7:0E:9E:6F:06:D6:51:A3:AE:7E:5B:9D:DC:BB:7C:84:27:4C:3E:3B:80:E2:DA:ED
    Fingerprint (SHA1):
        30:39:F2:4F:A2:8D:BB:0C:C8:56:B9:CC:B9:84:73:A0:02:8A:D8:86
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0a:40:27:63:22:1d:63:e0:19:99:bf:98:ac:07:c5:89
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0d:bc:c1:af:a2:bd:0a:06:0b:f8:94:b5:d7:76:ab:70
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                38:ba:10:51:28:7a:6a:58:44:8f:7e:31:12:8d:c4:e5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                2f:40:57:50:4d:26:ea:89:21:7b:74:4c:42:e2:97:d7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                c2:e2:d5:b5:46:0b:06:dd:a4:64:88:5e:8e:87:e8:c8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                f1:cf:b2:90:c5:89:70:0a:e9:fc:74:b7:e2:13:fd:ec
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                12:1b:c1:96:94:a2:25:3f:5d:37:06:33:91:b5:68:9b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c5:72:2a:db:10:a2:49:78:02:31:a9:d0:c9:f9:e8:9b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e9:54:04:2f:17:82:98:db:76:dc:a7:a5:63:81:d6:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2c:cb:85:79:96:f6:0b:84:48:7c:1c:27:79:b8:a3:1d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f5:8e:83:cb:3c:7c:46:cc:8e:d4:89:27:79:93:08:f2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                09:52:ab:50:7f:2e:c2:e9:06:62:bb:90:26:c3:d1:98
            Iteration Count: 2000 (0x7d0)
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        61:bc:49:3c:54:fc:fc:db:2a:5f:bd:74:98:c3:7e:a5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:62:26:6a:2f:11:43:19:30:42:00:81:3a:c4:41:
                    17:42
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fe:9e:e9:75:1a:75:54:a0:2c:f4:d0:b8:5c:38:6a:ca
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:82:20:0a:d1:a0:b9:56:c6:79:2c:57:a1:73:56:
                    69:fa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:d0:49:5d:3e:6a:5d:6d:79:04:d9:4f:57:47:36:c4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:27:97:46:92:0f:1a:35:d2:57:fe:9f:04:76:24:
                    14:48
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        79:94:c4:c3:00:36:a7:cf:fe:88:ed:cf:3f:d8:92:c2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:14:2a:e9:48:01:89:b8:a7:d5:7e:cb:ea:e5:55:
                    d5:26
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2f:80:ec:cb:1d:7f:51:a6:26:11:47:3b:fc:f5:bb:59
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:24:73:83:29:12:78:b9:09:21:80:55:31:05:f5:
                    fc:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        47:ff:e2:98:12:99:60:ef:f9:3b:ae:7d:24:19:d9:77
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:56:8c:4d:c1:fe:da:d0:3b:92:dc:70:a0:62:e1:
                    36:7f
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fd:8d:60:64:a1:5b:32:e7:95:db:f8:4c:18:22:3f:98
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:84:6e:b8:50:2a:ed:15:c5:95:06:0b:49:11:15:
                    dd:0e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0d:f0:5d:93:1e:d0:a8:5c:82:5d:3f:06:0a:3c:d4:e5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:db:b3:10:e9:28:1f:9e:9c:b0:3e:d1:7a:7f:b0:
                    dd:5b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2d:29:0d:ae:42:26:ac:85:96:8c:0b:df:77:d0:36:55
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:09:b0:79:4a:7f:b6:de:41:6c:d2:41:34:5d:06:
                    c2:00
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fc:94:03:c2:cf:00:a6:1e:42:ad:81:50:b9:0e:8e:f0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:20:7a:5c:bf:ad:d0:e8:a2:c2:05:19:6f:28:23:
                    07:74
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9e:25:43:1b:dc:9d:ac:ba:75:ad:54:e2:cb:83:6d:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:77:51:4c:31:fb:91:fc:f7:f9:a7:aa:a2:74:da:
                    29:64
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fa:1c:25:a5:0f:d1:98:10:16:fc:a9:eb:70:ab:cf:80
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:a6:74:ea:b1:ab:23:1a:fa:58:02:80:f1:f6:7f:
                    80:24
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b0:36:06:a0:13:07:cd:a8:d4:41:dc:08:c8:cf:da:79
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:bf:14:5d:ed:07:9b:f1:4f:d9:2a:61:5a:96:de:
                    32:67
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:bc:dc:f6:de:57:10:b3:82:3e:64:e3:1f:70:a8:2a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:30:6b:2c:97:29:d3:7a:48:df:00:24:e7:c7:88:
                    29:6d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e7:31:e0:20:d3:55:37:00:fd:7f:a7:9d:a4:d9:55:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:8c:40:b1:35:e6:e7:de:50:06:89:70:8d:26:83:
                    4e:2f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fc:25:90:28:04:e5:37:0b:98:7a:85:3b:8d:74:22:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:48:79:07:2f:e1:cc:26:37:8c:2d:7c:31:59:0b:
                    01:b8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bc:d7:c3:0c:9c:ac:e9:96:28:07:6c:0e:df:0a:96:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:7f:3a:ec:91:1f:7d:90:5a:ee:f7:68:84:c5:ab:
                    db:29
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        30:10:e9:8a:2c:87:80:d4:cb:57:c7:50:2a:f5:c0:a8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:15:ce:f9:8a:dc:9d:fb:f4:c1:5a:02:7b:28:35:
                    14:fe
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4b:74:53:bb:f4:66:b2:9f:54:ca:7a:df:91:ab:74:32
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:a8:de:76:2e:00:a5:66:d8:33:cb:c3:19:79:ef:
                    14:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        25:f3:62:fa:06:1f:9a:d8:1c:78:54:ab:a3:ce:44:f3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:47:66:b9:6e:92:34:c9:3d:c3:cf:dc:02:54:93:
                    21:46
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ef:15:0d:c3:2f:2b:84:5e:b3:0c:09:85:e4:47:03:d3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b1:4e:a0:84:f0:cd:79:81:0e:f2:6e:6c:1a:a4:
                    80:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        64:d6:bd:a5:99:e3:d8:5c:27:5c:33:d6:19:29:24:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:4b:17:35:b1:8b:06:dd:0c:59:c1:1e:15:ba:67:
                    c7:94
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        68:66:67:38:fd:a3:86:c0:5d:4f:a3:dc:9a:75:ae:e8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:09:4f:07:c6:01:dd:a7:ab:f1:cc:3a:8b:bc:84:
                    83:de
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        05:6f:4b:ca:f8:93:4e:55:eb:25:c5:19:f6:f4:cc:e2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:05:25:5b:98:a6:00:2a:5b:e7:63:6b:92:1f:1b:
                    8d:f6
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6a:10:20:22:8e:3e:8a:bb:f7:ff:f5:75:68:2d:9f:cc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:9f:99:7d:42:f1:15:62:f2:b2:ab:37:31:43:b9:
                    48:5d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e2:6d:53:f7:55:4b:66:f2:24:cf:c8:61:6c:d8:d6:72
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c0:7b:e3:e3:65:ab:22:75:0c:e8:d5:79:6e:14:
                    a7:d1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:92:94:45:1e:e2:10:c6:80:ca:b2:a0:b6:6b:1e:28
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:69:7e:1d:9b:5f:a8:55:8a:80:d6:51:04:54:53:
                    ef:06
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        48:cc:3d:2b:f1:2a:fc:16:2a:f3:55:85:ff:b4:32:b1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:68:f3:0e:b2:56:25:5d:f0:ad:0b:c8:fd:b1:c6:
                    1a:14
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a6:f6:2b:c0:dc:a5:f0:a9:a1:4f:bc:34:9e:3d:ba:cb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:0f:97:e8:cf:6f:bd:12:35:f2:1c:21:4d:8f:5d:
                    46:85
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5e:90:40:09:90:fe:1e:be:74:2e:f3:f6:df:bf:46:19
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:7a:67:91:ed:1f:37:f4:7d:32:a5:d0:e1:f4:cd:
                    08:2d
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:16:37:75:93:2b:23:2a:0d:1e:10:e1:ea:e2:5b:db
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:e5:66:f0:bb:34:ac:7a:0d:0a:78:08:3b:de:c0:
                    c3:a0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        87:ee:b3:a6:f4:2b:dd:11:f5:90:98:28:5a:bd:52:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:a3:1d:6b:9a:16:85:21:3d:c8:24:1e:eb:5f:b8:
                    55:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bc:50:ff:0a:74:25:64:ab:c8:37:d7:69:84:02:12:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:81:e1:f7:85:77:75:45:db:05:f8:df:7c:87:d0:
                    a3:83
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8e:a3:f3:ae:c6:70:ee:79:16:0b:f7:71:08:36:ad:8f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:28:53:d8:c7:28:23:f0:52:3c:ae:4d:c0:0c:64:
                    37:ce
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fa:40:89:48:b1:da:02:db:fd:b8:80:a7:de:c2:70:fc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:db:b1:99:1b:d7:85:de:29:00:98:72:1d:b6:c6:
                    fc:6c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        99:0b:0e:14:8f:e5:b4:10:42:ec:85:b6:6e:a9:8e:2b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:91:ee:04:11:72:18:b9:b3:4b:68:14:f4:9c:93:
                    ad:b1
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                eb:81:f6:0b:41:2c:85:9b:3c:d2:92:f0:67:29:81:60
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                4a:cc:55:d9:78:2b:b3:e6:a0:b7:75:4a:a8:87:58:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                6b:2a:cf:bc:32:00:b9:db:67:c3:5f:51:c1:e1:b6:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                26:12:8b:bd:7a:69:52:1c:4e:b7:2f:e6:a3:6a:a0:6e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                05:a4:1b:b8:16:34:7a:2f:43:93:3b:cc:c8:8a:98:a9
            Iteration Count: 2000 (0x7d0)
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b0:8d:73:d2:83:59:84:ec:d5:ea:32:06:8a:bc:ee:dc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #757: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                83:95:23:e9:5f:60:e8:cb:d8:2e:bc:57:95:04:47:94
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #758: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #759: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #760: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                49:a7:f7:7f:cb:7e:55:04:c0:a5:eb:f8:b7:ea:94:d8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #761: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #762: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #763: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e5:76:db:75:0d:db:83:ca:db:65:fc:1f:b8:e9:69:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #765: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #766: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                bc:c7:2f:91:e2:48:c1:7b:d3:12:39:2c:2f:94:a5:e2
            Iteration Count: 2000 (0x7d0)
tools.sh: #767: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #768: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #769: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                54:58:d9:43:52:07:b6:67:57:09:fc:b6:ef:dc:b9:6c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #772: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                49:71:09:b6:ae:5f:33:98:50:dc:93:81:2a:79:b5:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #775: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                4a:cd:d6:77:ee:06:7c:ba:3a:76:1f:b7:72:63:ce:df
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #777: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #778: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                36:3a:af:69:09:88:16:25:2c:61:b9:6a:11:f8:ac:2c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #781: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                90:4d:0b:64:4a:ea:c5:48:4e:d8:5c:40:c5:a4:db:fa
            Iteration Count: 2000 (0x7d0)
tools.sh: #782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #783: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #784: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b0:85:f9:13:0d:a3:ab:58:33:ba:76:9b:0e:9e:80:df
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #786: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #787: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                36:7c:ae:a6:aa:c2:b5:7a:76:3d:12:06:87:39:db:70
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #789: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #790: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c7:0a:22:51:e6:6f:17:fd:de:67:6e:cd:2a:d4:c5:f2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #792: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #793: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f9:2f:02:92:2d:d6:ee:4e:e8:33:64:9a:9b:37:c4:53
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #795: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #796: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3b:8a:86:dc:31:83:43:ce:8f:dd:98:f6:5a:28:86:b6
            Iteration Count: 2000 (0x7d0)
tools.sh: #797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #798: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #799: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                32:b5:f7:35:5f:f9:81:f2:c5:d2:d4:52:62:b1:60:f9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #801: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #802: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a3:21:74:20:4b:55:88:5f:97:24:d9:c5:64:ea:8f:2a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #804: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #805: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d1:a5:35:19:68:82:31:3b:2a:e9:71:e3:4e:14:c3:76
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #807: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #808: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:2a:fa:4a:10:5c:ae:6b:0d:c9:03:2c:71:38:3b:44
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #810: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #811: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                56:e7:66:db:5c:25:b0:aa:77:ec:f6:39:bb:5c:d2:d5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #813: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #814: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f9:9a:90:b3:ba:dc:43:1c:1e:3b:3e:9f:88:8d:1b:91
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #816: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #817: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                37:f8:d8:27:d9:44:f7:24:e7:b3:5c:5c:3a:17:21:a1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #819: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #820: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d9:c5:50:87:29:23:4c:ce:91:39:40:e2:4a:66:c9:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #822: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #823: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4b:24:d6:8f:4e:eb:57:be:50:ff:4b:f7:33:18:f7:14
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #825: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #826: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b3:1a:54:9e:94:ad:5c:89:b2:a8:3f:93:f0:1d:2b:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #829: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #830: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #831: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #832: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #833: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #834: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #835: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #836: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #837: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 11:41:14 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 11:41:14 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #838: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #839: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      30fa12fd62d053eb2e2a8243652d0a6bf9ac426a   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #840: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #841: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #842: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #843: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #844: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #845: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #846: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #847: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #848: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #849: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #850: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      30fa12fd62d053eb2e2a8243652d0a6bf9ac426a   FIPS_PUB_140_Test_Certificate
fips.sh: #851: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #852: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #853: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #854: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #855: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      30fa12fd62d053eb2e2a8243652d0a6bf9ac426a   FIPS_PUB_140_Test_Certificate
fips.sh: #856: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #857: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #858: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle
Changing byte 0x00042d00 (273664): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #859: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 11:41:31 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Wed May 10 11:41:31 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v1.17937 -t "Test1"
sdr.sh: #860: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v2.17937 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #861: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.17937 -t "1234567"
sdr.sh: #862: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v1.17937 -t "Test1"
sdr.sh: #863: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v2.17937 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #864: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.17937 -t "1234567"
sdr.sh: #865: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Wed May 10 11:41:31 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed May 10 11:41:31 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #866: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #867: CMMF test . - PASSED
TIMESTAMP crmf END: Wed May 10 11:41:31 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed May 10 11:41:31 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #868: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #869: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #870: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #871: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #872: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #873: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #874: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #875: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #876: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #877: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #878: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #879: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #880: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #881: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #882: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #883: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #884: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #885: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #886: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #887: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #888: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #889: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #890: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #891: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #892: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #893: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #894: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #895: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #896: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #897: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #898: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #899: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #900: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #901: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #902: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #903: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #904: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #905: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #906: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #907: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #908: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #909: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #910: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #911: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #912: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #913: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #914: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #915: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #916: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #917: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #918: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #919: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #920: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #921: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #922: Decode Encrypted-Data . - PASSED
smime.sh: #923: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #924: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #925: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #926: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #927: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #928: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed May 10 11:41:34 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 11:41:34 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28259 >/dev/null 2>/dev/null
selfserv_9505 with PID 28259 found at Wed May 10 11:41:34 UTC 2017
selfserv_9505 with PID 28259 started at Wed May 10 11:41:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28259 at Wed May 10 11:41:34 UTC 2017
kill -USR1 28259
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28259 killed at Wed May 10 11:41:34 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28315 >/dev/null 2>/dev/null
selfserv_9505 with PID 28315 found at Wed May 10 11:41:34 UTC 2017
selfserv_9505 with PID 28315 started at Wed May 10 11:41:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28315 at Wed May 10 11:41:35 UTC 2017
kill -USR1 28315
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28315 killed at Wed May 10 11:41:35 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28371 >/dev/null 2>/dev/null
selfserv_9505 with PID 28371 found at Wed May 10 11:41:35 UTC 2017
selfserv_9505 with PID 28371 started at Wed May 10 11:41:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28371 at Wed May 10 11:41:35 UTC 2017
kill -USR1 28371
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28371 killed at Wed May 10 11:41:35 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28439 >/dev/null 2>/dev/null
selfserv_9505 with PID 28439 found at Wed May 10 11:41:35 UTC 2017
selfserv_9505 with PID 28439 started at Wed May 10 11:41:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28439 at Wed May 10 11:41:35 UTC 2017
kill -USR1 28439
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28439 killed at Wed May 10 11:41:35 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28495 >/dev/null 2>/dev/null
selfserv_9505 with PID 28495 found at Wed May 10 11:41:35 UTC 2017
selfserv_9505 with PID 28495 started at Wed May 10 11:41:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28495 at Wed May 10 11:41:36 UTC 2017
kill -USR1 28495
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28495 killed at Wed May 10 11:41:36 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28551 >/dev/null 2>/dev/null
selfserv_9505 with PID 28551 found at Wed May 10 11:41:36 UTC 2017
selfserv_9505 with PID 28551 started at Wed May 10 11:41:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28551 at Wed May 10 11:41:36 UTC 2017
kill -USR1 28551
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28551 killed at Wed May 10 11:41:36 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28619 >/dev/null 2>/dev/null
selfserv_9505 with PID 28619 found at Wed May 10 11:41:36 UTC 2017
selfserv_9505 with PID 28619 started at Wed May 10 11:41:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 28619 at Wed May 10 11:41:36 UTC 2017
kill -USR1 28619
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28619 killed at Wed May 10 11:41:36 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28675 >/dev/null 2>/dev/null
selfserv_9505 with PID 28675 found at Wed May 10 11:41:36 UTC 2017
selfserv_9505 with PID 28675 started at Wed May 10 11:41:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 28675 at Wed May 10 11:41:37 UTC 2017
kill -USR1 28675
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28675 killed at Wed May 10 11:41:37 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28731 >/dev/null 2>/dev/null
selfserv_9505 with PID 28731 found at Wed May 10 11:41:37 UTC 2017
selfserv_9505 with PID 28731 started at Wed May 10 11:41:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 28731 at Wed May 10 11:41:37 UTC 2017
kill -USR1 28731
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28731 killed at Wed May 10 11:41:37 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28799 >/dev/null 2>/dev/null
selfserv_9505 with PID 28799 found at Wed May 10 11:41:37 UTC 2017
selfserv_9505 with PID 28799 started at Wed May 10 11:41:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 28799 at Wed May 10 11:41:37 UTC 2017
kill -USR1 28799
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28799 killed at Wed May 10 11:41:37 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28855 >/dev/null 2>/dev/null
selfserv_9505 with PID 28855 found at Wed May 10 11:41:37 UTC 2017
selfserv_9505 with PID 28855 started at Wed May 10 11:41:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 28855 at Wed May 10 11:41:38 UTC 2017
kill -USR1 28855
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28855 killed at Wed May 10 11:41:38 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28911 >/dev/null 2>/dev/null
selfserv_9505 with PID 28911 found at Wed May 10 11:41:38 UTC 2017
selfserv_9505 with PID 28911 started at Wed May 10 11:41:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 28911 at Wed May 10 11:41:38 UTC 2017
kill -USR1 28911
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28911 killed at Wed May 10 11:41:38 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28979 >/dev/null 2>/dev/null
selfserv_9505 with PID 28979 found at Wed May 10 11:41:38 UTC 2017
selfserv_9505 with PID 28979 started at Wed May 10 11:41:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 28979 at Wed May 10 11:41:38 UTC 2017
kill -USR1 28979
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28979 killed at Wed May 10 11:41:38 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29035 >/dev/null 2>/dev/null
selfserv_9505 with PID 29035 found at Wed May 10 11:41:38 UTC 2017
selfserv_9505 with PID 29035 started at Wed May 10 11:41:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29035 at Wed May 10 11:41:38 UTC 2017
kill -USR1 29035
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29035 killed at Wed May 10 11:41:38 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29091 >/dev/null 2>/dev/null
selfserv_9505 with PID 29091 found at Wed May 10 11:41:39 UTC 2017
selfserv_9505 with PID 29091 started at Wed May 10 11:41:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29091 at Wed May 10 11:41:39 UTC 2017
kill -USR1 29091
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29091 killed at Wed May 10 11:41:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 11:41:39 UTC 2017
selfserv_9505 with PID 29159 started at Wed May 10 11:41:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29159 at Wed May 10 11:41:39 UTC 2017
kill -USR1 29159
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29159 killed at Wed May 10 11:41:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29215 >/dev/null 2>/dev/null
selfserv_9505 with PID 29215 found at Wed May 10 11:41:39 UTC 2017
selfserv_9505 with PID 29215 started at Wed May 10 11:41:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29215 at Wed May 10 11:41:40 UTC 2017
kill -USR1 29215
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29215 killed at Wed May 10 11:41:40 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29271 >/dev/null 2>/dev/null
selfserv_9505 with PID 29271 found at Wed May 10 11:41:40 UTC 2017
selfserv_9505 with PID 29271 started at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29271 at Wed May 10 11:41:40 UTC 2017
kill -USR1 29271
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29271 killed at Wed May 10 11:41:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29339 >/dev/null 2>/dev/null
selfserv_9505 with PID 29339 found at Wed May 10 11:41:40 UTC 2017
selfserv_9505 with PID 29339 started at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29339 at Wed May 10 11:41:40 UTC 2017
kill -USR1 29339
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29339 killed at Wed May 10 11:41:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29395 >/dev/null 2>/dev/null
selfserv_9505 with PID 29395 found at Wed May 10 11:41:40 UTC 2017
selfserv_9505 with PID 29395 started at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29395 at Wed May 10 11:41:40 UTC 2017
kill -USR1 29395
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29395 killed at Wed May 10 11:41:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29451 >/dev/null 2>/dev/null
selfserv_9505 with PID 29451 found at Wed May 10 11:41:41 UTC 2017
selfserv_9505 with PID 29451 started at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29451 at Wed May 10 11:41:41 UTC 2017
kill -USR1 29451
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29451 killed at Wed May 10 11:41:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29519 >/dev/null 2>/dev/null
selfserv_9505 with PID 29519 found at Wed May 10 11:41:41 UTC 2017
selfserv_9505 with PID 29519 started at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #950: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29519 at Wed May 10 11:41:41 UTC 2017
kill -USR1 29519
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29519 killed at Wed May 10 11:41:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29575 >/dev/null 2>/dev/null
selfserv_9505 with PID 29575 found at Wed May 10 11:41:41 UTC 2017
selfserv_9505 with PID 29575 started at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29575 at Wed May 10 11:41:41 UTC 2017
kill -USR1 29575
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29575 killed at Wed May 10 11:41:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29631 >/dev/null 2>/dev/null
selfserv_9505 with PID 29631 found at Wed May 10 11:41:41 UTC 2017
selfserv_9505 with PID 29631 started at Wed May 10 11:41:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #952: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29631 at Wed May 10 11:41:42 UTC 2017
kill -USR1 29631
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29631 killed at Wed May 10 11:41:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29699 >/dev/null 2>/dev/null
selfserv_9505 with PID 29699 found at Wed May 10 11:41:42 UTC 2017
selfserv_9505 with PID 29699 started at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #953: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29699 at Wed May 10 11:41:42 UTC 2017
kill -USR1 29699
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29699 killed at Wed May 10 11:41:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29755 >/dev/null 2>/dev/null
selfserv_9505 with PID 29755 found at Wed May 10 11:41:42 UTC 2017
selfserv_9505 with PID 29755 started at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #954: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 29755 at Wed May 10 11:41:42 UTC 2017
kill -USR1 29755
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29755 killed at Wed May 10 11:41:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29811 >/dev/null 2>/dev/null
selfserv_9505 with PID 29811 found at Wed May 10 11:41:42 UTC 2017
selfserv_9505 with PID 29811 started at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #955: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29811 at Wed May 10 11:41:42 UTC 2017
kill -USR1 29811
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29811 killed at Wed May 10 11:41:42 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29879 >/dev/null 2>/dev/null
selfserv_9505 with PID 29879 found at Wed May 10 11:41:42 UTC 2017
selfserv_9505 with PID 29879 started at Wed May 10 11:41:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #956: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29879 at Wed May 10 11:41:43 UTC 2017
kill -USR1 29879
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29879 killed at Wed May 10 11:41:43 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29935 >/dev/null 2>/dev/null
selfserv_9505 with PID 29935 found at Wed May 10 11:41:43 UTC 2017
selfserv_9505 with PID 29935 started at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #957: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29935 at Wed May 10 11:41:43 UTC 2017
kill -USR1 29935
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29935 killed at Wed May 10 11:41:43 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29991 >/dev/null 2>/dev/null
selfserv_9505 with PID 29991 found at Wed May 10 11:41:43 UTC 2017
selfserv_9505 with PID 29991 started at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #958: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29991 at Wed May 10 11:41:43 UTC 2017
kill -USR1 29991
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29991 killed at Wed May 10 11:41:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30059 >/dev/null 2>/dev/null
selfserv_9505 with PID 30059 found at Wed May 10 11:41:43 UTC 2017
selfserv_9505 with PID 30059 started at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #959: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 30059 at Wed May 10 11:41:43 UTC 2017
kill -USR1 30059
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30059 killed at Wed May 10 11:41:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30115 >/dev/null 2>/dev/null
selfserv_9505 with PID 30115 found at Wed May 10 11:41:43 UTC 2017
selfserv_9505 with PID 30115 started at Wed May 10 11:41:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #960: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 30115 at Wed May 10 11:41:44 UTC 2017
kill -USR1 30115
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30115 killed at Wed May 10 11:41:44 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30171 >/dev/null 2>/dev/null
selfserv_9505 with PID 30171 found at Wed May 10 11:41:44 UTC 2017
selfserv_9505 with PID 30171 started at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #961: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 30171 at Wed May 10 11:41:44 UTC 2017
kill -USR1 30171
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30171 killed at Wed May 10 11:41:44 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30239 >/dev/null 2>/dev/null
selfserv_9505 with PID 30239 found at Wed May 10 11:41:44 UTC 2017
selfserv_9505 with PID 30239 started at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 30239 at Wed May 10 11:41:44 UTC 2017
kill -USR1 30239
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30239 killed at Wed May 10 11:41:44 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30295 >/dev/null 2>/dev/null
selfserv_9505 with PID 30295 found at Wed May 10 11:41:44 UTC 2017
selfserv_9505 with PID 30295 started at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30295 at Wed May 10 11:41:44 UTC 2017
kill -USR1 30295
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30295 killed at Wed May 10 11:41:44 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30351 >/dev/null 2>/dev/null
selfserv_9505 with PID 30351 found at Wed May 10 11:41:44 UTC 2017
selfserv_9505 with PID 30351 started at Wed May 10 11:41:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 30351 at Wed May 10 11:41:45 UTC 2017
kill -USR1 30351
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30351 killed at Wed May 10 11:41:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30419 >/dev/null 2>/dev/null
selfserv_9505 with PID 30419 found at Wed May 10 11:41:45 UTC 2017
selfserv_9505 with PID 30419 started at Wed May 10 11:41:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #965: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30419 at Wed May 10 11:41:45 UTC 2017
kill -USR1 30419
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30419 killed at Wed May 10 11:41:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30475 >/dev/null 2>/dev/null
selfserv_9505 with PID 30475 found at Wed May 10 11:41:45 UTC 2017
selfserv_9505 with PID 30475 started at Wed May 10 11:41:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #966: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30475 at Wed May 10 11:41:45 UTC 2017
kill -USR1 30475
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30475 killed at Wed May 10 11:41:45 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30531 >/dev/null 2>/dev/null
selfserv_9505 with PID 30531 found at Wed May 10 11:41:45 UTC 2017
selfserv_9505 with PID 30531 started at Wed May 10 11:41:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #967: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30531 at Wed May 10 11:41:46 UTC 2017
kill -USR1 30531
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30531 killed at Wed May 10 11:41:46 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30599 >/dev/null 2>/dev/null
selfserv_9505 with PID 30599 found at Wed May 10 11:41:46 UTC 2017
selfserv_9505 with PID 30599 started at Wed May 10 11:41:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #968: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30599 at Wed May 10 11:41:46 UTC 2017
kill -USR1 30599
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30599 killed at Wed May 10 11:41:46 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30655 >/dev/null 2>/dev/null
selfserv_9505 with PID 30655 found at Wed May 10 11:41:46 UTC 2017
selfserv_9505 with PID 30655 started at Wed May 10 11:41:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30655 at Wed May 10 11:41:47 UTC 2017
kill -USR1 30655
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30655 killed at Wed May 10 11:41:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30711 >/dev/null 2>/dev/null
selfserv_9505 with PID 30711 found at Wed May 10 11:41:47 UTC 2017
selfserv_9505 with PID 30711 started at Wed May 10 11:41:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #970: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30711 at Wed May 10 11:41:47 UTC 2017
kill -USR1 30711
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30711 killed at Wed May 10 11:41:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30779 >/dev/null 2>/dev/null
selfserv_9505 with PID 30779 found at Wed May 10 11:41:47 UTC 2017
selfserv_9505 with PID 30779 started at Wed May 10 11:41:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #971: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30779 at Wed May 10 11:41:47 UTC 2017
kill -USR1 30779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30779 killed at Wed May 10 11:41:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30835 >/dev/null 2>/dev/null
selfserv_9505 with PID 30835 found at Wed May 10 11:41:47 UTC 2017
selfserv_9505 with PID 30835 started at Wed May 10 11:41:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30835 at Wed May 10 11:41:48 UTC 2017
kill -USR1 30835
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30835 killed at Wed May 10 11:41:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30891 >/dev/null 2>/dev/null
selfserv_9505 with PID 30891 found at Wed May 10 11:41:48 UTC 2017
selfserv_9505 with PID 30891 started at Wed May 10 11:41:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #973: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30891 at Wed May 10 11:41:48 UTC 2017
kill -USR1 30891
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30891 killed at Wed May 10 11:41:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30959 >/dev/null 2>/dev/null
selfserv_9505 with PID 30959 found at Wed May 10 11:41:48 UTC 2017
selfserv_9505 with PID 30959 started at Wed May 10 11:41:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #974: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30959 at Wed May 10 11:41:48 UTC 2017
kill -USR1 30959
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30959 killed at Wed May 10 11:41:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31015 >/dev/null 2>/dev/null
selfserv_9505 with PID 31015 found at Wed May 10 11:41:48 UTC 2017
selfserv_9505 with PID 31015 started at Wed May 10 11:41:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #975: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31015 at Wed May 10 11:41:49 UTC 2017
kill -USR1 31015
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31015 killed at Wed May 10 11:41:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31071 >/dev/null 2>/dev/null
selfserv_9505 with PID 31071 found at Wed May 10 11:41:49 UTC 2017
selfserv_9505 with PID 31071 started at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #976: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31071 at Wed May 10 11:41:49 UTC 2017
kill -USR1 31071
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31071 killed at Wed May 10 11:41:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31139 >/dev/null 2>/dev/null
selfserv_9505 with PID 31139 found at Wed May 10 11:41:49 UTC 2017
selfserv_9505 with PID 31139 started at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31139 at Wed May 10 11:41:49 UTC 2017
kill -USR1 31139
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31139 killed at Wed May 10 11:41:49 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31195 >/dev/null 2>/dev/null
selfserv_9505 with PID 31195 found at Wed May 10 11:41:49 UTC 2017
selfserv_9505 with PID 31195 started at Wed May 10 11:41:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31195 at Wed May 10 11:41:50 UTC 2017
kill -USR1 31195
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31195 killed at Wed May 10 11:41:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31251 >/dev/null 2>/dev/null
selfserv_9505 with PID 31251 found at Wed May 10 11:41:50 UTC 2017
selfserv_9505 with PID 31251 started at Wed May 10 11:41:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31251 at Wed May 10 11:41:50 UTC 2017
kill -USR1 31251
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31251 killed at Wed May 10 11:41:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31319 >/dev/null 2>/dev/null
selfserv_9505 with PID 31319 found at Wed May 10 11:41:50 UTC 2017
selfserv_9505 with PID 31319 started at Wed May 10 11:41:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31319 at Wed May 10 11:41:50 UTC 2017
kill -USR1 31319
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31319 killed at Wed May 10 11:41:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31375 >/dev/null 2>/dev/null
selfserv_9505 with PID 31375 found at Wed May 10 11:41:50 UTC 2017
selfserv_9505 with PID 31375 started at Wed May 10 11:41:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31375 at Wed May 10 11:41:51 UTC 2017
kill -USR1 31375
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31375 killed at Wed May 10 11:41:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31431 >/dev/null 2>/dev/null
selfserv_9505 with PID 31431 found at Wed May 10 11:41:51 UTC 2017
selfserv_9505 with PID 31431 started at Wed May 10 11:41:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31431 at Wed May 10 11:41:51 UTC 2017
kill -USR1 31431
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31431 killed at Wed May 10 11:41:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31500 >/dev/null 2>/dev/null
selfserv_9505 with PID 31500 found at Wed May 10 11:41:51 UTC 2017
selfserv_9505 with PID 31500 started at Wed May 10 11:41:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31500 at Wed May 10 11:41:51 UTC 2017
kill -USR1 31500
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31500 killed at Wed May 10 11:41:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31556 >/dev/null 2>/dev/null
selfserv_9505 with PID 31556 found at Wed May 10 11:41:52 UTC 2017
selfserv_9505 with PID 31556 started at Wed May 10 11:41:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31556 at Wed May 10 11:41:52 UTC 2017
kill -USR1 31556
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31556 killed at Wed May 10 11:41:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31612 >/dev/null 2>/dev/null
selfserv_9505 with PID 31612 found at Wed May 10 11:41:52 UTC 2017
selfserv_9505 with PID 31612 started at Wed May 10 11:41:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31612 at Wed May 10 11:41:52 UTC 2017
kill -USR1 31612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31612 killed at Wed May 10 11:41:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31680 >/dev/null 2>/dev/null
selfserv_9505 with PID 31680 found at Wed May 10 11:41:52 UTC 2017
selfserv_9505 with PID 31680 started at Wed May 10 11:41:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31680 at Wed May 10 11:41:52 UTC 2017
kill -USR1 31680
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31680 killed at Wed May 10 11:41:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31736 >/dev/null 2>/dev/null
selfserv_9505 with PID 31736 found at Wed May 10 11:41:53 UTC 2017
selfserv_9505 with PID 31736 started at Wed May 10 11:41:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31736 at Wed May 10 11:41:53 UTC 2017
kill -USR1 31736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31736 killed at Wed May 10 11:41:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31792 >/dev/null 2>/dev/null
selfserv_9505 with PID 31792 found at Wed May 10 11:41:53 UTC 2017
selfserv_9505 with PID 31792 started at Wed May 10 11:41:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31792 at Wed May 10 11:41:53 UTC 2017
kill -USR1 31792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31792 killed at Wed May 10 11:41:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31860 >/dev/null 2>/dev/null
selfserv_9505 with PID 31860 found at Wed May 10 11:41:53 UTC 2017
selfserv_9505 with PID 31860 started at Wed May 10 11:41:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #989: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31860 at Wed May 10 11:41:54 UTC 2017
kill -USR1 31860
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31860 killed at Wed May 10 11:41:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31916 >/dev/null 2>/dev/null
selfserv_9505 with PID 31916 found at Wed May 10 11:41:54 UTC 2017
selfserv_9505 with PID 31916 started at Wed May 10 11:41:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #990: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31916 at Wed May 10 11:41:54 UTC 2017
kill -USR1 31916
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31916 killed at Wed May 10 11:41:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31972 >/dev/null 2>/dev/null
selfserv_9505 with PID 31972 found at Wed May 10 11:41:54 UTC 2017
selfserv_9505 with PID 31972 started at Wed May 10 11:41:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #991: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31972 at Wed May 10 11:41:55 UTC 2017
kill -USR1 31972
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31972 killed at Wed May 10 11:41:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32040 >/dev/null 2>/dev/null
selfserv_9505 with PID 32040 found at Wed May 10 11:41:55 UTC 2017
selfserv_9505 with PID 32040 started at Wed May 10 11:41:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32040 at Wed May 10 11:41:55 UTC 2017
kill -USR1 32040
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32040 killed at Wed May 10 11:41:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32096 >/dev/null 2>/dev/null
selfserv_9505 with PID 32096 found at Wed May 10 11:41:55 UTC 2017
selfserv_9505 with PID 32096 started at Wed May 10 11:41:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32096 at Wed May 10 11:41:55 UTC 2017
kill -USR1 32096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32096 killed at Wed May 10 11:41:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32152 >/dev/null 2>/dev/null
selfserv_9505 with PID 32152 found at Wed May 10 11:41:55 UTC 2017
selfserv_9505 with PID 32152 started at Wed May 10 11:41:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32152 at Wed May 10 11:41:56 UTC 2017
kill -USR1 32152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32152 killed at Wed May 10 11:41:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32220 >/dev/null 2>/dev/null
selfserv_9505 with PID 32220 found at Wed May 10 11:41:56 UTC 2017
selfserv_9505 with PID 32220 started at Wed May 10 11:41:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #995: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32220 at Wed May 10 11:41:56 UTC 2017
kill -USR1 32220
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32220 killed at Wed May 10 11:41:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32276 >/dev/null 2>/dev/null
selfserv_9505 with PID 32276 found at Wed May 10 11:41:56 UTC 2017
selfserv_9505 with PID 32276 started at Wed May 10 11:41:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #996: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32276 at Wed May 10 11:41:56 UTC 2017
kill -USR1 32276
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32276 killed at Wed May 10 11:41:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32332 >/dev/null 2>/dev/null
selfserv_9505 with PID 32332 found at Wed May 10 11:41:56 UTC 2017
selfserv_9505 with PID 32332 started at Wed May 10 11:41:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #997: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32332 at Wed May 10 11:41:57 UTC 2017
kill -USR1 32332
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32332 killed at Wed May 10 11:41:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32400 >/dev/null 2>/dev/null
selfserv_9505 with PID 32400 found at Wed May 10 11:41:57 UTC 2017
selfserv_9505 with PID 32400 started at Wed May 10 11:41:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32400 at Wed May 10 11:41:57 UTC 2017
kill -USR1 32400
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32400 killed at Wed May 10 11:41:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32456 >/dev/null 2>/dev/null
selfserv_9505 with PID 32456 found at Wed May 10 11:41:57 UTC 2017
selfserv_9505 with PID 32456 started at Wed May 10 11:41:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32456 at Wed May 10 11:41:57 UTC 2017
kill -USR1 32456
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32456 killed at Wed May 10 11:41:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:41:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32512 >/dev/null 2>/dev/null
selfserv_9505 with PID 32512 found at Wed May 10 11:41:58 UTC 2017
selfserv_9505 with PID 32512 started at Wed May 10 11:41:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32512 at Wed May 10 11:41:58 UTC 2017
kill -USR1 32512
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32512 killed at Wed May 10 11:41:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32580 >/dev/null 2>/dev/null
selfserv_9505 with PID 32580 found at Wed May 10 11:41:58 UTC 2017
selfserv_9505 with PID 32580 started at Wed May 10 11:41:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1001: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32580 at Wed May 10 11:41:58 UTC 2017
kill -USR1 32580
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32580 killed at Wed May 10 11:41:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32636 >/dev/null 2>/dev/null
selfserv_9505 with PID 32636 found at Wed May 10 11:41:58 UTC 2017
selfserv_9505 with PID 32636 started at Wed May 10 11:41:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1002: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32636 at Wed May 10 11:41:58 UTC 2017
kill -USR1 32636
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32636 killed at Wed May 10 11:41:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:41:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32692 >/dev/null 2>/dev/null
selfserv_9505 with PID 32692 found at Wed May 10 11:41:59 UTC 2017
selfserv_9505 with PID 32692 started at Wed May 10 11:41:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1003: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32692 at Wed May 10 11:41:59 UTC 2017
kill -USR1 32692
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32692 killed at Wed May 10 11:41:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32760 >/dev/null 2>/dev/null
selfserv_9505 with PID 32760 found at Wed May 10 11:41:59 UTC 2017
selfserv_9505 with PID 32760 started at Wed May 10 11:41:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1004: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32760 at Wed May 10 11:41:59 UTC 2017
kill -USR1 32760
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32760 killed at Wed May 10 11:41:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:41:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:41:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 353 >/dev/null 2>/dev/null
selfserv_9505 with PID 353 found at Wed May 10 11:41:59 UTC 2017
selfserv_9505 with PID 353 started at Wed May 10 11:41:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 353 at Wed May 10 11:41:59 UTC 2017
kill -USR1 353
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 353 killed at Wed May 10 11:42:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 412 >/dev/null 2>/dev/null
selfserv_9505 with PID 412 found at Wed May 10 11:42:00 UTC 2017
selfserv_9505 with PID 412 started at Wed May 10 11:42:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1006: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 412 at Wed May 10 11:42:00 UTC 2017
kill -USR1 412
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 412 killed at Wed May 10 11:42:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 491 >/dev/null 2>/dev/null
selfserv_9505 with PID 491 found at Wed May 10 11:42:00 UTC 2017
selfserv_9505 with PID 491 started at Wed May 10 11:42:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1007: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 491 at Wed May 10 11:42:00 UTC 2017
kill -USR1 491
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 491 killed at Wed May 10 11:42:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 551 >/dev/null 2>/dev/null
selfserv_9505 with PID 551 found at Wed May 10 11:42:00 UTC 2017
selfserv_9505 with PID 551 started at Wed May 10 11:42:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1008: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 551 at Wed May 10 11:42:00 UTC 2017
kill -USR1 551
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 551 killed at Wed May 10 11:42:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 607 >/dev/null 2>/dev/null
selfserv_9505 with PID 607 found at Wed May 10 11:42:01 UTC 2017
selfserv_9505 with PID 607 started at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1009: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 607 at Wed May 10 11:42:01 UTC 2017
kill -USR1 607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 607 killed at Wed May 10 11:42:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:42:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 679 >/dev/null 2>/dev/null
selfserv_9505 with PID 679 found at Wed May 10 11:42:01 UTC 2017
selfserv_9505 with PID 679 started at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1010: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 679 at Wed May 10 11:42:01 UTC 2017
kill -USR1 679
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 679 killed at Wed May 10 11:42:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:42:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 789 >/dev/null 2>/dev/null
selfserv_9505 with PID 789 found at Wed May 10 11:42:01 UTC 2017
selfserv_9505 with PID 789 started at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1011: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 789 at Wed May 10 11:42:01 UTC 2017
kill -USR1 789
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 789 killed at Wed May 10 11:42:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:42:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 845 >/dev/null 2>/dev/null
selfserv_9505 with PID 845 found at Wed May 10 11:42:01 UTC 2017
selfserv_9505 with PID 845 started at Wed May 10 11:42:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1012: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 845 at Wed May 10 11:42:02 UTC 2017
kill -USR1 845
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 845 killed at Wed May 10 11:42:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 913 >/dev/null 2>/dev/null
selfserv_9505 with PID 913 found at Wed May 10 11:42:02 UTC 2017
selfserv_9505 with PID 913 started at Wed May 10 11:42:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1013: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 913 at Wed May 10 11:42:02 UTC 2017
kill -USR1 913
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 913 killed at Wed May 10 11:42:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 969 >/dev/null 2>/dev/null
selfserv_9505 with PID 969 found at Wed May 10 11:42:02 UTC 2017
selfserv_9505 with PID 969 started at Wed May 10 11:42:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1014: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 969 at Wed May 10 11:42:02 UTC 2017
kill -USR1 969
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 969 killed at Wed May 10 11:42:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1028 >/dev/null 2>/dev/null
selfserv_9505 with PID 1028 found at Wed May 10 11:42:02 UTC 2017
selfserv_9505 with PID 1028 started at Wed May 10 11:42:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1015: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1028 at Wed May 10 11:42:03 UTC 2017
kill -USR1 1028
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1028 killed at Wed May 10 11:42:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1096 >/dev/null 2>/dev/null
selfserv_9505 with PID 1096 found at Wed May 10 11:42:03 UTC 2017
selfserv_9505 with PID 1096 started at Wed May 10 11:42:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1016: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1096 at Wed May 10 11:42:03 UTC 2017
kill -USR1 1096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1096 killed at Wed May 10 11:42:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1152 >/dev/null 2>/dev/null
selfserv_9505 with PID 1152 found at Wed May 10 11:42:03 UTC 2017
selfserv_9505 with PID 1152 started at Wed May 10 11:42:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1017: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1152 at Wed May 10 11:42:03 UTC 2017
kill -USR1 1152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1152 killed at Wed May 10 11:42:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1208 >/dev/null 2>/dev/null
selfserv_9505 with PID 1208 found at Wed May 10 11:42:03 UTC 2017
selfserv_9505 with PID 1208 started at Wed May 10 11:42:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1018: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1208 at Wed May 10 11:42:03 UTC 2017
kill -USR1 1208
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1208 killed at Wed May 10 11:42:03 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1285 >/dev/null 2>/dev/null
selfserv_9505 with PID 1285 found at Wed May 10 11:42:04 UTC 2017
selfserv_9505 with PID 1285 started at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1019: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1285 at Wed May 10 11:42:04 UTC 2017
kill -USR1 1285
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1285 killed at Wed May 10 11:42:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1341 >/dev/null 2>/dev/null
selfserv_9505 with PID 1341 found at Wed May 10 11:42:04 UTC 2017
selfserv_9505 with PID 1341 started at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1020: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1341 at Wed May 10 11:42:04 UTC 2017
kill -USR1 1341
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1341 killed at Wed May 10 11:42:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1397 >/dev/null 2>/dev/null
selfserv_9505 with PID 1397 found at Wed May 10 11:42:04 UTC 2017
selfserv_9505 with PID 1397 started at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1021: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1397 at Wed May 10 11:42:04 UTC 2017
kill -USR1 1397
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1397 killed at Wed May 10 11:42:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1465 >/dev/null 2>/dev/null
selfserv_9505 with PID 1465 found at Wed May 10 11:42:04 UTC 2017
selfserv_9505 with PID 1465 started at Wed May 10 11:42:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1022: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1465 at Wed May 10 11:42:05 UTC 2017
kill -USR1 1465
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1465 killed at Wed May 10 11:42:05 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1521 >/dev/null 2>/dev/null
selfserv_9505 with PID 1521 found at Wed May 10 11:42:05 UTC 2017
selfserv_9505 with PID 1521 started at Wed May 10 11:42:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1023: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1521 at Wed May 10 11:42:05 UTC 2017
kill -USR1 1521
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1521 killed at Wed May 10 11:42:05 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1577 >/dev/null 2>/dev/null
selfserv_9505 with PID 1577 found at Wed May 10 11:42:05 UTC 2017
selfserv_9505 with PID 1577 started at Wed May 10 11:42:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1024: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1577 at Wed May 10 11:42:05 UTC 2017
kill -USR1 1577
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1577 killed at Wed May 10 11:42:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1645 >/dev/null 2>/dev/null
selfserv_9505 with PID 1645 found at Wed May 10 11:42:05 UTC 2017
selfserv_9505 with PID 1645 started at Wed May 10 11:42:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1025: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1645 at Wed May 10 11:42:06 UTC 2017
kill -USR1 1645
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1645 killed at Wed May 10 11:42:06 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1701 >/dev/null 2>/dev/null
selfserv_9505 with PID 1701 found at Wed May 10 11:42:06 UTC 2017
selfserv_9505 with PID 1701 started at Wed May 10 11:42:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1026: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1701 at Wed May 10 11:42:06 UTC 2017
kill -USR1 1701
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1701 killed at Wed May 10 11:42:06 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1757 >/dev/null 2>/dev/null
selfserv_9505 with PID 1757 found at Wed May 10 11:42:06 UTC 2017
selfserv_9505 with PID 1757 started at Wed May 10 11:42:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1027: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1757 at Wed May 10 11:42:06 UTC 2017
kill -USR1 1757
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1757 killed at Wed May 10 11:42:06 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1825 >/dev/null 2>/dev/null
selfserv_9505 with PID 1825 found at Wed May 10 11:42:06 UTC 2017
selfserv_9505 with PID 1825 started at Wed May 10 11:42:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1028: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1825 at Wed May 10 11:42:07 UTC 2017
kill -USR1 1825
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1825 killed at Wed May 10 11:42:07 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1881 >/dev/null 2>/dev/null
selfserv_9505 with PID 1881 found at Wed May 10 11:42:07 UTC 2017
selfserv_9505 with PID 1881 started at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1029: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1881 at Wed May 10 11:42:07 UTC 2017
kill -USR1 1881
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1881 killed at Wed May 10 11:42:07 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1937 >/dev/null 2>/dev/null
selfserv_9505 with PID 1937 found at Wed May 10 11:42:07 UTC 2017
selfserv_9505 with PID 1937 started at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1030: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 1937 at Wed May 10 11:42:07 UTC 2017
kill -USR1 1937
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1937 killed at Wed May 10 11:42:07 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2005 >/dev/null 2>/dev/null
selfserv_9505 with PID 2005 found at Wed May 10 11:42:07 UTC 2017
selfserv_9505 with PID 2005 started at Wed May 10 11:42:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1031: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2005 at Wed May 10 11:42:08 UTC 2017
kill -USR1 2005
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2005 killed at Wed May 10 11:42:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2061 >/dev/null 2>/dev/null
selfserv_9505 with PID 2061 found at Wed May 10 11:42:08 UTC 2017
selfserv_9505 with PID 2061 started at Wed May 10 11:42:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1032: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2061 at Wed May 10 11:42:08 UTC 2017
kill -USR1 2061
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2061 killed at Wed May 10 11:42:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2117 >/dev/null 2>/dev/null
selfserv_9505 with PID 2117 found at Wed May 10 11:42:08 UTC 2017
selfserv_9505 with PID 2117 started at Wed May 10 11:42:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1033: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2117 at Wed May 10 11:42:08 UTC 2017
kill -USR1 2117
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2117 killed at Wed May 10 11:42:08 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2185 >/dev/null 2>/dev/null
selfserv_9505 with PID 2185 found at Wed May 10 11:42:08 UTC 2017
selfserv_9505 with PID 2185 started at Wed May 10 11:42:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1034: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2185 at Wed May 10 11:42:09 UTC 2017
kill -USR1 2185
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2185 killed at Wed May 10 11:42:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2241 >/dev/null 2>/dev/null
selfserv_9505 with PID 2241 found at Wed May 10 11:42:09 UTC 2017
selfserv_9505 with PID 2241 started at Wed May 10 11:42:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1035: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2241 at Wed May 10 11:42:09 UTC 2017
kill -USR1 2241
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2241 killed at Wed May 10 11:42:09 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2297 >/dev/null 2>/dev/null
selfserv_9505 with PID 2297 found at Wed May 10 11:42:09 UTC 2017
selfserv_9505 with PID 2297 started at Wed May 10 11:42:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1036: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2297 at Wed May 10 11:42:09 UTC 2017
kill -USR1 2297
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2297 killed at Wed May 10 11:42:09 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2365 >/dev/null 2>/dev/null
selfserv_9505 with PID 2365 found at Wed May 10 11:42:09 UTC 2017
selfserv_9505 with PID 2365 started at Wed May 10 11:42:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1037: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2365 at Wed May 10 11:42:09 UTC 2017
kill -USR1 2365
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2365 killed at Wed May 10 11:42:10 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2421 >/dev/null 2>/dev/null
selfserv_9505 with PID 2421 found at Wed May 10 11:42:10 UTC 2017
selfserv_9505 with PID 2421 started at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1038: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2421 at Wed May 10 11:42:10 UTC 2017
kill -USR1 2421
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2421 killed at Wed May 10 11:42:10 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2477 >/dev/null 2>/dev/null
selfserv_9505 with PID 2477 found at Wed May 10 11:42:10 UTC 2017
selfserv_9505 with PID 2477 started at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1039: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2477 at Wed May 10 11:42:10 UTC 2017
kill -USR1 2477
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2477 killed at Wed May 10 11:42:10 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2545 >/dev/null 2>/dev/null
selfserv_9505 with PID 2545 found at Wed May 10 11:42:10 UTC 2017
selfserv_9505 with PID 2545 started at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1040: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2545 at Wed May 10 11:42:10 UTC 2017
kill -USR1 2545
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2545 killed at Wed May 10 11:42:10 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2601 >/dev/null 2>/dev/null
selfserv_9505 with PID 2601 found at Wed May 10 11:42:10 UTC 2017
selfserv_9505 with PID 2601 started at Wed May 10 11:42:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1041: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2601 at Wed May 10 11:42:11 UTC 2017
kill -USR1 2601
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2601 killed at Wed May 10 11:42:11 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2657 >/dev/null 2>/dev/null
selfserv_9505 with PID 2657 found at Wed May 10 11:42:11 UTC 2017
selfserv_9505 with PID 2657 started at Wed May 10 11:42:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1042: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2657 at Wed May 10 11:42:11 UTC 2017
kill -USR1 2657
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2657 killed at Wed May 10 11:42:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2725 >/dev/null 2>/dev/null
selfserv_9505 with PID 2725 found at Wed May 10 11:42:11 UTC 2017
selfserv_9505 with PID 2725 started at Wed May 10 11:42:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1043: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2725 at Wed May 10 11:42:11 UTC 2017
kill -USR1 2725
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2725 killed at Wed May 10 11:42:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2781 >/dev/null 2>/dev/null
selfserv_9505 with PID 2781 found at Wed May 10 11:42:12 UTC 2017
selfserv_9505 with PID 2781 started at Wed May 10 11:42:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1044: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2781 at Wed May 10 11:42:12 UTC 2017
kill -USR1 2781
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2781 killed at Wed May 10 11:42:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2837 >/dev/null 2>/dev/null
selfserv_9505 with PID 2837 found at Wed May 10 11:42:12 UTC 2017
selfserv_9505 with PID 2837 started at Wed May 10 11:42:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1045: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2837 at Wed May 10 11:42:12 UTC 2017
kill -USR1 2837
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2837 killed at Wed May 10 11:42:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2905 >/dev/null 2>/dev/null
selfserv_9505 with PID 2905 found at Wed May 10 11:42:12 UTC 2017
selfserv_9505 with PID 2905 started at Wed May 10 11:42:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1046: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 2905 at Wed May 10 11:42:13 UTC 2017
kill -USR1 2905
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2905 killed at Wed May 10 11:42:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2961 >/dev/null 2>/dev/null
selfserv_9505 with PID 2961 found at Wed May 10 11:42:13 UTC 2017
selfserv_9505 with PID 2961 started at Wed May 10 11:42:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1047: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2961 at Wed May 10 11:42:13 UTC 2017
kill -USR1 2961
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2961 killed at Wed May 10 11:42:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3017 >/dev/null 2>/dev/null
selfserv_9505 with PID 3017 found at Wed May 10 11:42:13 UTC 2017
selfserv_9505 with PID 3017 started at Wed May 10 11:42:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1048: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3017 at Wed May 10 11:42:13 UTC 2017
kill -USR1 3017
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3017 killed at Wed May 10 11:42:13 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3085 >/dev/null 2>/dev/null
selfserv_9505 with PID 3085 found at Wed May 10 11:42:14 UTC 2017
selfserv_9505 with PID 3085 started at Wed May 10 11:42:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1049: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3085 at Wed May 10 11:42:14 UTC 2017
kill -USR1 3085
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3085 killed at Wed May 10 11:42:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3141 >/dev/null 2>/dev/null
selfserv_9505 with PID 3141 found at Wed May 10 11:42:14 UTC 2017
selfserv_9505 with PID 3141 started at Wed May 10 11:42:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1050: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3141 at Wed May 10 11:42:14 UTC 2017
kill -USR1 3141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3141 killed at Wed May 10 11:42:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3197 >/dev/null 2>/dev/null
selfserv_9505 with PID 3197 found at Wed May 10 11:42:14 UTC 2017
selfserv_9505 with PID 3197 started at Wed May 10 11:42:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1051: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3197 at Wed May 10 11:42:14 UTC 2017
kill -USR1 3197
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3197 killed at Wed May 10 11:42:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3265 >/dev/null 2>/dev/null
selfserv_9505 with PID 3265 found at Wed May 10 11:42:15 UTC 2017
selfserv_9505 with PID 3265 started at Wed May 10 11:42:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1052: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3265 at Wed May 10 11:42:15 UTC 2017
kill -USR1 3265
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3265 killed at Wed May 10 11:42:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3321 >/dev/null 2>/dev/null
selfserv_9505 with PID 3321 found at Wed May 10 11:42:15 UTC 2017
selfserv_9505 with PID 3321 started at Wed May 10 11:42:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1053: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3321 at Wed May 10 11:42:15 UTC 2017
kill -USR1 3321
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3321 killed at Wed May 10 11:42:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3377 >/dev/null 2>/dev/null
selfserv_9505 with PID 3377 found at Wed May 10 11:42:15 UTC 2017
selfserv_9505 with PID 3377 started at Wed May 10 11:42:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1054: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3377 at Wed May 10 11:42:16 UTC 2017
kill -USR1 3377
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3377 killed at Wed May 10 11:42:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3445 >/dev/null 2>/dev/null
selfserv_9505 with PID 3445 found at Wed May 10 11:42:16 UTC 2017
selfserv_9505 with PID 3445 started at Wed May 10 11:42:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1055: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3445 at Wed May 10 11:42:16 UTC 2017
kill -USR1 3445
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3445 killed at Wed May 10 11:42:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3501 >/dev/null 2>/dev/null
selfserv_9505 with PID 3501 found at Wed May 10 11:42:16 UTC 2017
selfserv_9505 with PID 3501 started at Wed May 10 11:42:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1056: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3501 at Wed May 10 11:42:16 UTC 2017
kill -USR1 3501
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3501 killed at Wed May 10 11:42:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3557 >/dev/null 2>/dev/null
selfserv_9505 with PID 3557 found at Wed May 10 11:42:17 UTC 2017
selfserv_9505 with PID 3557 started at Wed May 10 11:42:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1057: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3557 at Wed May 10 11:42:17 UTC 2017
kill -USR1 3557
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3557 killed at Wed May 10 11:42:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3625 >/dev/null 2>/dev/null
selfserv_9505 with PID 3625 found at Wed May 10 11:42:17 UTC 2017
selfserv_9505 with PID 3625 started at Wed May 10 11:42:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1058: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3625 at Wed May 10 11:42:17 UTC 2017
kill -USR1 3625
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3625 killed at Wed May 10 11:42:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3681 >/dev/null 2>/dev/null
selfserv_9505 with PID 3681 found at Wed May 10 11:42:17 UTC 2017
selfserv_9505 with PID 3681 started at Wed May 10 11:42:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3681 at Wed May 10 11:42:18 UTC 2017
kill -USR1 3681
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3681 killed at Wed May 10 11:42:18 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3737 >/dev/null 2>/dev/null
selfserv_9505 with PID 3737 found at Wed May 10 11:42:18 UTC 2017
selfserv_9505 with PID 3737 started at Wed May 10 11:42:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
ssl.sh: #1060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3737 at Wed May 10 11:42:18 UTC 2017
kill -USR1 3737
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3737 killed at Wed May 10 11:42:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3807 >/dev/null 2>/dev/null
selfserv_9505 with PID 3807 found at Wed May 10 11:42:18 UTC 2017
selfserv_9505 with PID 3807 started at Wed May 10 11:42:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3807 at Wed May 10 11:42:18 UTC 2017
kill -USR1 3807
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3807 killed at Wed May 10 11:42:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3869 >/dev/null 2>/dev/null
selfserv_9505 with PID 3869 found at Wed May 10 11:42:19 UTC 2017
selfserv_9505 with PID 3869 started at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1062: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3869 at Wed May 10 11:42:19 UTC 2017
kill -USR1 3869
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3869 killed at Wed May 10 11:42:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3929 >/dev/null 2>/dev/null
selfserv_9505 with PID 3929 found at Wed May 10 11:42:19 UTC 2017
selfserv_9505 with PID 3929 started at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1063: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3929 at Wed May 10 11:42:19 UTC 2017
kill -USR1 3929
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3929 killed at Wed May 10 11:42:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3997 >/dev/null 2>/dev/null
selfserv_9505 with PID 3997 found at Wed May 10 11:42:19 UTC 2017
selfserv_9505 with PID 3997 started at Wed May 10 11:42:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1064: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3997 at Wed May 10 11:42:20 UTC 2017
kill -USR1 3997
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3997 killed at Wed May 10 11:42:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4053 >/dev/null 2>/dev/null
selfserv_9505 with PID 4053 found at Wed May 10 11:42:20 UTC 2017
selfserv_9505 with PID 4053 started at Wed May 10 11:42:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1065: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4053 at Wed May 10 11:42:20 UTC 2017
kill -USR1 4053
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4053 killed at Wed May 10 11:42:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4109 >/dev/null 2>/dev/null
selfserv_9505 with PID 4109 found at Wed May 10 11:42:20 UTC 2017
selfserv_9505 with PID 4109 started at Wed May 10 11:42:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1066: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4109 at Wed May 10 11:42:21 UTC 2017
kill -USR1 4109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4109 killed at Wed May 10 11:42:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4177 >/dev/null 2>/dev/null
selfserv_9505 with PID 4177 found at Wed May 10 11:42:21 UTC 2017
selfserv_9505 with PID 4177 started at Wed May 10 11:42:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1067: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4177 at Wed May 10 11:42:21 UTC 2017
kill -USR1 4177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4177 killed at Wed May 10 11:42:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4233 >/dev/null 2>/dev/null
selfserv_9505 with PID 4233 found at Wed May 10 11:42:21 UTC 2017
selfserv_9505 with PID 4233 started at Wed May 10 11:42:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1068: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4233 at Wed May 10 11:42:21 UTC 2017
kill -USR1 4233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4233 killed at Wed May 10 11:42:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4289 >/dev/null 2>/dev/null
selfserv_9505 with PID 4289 found at Wed May 10 11:42:21 UTC 2017
selfserv_9505 with PID 4289 started at Wed May 10 11:42:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1069: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4289 at Wed May 10 11:42:22 UTC 2017
kill -USR1 4289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4289 killed at Wed May 10 11:42:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4357 >/dev/null 2>/dev/null
selfserv_9505 with PID 4357 found at Wed May 10 11:42:22 UTC 2017
selfserv_9505 with PID 4357 started at Wed May 10 11:42:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1070: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4357 at Wed May 10 11:42:22 UTC 2017
kill -USR1 4357
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4357 killed at Wed May 10 11:42:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4413 >/dev/null 2>/dev/null
selfserv_9505 with PID 4413 found at Wed May 10 11:42:22 UTC 2017
selfserv_9505 with PID 4413 started at Wed May 10 11:42:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1071: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4413 at Wed May 10 11:42:22 UTC 2017
kill -USR1 4413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4413 killed at Wed May 10 11:42:22 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4469 >/dev/null 2>/dev/null
selfserv_9505 with PID 4469 found at Wed May 10 11:42:22 UTC 2017
selfserv_9505 with PID 4469 started at Wed May 10 11:42:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1072: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4469 at Wed May 10 11:42:23 UTC 2017
kill -USR1 4469
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4469 killed at Wed May 10 11:42:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4537 >/dev/null 2>/dev/null
selfserv_9505 with PID 4537 found at Wed May 10 11:42:23 UTC 2017
selfserv_9505 with PID 4537 started at Wed May 10 11:42:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1073: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4537 at Wed May 10 11:42:23 UTC 2017
kill -USR1 4537
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4537 killed at Wed May 10 11:42:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4593 >/dev/null 2>/dev/null
selfserv_9505 with PID 4593 found at Wed May 10 11:42:23 UTC 2017
selfserv_9505 with PID 4593 started at Wed May 10 11:42:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1074: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4593 at Wed May 10 11:42:23 UTC 2017
kill -USR1 4593
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4593 killed at Wed May 10 11:42:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:42:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4649 >/dev/null 2>/dev/null
selfserv_9505 with PID 4649 found at Wed May 10 11:42:24 UTC 2017
selfserv_9505 with PID 4649 started at Wed May 10 11:42:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1075: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4649 at Wed May 10 11:42:24 UTC 2017
kill -USR1 4649
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4649 killed at Wed May 10 11:42:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4717 >/dev/null 2>/dev/null
selfserv_9505 with PID 4717 found at Wed May 10 11:42:24 UTC 2017
selfserv_9505 with PID 4717 started at Wed May 10 11:42:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1076: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4717 at Wed May 10 11:42:24 UTC 2017
kill -USR1 4717
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4717 killed at Wed May 10 11:42:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4773 >/dev/null 2>/dev/null
selfserv_9505 with PID 4773 found at Wed May 10 11:42:24 UTC 2017
selfserv_9505 with PID 4773 started at Wed May 10 11:42:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1077: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4773 at Wed May 10 11:42:24 UTC 2017
kill -USR1 4773
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4773 killed at Wed May 10 11:42:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4829 >/dev/null 2>/dev/null
selfserv_9505 with PID 4829 found at Wed May 10 11:42:25 UTC 2017
selfserv_9505 with PID 4829 started at Wed May 10 11:42:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1078: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4829 at Wed May 10 11:42:25 UTC 2017
kill -USR1 4829
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4829 killed at Wed May 10 11:42:25 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9505 starting at Wed May 10 11:42:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:25 UTC 2017
selfserv_9505 with PID 4892 started at Wed May 10 11:42:25 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:25 UTC 2017
ssl.sh: #1079: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:25 UTC 2017
ssl.sh: #1080: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1081: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1082: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1083: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1084: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1085: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1086: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:26 UTC 2017
ssl.sh: #1087: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:27 UTC 2017
ssl.sh: #1088: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:27 UTC 2017
ssl.sh: #1089: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:27 UTC 2017
ssl.sh: #1090: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:27 UTC 2017
ssl.sh: #1091: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1092: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:27 UTC 2017
ssl.sh: #1093: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1094: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1095: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1096: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1097: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1098: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1099: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:28 UTC 2017
ssl.sh: #1100: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:29 UTC 2017
ssl.sh: #1101: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:29 UTC 2017
ssl.sh: #1102: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:29 UTC 2017
ssl.sh: #1103: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:29 UTC 2017
ssl.sh: #1104: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:29 UTC 2017
ssl.sh: #1105: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1106: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1107: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1108: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1109: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1110: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1111: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1112: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:30 UTC 2017
ssl.sh: #1113: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1114: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1115: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1116: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1117: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1118: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4892 >/dev/null 2>/dev/null
selfserv_9505 with PID 4892 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1119: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 4892 at Wed May 10 11:42:31 UTC 2017
kill -USR1 4892
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4892 killed at Wed May 10 11:42:31 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:31 UTC 2017
selfserv_9505 with PID 6315 started at Wed May 10 11:42:31 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:31 UTC 2017
ssl.sh: #1120: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1121: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1122: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1123: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1124: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1125: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1126: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1127: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:32 UTC 2017
ssl.sh: #1128: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1129: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1133: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:33 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1143: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:34 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1147: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:35 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1157: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6315 >/dev/null 2>/dev/null
selfserv_9505 with PID 6315 found at Wed May 10 11:42:36 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6315 at Wed May 10 11:42:36 UTC 2017
kill -USR1 6315
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6315 killed at Wed May 10 11:42:36 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:36 UTC 2017
selfserv_9505 with PID 7738 started at Wed May 10 11:42:36 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:37 UTC 2017
ssl.sh: #1161: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:37 UTC 2017
ssl.sh: #1162: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:37 UTC 2017
ssl.sh: #1163: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:37 UTC 2017
ssl.sh: #1164: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:37 UTC 2017
ssl.sh: #1165: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:38 UTC 2017
ssl.sh: #1166: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:38 UTC 2017
ssl.sh: #1167: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:38 UTC 2017
ssl.sh: #1168: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:38 UTC 2017
ssl.sh: #1169: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:38 UTC 2017
ssl.sh: #1170: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:38 UTC 2017
ssl.sh: #1171: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
ssl.sh: #1172: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
ssl.sh: #1173: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1174: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
ssl.sh: #1175: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
ssl.sh: #1176: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
ssl.sh: #1177: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:39 UTC 2017
ssl.sh: #1178: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:40 UTC 2017
ssl.sh: #1179: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:40 UTC 2017
ssl.sh: #1180: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:40 UTC 2017
ssl.sh: #1181: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:40 UTC 2017
ssl.sh: #1182: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:40 UTC 2017
ssl.sh: #1183: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:40 UTC 2017
ssl.sh: #1184: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:41 UTC 2017
ssl.sh: #1185: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:41 UTC 2017
ssl.sh: #1186: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:41 UTC 2017
ssl.sh: #1187: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1188: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:41 UTC 2017
ssl.sh: #1189: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:41 UTC 2017
ssl.sh: #1190: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:42 UTC 2017
ssl.sh: #1191: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:42 UTC 2017
ssl.sh: #1192: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:42 UTC 2017
ssl.sh: #1193: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:42 UTC 2017
ssl.sh: #1194: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:42 UTC 2017
ssl.sh: #1195: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:42 UTC 2017
ssl.sh: #1196: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:43 UTC 2017
ssl.sh: #1197: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:43 UTC 2017
ssl.sh: #1198: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:43 UTC 2017
ssl.sh: #1199: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:43 UTC 2017
ssl.sh: #1200: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7738 >/dev/null 2>/dev/null
selfserv_9505 with PID 7738 found at Wed May 10 11:42:43 UTC 2017
ssl.sh: #1201: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7738 at Wed May 10 11:42:43 UTC 2017
kill -USR1 7738
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7738 killed at Wed May 10 11:42:43 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:43 UTC 2017
selfserv_9505 with PID 9162 started at Wed May 10 11:42:43 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1202: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1203: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1204: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1205: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1206: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1207: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:44 UTC 2017
ssl.sh: #1208: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:45 UTC 2017
ssl.sh: #1209: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:45 UTC 2017
ssl.sh: #1210: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:45 UTC 2017
ssl.sh: #1211: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:45 UTC 2017
ssl.sh: #1212: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:45 UTC 2017
ssl.sh: #1213: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:45 UTC 2017
ssl.sh: #1214: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1215: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
ssl.sh: #1216: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
ssl.sh: #1217: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
ssl.sh: #1218: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
ssl.sh: #1219: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
ssl.sh: #1220: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:46 UTC 2017
ssl.sh: #1221: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:47 UTC 2017
ssl.sh: #1222: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:47 UTC 2017
ssl.sh: #1223: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:47 UTC 2017
ssl.sh: #1224: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:47 UTC 2017
ssl.sh: #1225: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:47 UTC 2017
ssl.sh: #1226: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:47 UTC 2017
ssl.sh: #1227: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
ssl.sh: #1228: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1229: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
ssl.sh: #1230: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
ssl.sh: #1231: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
ssl.sh: #1232: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
ssl.sh: #1233: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:48 UTC 2017
ssl.sh: #1234: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1235: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1236: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1237: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1238: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1239: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1240: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:49 UTC 2017
ssl.sh: #1241: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9162 >/dev/null 2>/dev/null
selfserv_9505 with PID 9162 found at Wed May 10 11:42:50 UTC 2017
ssl.sh: #1242: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 9162 at Wed May 10 11:42:50 UTC 2017
kill -USR1 9162
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9162 killed at Wed May 10 11:42:50 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10587 >/dev/null 2>/dev/null
selfserv_9505 with PID 10587 found at Wed May 10 11:42:50 UTC 2017
selfserv_9505 with PID 10587 started at Wed May 10 11:42:50 UTC 2017
trying to kill selfserv_9505 with PID 10587 at Wed May 10 11:42:50 UTC 2017
kill -USR1 10587
selfserv: 0 cache hits; 0 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10587 killed at Wed May 10 11:42:50 UTC 2017
selfserv_9505 starting at Wed May 10 11:42:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:50 UTC 2017
selfserv_9505 with PID 10632 started at Wed May 10 11:42:50 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:50 UTC 2017
ssl.sh: #1243: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:50 UTC 2017
ssl.sh: #1244: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:51 UTC 2017
ssl.sh: #1245: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:51 UTC 2017
ssl.sh: #1246: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:51 UTC 2017
ssl.sh: #1247: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:51 UTC 2017
ssl.sh: #1248: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:51 UTC 2017
ssl.sh: #1249: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:52 UTC 2017
ssl.sh: #1250: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:52 UTC 2017
ssl.sh: #1251: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:52 UTC 2017
ssl.sh: #1252: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:52 UTC 2017
ssl.sh: #1253: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:53 UTC 2017
ssl.sh: #1254: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:53 UTC 2017
ssl.sh: #1255: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1256: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:53 UTC 2017
ssl.sh: #1257: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:53 UTC 2017
ssl.sh: #1258: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:54 UTC 2017
ssl.sh: #1259: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:54 UTC 2017
ssl.sh: #1260: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:54 UTC 2017
ssl.sh: #1261: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:54 UTC 2017
ssl.sh: #1262: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:54 UTC 2017
ssl.sh: #1263: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:55 UTC 2017
ssl.sh: #1264: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:55 UTC 2017
ssl.sh: #1265: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:55 UTC 2017
ssl.sh: #1266: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:55 UTC 2017
ssl.sh: #1267: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:55 UTC 2017
ssl.sh: #1268: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:56 UTC 2017
ssl.sh: #1269: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1270: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:56 UTC 2017
ssl.sh: #1271: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:56 UTC 2017
ssl.sh: #1272: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:56 UTC 2017
ssl.sh: #1273: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:57 UTC 2017
ssl.sh: #1274: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:57 UTC 2017
ssl.sh: #1275: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:57 UTC 2017
ssl.sh: #1276: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:57 UTC 2017
ssl.sh: #1277: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:57 UTC 2017
ssl.sh: #1278: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:58 UTC 2017
ssl.sh: #1279: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:58 UTC 2017
ssl.sh: #1280: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:58 UTC 2017
ssl.sh: #1281: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:58 UTC 2017
ssl.sh: #1282: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10632 >/dev/null 2>/dev/null
selfserv_9505 with PID 10632 found at Wed May 10 11:42:58 UTC 2017
ssl.sh: #1283: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10632 at Wed May 10 11:42:58 UTC 2017
kill -USR1 10632
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10632 killed at Wed May 10 11:42:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:42:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:42:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:42:58 UTC 2017
selfserv_9505 with PID 12055 started at Wed May 10 11:42:58 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:42:59 UTC 2017
ssl.sh: #1284: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:42:59 UTC 2017
ssl.sh: #1285: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:42:59 UTC 2017
ssl.sh: #1286: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:42:59 UTC 2017
ssl.sh: #1287: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:00 UTC 2017
ssl.sh: #1288: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:00 UTC 2017
ssl.sh: #1289: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:00 UTC 2017
ssl.sh: #1290: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:00 UTC 2017
ssl.sh: #1291: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:00 UTC 2017
ssl.sh: #1292: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:01 UTC 2017
ssl.sh: #1293: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:01 UTC 2017
ssl.sh: #1294: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:01 UTC 2017
ssl.sh: #1295: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:01 UTC 2017
ssl.sh: #1296: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1297: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:02 UTC 2017
ssl.sh: #1298: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:02 UTC 2017
ssl.sh: #1299: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:02 UTC 2017
ssl.sh: #1300: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:02 UTC 2017
ssl.sh: #1301: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:03 UTC 2017
ssl.sh: #1302: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:03 UTC 2017
ssl.sh: #1303: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:03 UTC 2017
ssl.sh: #1304: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:03 UTC 2017
ssl.sh: #1305: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:03 UTC 2017
ssl.sh: #1306: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:04 UTC 2017
ssl.sh: #1307: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:04 UTC 2017
ssl.sh: #1308: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:04 UTC 2017
ssl.sh: #1309: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:04 UTC 2017
ssl.sh: #1310: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1311: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:05 UTC 2017
ssl.sh: #1312: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:05 UTC 2017
ssl.sh: #1313: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:05 UTC 2017
ssl.sh: #1314: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:05 UTC 2017
ssl.sh: #1315: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:06 UTC 2017
ssl.sh: #1316: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:06 UTC 2017
ssl.sh: #1317: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:06 UTC 2017
ssl.sh: #1318: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:06 UTC 2017
ssl.sh: #1319: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:07 UTC 2017
ssl.sh: #1320: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:07 UTC 2017
ssl.sh: #1321: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:07 UTC 2017
ssl.sh: #1322: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:07 UTC 2017
ssl.sh: #1323: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12055 >/dev/null 2>/dev/null
selfserv_9505 with PID 12055 found at Wed May 10 11:43:08 UTC 2017
ssl.sh: #1324: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 12055 at Wed May 10 11:43:08 UTC 2017
kill -USR1 12055
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12055 killed at Wed May 10 11:43:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:43:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:08 UTC 2017
selfserv_9505 with PID 13479 started at Wed May 10 11:43:08 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:08 UTC 2017
ssl.sh: #1325: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:08 UTC 2017
ssl.sh: #1326: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:08 UTC 2017
ssl.sh: #1327: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:08 UTC 2017
ssl.sh: #1328: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:09 UTC 2017
ssl.sh: #1329: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:09 UTC 2017
ssl.sh: #1330: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:09 UTC 2017
ssl.sh: #1331: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:09 UTC 2017
ssl.sh: #1332: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:09 UTC 2017
ssl.sh: #1333: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:10 UTC 2017
ssl.sh: #1334: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:10 UTC 2017
ssl.sh: #1335: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:10 UTC 2017
ssl.sh: #1336: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:10 UTC 2017
ssl.sh: #1337: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1338: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:10 UTC 2017
ssl.sh: #1339: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:11 UTC 2017
ssl.sh: #1340: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:11 UTC 2017
ssl.sh: #1341: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:11 UTC 2017
ssl.sh: #1342: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:11 UTC 2017
ssl.sh: #1343: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:11 UTC 2017
ssl.sh: #1344: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:12 UTC 2017
ssl.sh: #1345: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:12 UTC 2017
ssl.sh: #1346: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:12 UTC 2017
ssl.sh: #1347: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:12 UTC 2017
ssl.sh: #1348: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:12 UTC 2017
ssl.sh: #1349: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:12 UTC 2017
ssl.sh: #1350: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:13 UTC 2017
ssl.sh: #1351: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1352: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:13 UTC 2017
ssl.sh: #1353: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:13 UTC 2017
ssl.sh: #1354: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:13 UTC 2017
ssl.sh: #1355: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:13 UTC 2017
ssl.sh: #1356: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1357: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1358: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1359: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1360: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1361: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1362: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:14 UTC 2017
ssl.sh: #1363: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:15 UTC 2017
ssl.sh: #1364: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13479 >/dev/null 2>/dev/null
selfserv_9505 with PID 13479 found at Wed May 10 11:43:15 UTC 2017
ssl.sh: #1365: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13479 at Wed May 10 11:43:15 UTC 2017
kill -USR1 13479
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13479 killed at Wed May 10 11:43:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:43:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:15 UTC 2017
selfserv_9505 with PID 14902 started at Wed May 10 11:43:15 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:15 UTC 2017
ssl.sh: #1366: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:15 UTC 2017
ssl.sh: #1367: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:16 UTC 2017
ssl.sh: #1368: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:16 UTC 2017
ssl.sh: #1369: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:16 UTC 2017
ssl.sh: #1370: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:16 UTC 2017
ssl.sh: #1371: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:16 UTC 2017
ssl.sh: #1372: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:17 UTC 2017
ssl.sh: #1373: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:17 UTC 2017
ssl.sh: #1374: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:17 UTC 2017
ssl.sh: #1375: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:17 UTC 2017
ssl.sh: #1376: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:18 UTC 2017
ssl.sh: #1377: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:18 UTC 2017
ssl.sh: #1378: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1379: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:18 UTC 2017
ssl.sh: #1380: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:19 UTC 2017
ssl.sh: #1381: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:19 UTC 2017
ssl.sh: #1382: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:19 UTC 2017
ssl.sh: #1383: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:19 UTC 2017
ssl.sh: #1384: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:19 UTC 2017
ssl.sh: #1385: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:20 UTC 2017
ssl.sh: #1386: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:20 UTC 2017
ssl.sh: #1387: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:20 UTC 2017
ssl.sh: #1388: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:20 UTC 2017
ssl.sh: #1389: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:20 UTC 2017
ssl.sh: #1390: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:21 UTC 2017
ssl.sh: #1391: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:21 UTC 2017
ssl.sh: #1392: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1393: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:21 UTC 2017
ssl.sh: #1394: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:22 UTC 2017
ssl.sh: #1395: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:22 UTC 2017
ssl.sh: #1396: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:22 UTC 2017
ssl.sh: #1397: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:22 UTC 2017
ssl.sh: #1398: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:22 UTC 2017
ssl.sh: #1399: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:23 UTC 2017
ssl.sh: #1400: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:23 UTC 2017
ssl.sh: #1401: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:23 UTC 2017
ssl.sh: #1402: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:23 UTC 2017
ssl.sh: #1403: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:24 UTC 2017
ssl.sh: #1404: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:24 UTC 2017
ssl.sh: #1405: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14902 >/dev/null 2>/dev/null
selfserv_9505 with PID 14902 found at Wed May 10 11:43:24 UTC 2017
ssl.sh: #1406: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14902 at Wed May 10 11:43:24 UTC 2017
kill -USR1 14902
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14902 killed at Wed May 10 11:43:24 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:43:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:24 UTC 2017
selfserv_9505 with PID 16325 started at Wed May 10 11:43:24 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:24 UTC 2017
ssl.sh: #1407: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:25 UTC 2017
ssl.sh: #1408: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:25 UTC 2017
ssl.sh: #1409: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:25 UTC 2017
ssl.sh: #1410: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:25 UTC 2017
ssl.sh: #1411: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:26 UTC 2017
ssl.sh: #1412: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:26 UTC 2017
ssl.sh: #1413: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:26 UTC 2017
ssl.sh: #1414: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:26 UTC 2017
ssl.sh: #1415: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:27 UTC 2017
ssl.sh: #1416: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:27 UTC 2017
ssl.sh: #1417: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:27 UTC 2017
ssl.sh: #1418: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:27 UTC 2017
ssl.sh: #1419: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1420: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:28 UTC 2017
ssl.sh: #1421: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:28 UTC 2017
ssl.sh: #1422: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:28 UTC 2017
ssl.sh: #1423: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:29 UTC 2017
ssl.sh: #1424: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:29 UTC 2017
ssl.sh: #1425: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:29 UTC 2017
ssl.sh: #1426: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:29 UTC 2017
ssl.sh: #1427: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:29 UTC 2017
ssl.sh: #1428: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:30 UTC 2017
ssl.sh: #1429: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:30 UTC 2017
ssl.sh: #1430: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:30 UTC 2017
ssl.sh: #1431: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:30 UTC 2017
ssl.sh: #1432: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:31 UTC 2017
ssl.sh: #1433: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1434: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:31 UTC 2017
ssl.sh: #1435: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:31 UTC 2017
ssl.sh: #1436: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:32 UTC 2017
ssl.sh: #1437: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:32 UTC 2017
ssl.sh: #1438: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:32 UTC 2017
ssl.sh: #1439: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:32 UTC 2017
ssl.sh: #1440: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:33 UTC 2017
ssl.sh: #1441: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:33 UTC 2017
ssl.sh: #1442: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:33 UTC 2017
ssl.sh: #1443: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:33 UTC 2017
ssl.sh: #1444: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:33 UTC 2017
ssl.sh: #1445: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:34 UTC 2017
ssl.sh: #1446: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16325 >/dev/null 2>/dev/null
selfserv_9505 with PID 16325 found at Wed May 10 11:43:34 UTC 2017
ssl.sh: #1447: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16325 at Wed May 10 11:43:34 UTC 2017
kill -USR1 16325
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16325 killed at Wed May 10 11:43:34 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:43:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:34 UTC 2017
selfserv_9505 with PID 17747 started at Wed May 10 11:43:34 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:34 UTC 2017
ssl.sh: #1448: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:34 UTC 2017
ssl.sh: #1449: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:35 UTC 2017
ssl.sh: #1450: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:35 UTC 2017
ssl.sh: #1451: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:35 UTC 2017
ssl.sh: #1452: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:35 UTC 2017
ssl.sh: #1453: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:35 UTC 2017
ssl.sh: #1454: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:36 UTC 2017
ssl.sh: #1455: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:36 UTC 2017
ssl.sh: #1456: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:36 UTC 2017
ssl.sh: #1457: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:36 UTC 2017
ssl.sh: #1458: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:36 UTC 2017
ssl.sh: #1459: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:36 UTC 2017
ssl.sh: #1460: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1461: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:37 UTC 2017
ssl.sh: #1462: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:37 UTC 2017
ssl.sh: #1463: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:37 UTC 2017
ssl.sh: #1464: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:37 UTC 2017
ssl.sh: #1465: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:38 UTC 2017
ssl.sh: #1466: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:38 UTC 2017
ssl.sh: #1467: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:38 UTC 2017
ssl.sh: #1468: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:38 UTC 2017
ssl.sh: #1469: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:38 UTC 2017
ssl.sh: #1470: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:38 UTC 2017
ssl.sh: #1471: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:39 UTC 2017
ssl.sh: #1472: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:39 UTC 2017
ssl.sh: #1473: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:39 UTC 2017
ssl.sh: #1474: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1475: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:39 UTC 2017
ssl.sh: #1476: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:40 UTC 2017
ssl.sh: #1477: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:40 UTC 2017
ssl.sh: #1478: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:40 UTC 2017
ssl.sh: #1479: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:40 UTC 2017
ssl.sh: #1480: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:40 UTC 2017
ssl.sh: #1481: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:40 UTC 2017
ssl.sh: #1482: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:41 UTC 2017
ssl.sh: #1483: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:41 UTC 2017
ssl.sh: #1484: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:41 UTC 2017
ssl.sh: #1485: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:41 UTC 2017
ssl.sh: #1486: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:41 UTC 2017
ssl.sh: #1487: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17747 >/dev/null 2>/dev/null
selfserv_9505 with PID 17747 found at Wed May 10 11:43:42 UTC 2017
ssl.sh: #1488: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 17747 at Wed May 10 11:43:42 UTC 2017
kill -USR1 17747
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17747 killed at Wed May 10 11:43:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:43:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19175 >/dev/null 2>/dev/null
selfserv_9505 with PID 19175 found at Wed May 10 11:43:42 UTC 2017
selfserv_9505 with PID 19175 started at Wed May 10 11:43:42 UTC 2017
trying to kill selfserv_9505 with PID 19175 at Wed May 10 11:43:42 UTC 2017
kill -USR1 19175
./ssl.sh: line 183: 19175 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19175 killed at Wed May 10 11:43:42 UTC 2017
selfserv_9505 starting at Wed May 10 11:43:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:42 UTC 2017
selfserv_9505 with PID 19217 started at Wed May 10 11:43:42 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:42 UTC 2017
ssl.sh: #1489: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:42 UTC 2017
ssl.sh: #1490: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:42 UTC 2017
ssl.sh: #1491: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:43 UTC 2017
ssl.sh: #1492: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:43 UTC 2017
ssl.sh: #1493: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:43 UTC 2017
ssl.sh: #1494: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:43 UTC 2017
ssl.sh: #1495: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:44 UTC 2017
ssl.sh: #1496: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:44 UTC 2017
ssl.sh: #1497: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:44 UTC 2017
ssl.sh: #1498: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:44 UTC 2017
ssl.sh: #1499: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:44 UTC 2017
ssl.sh: #1500: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:45 UTC 2017
ssl.sh: #1501: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1502: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:45 UTC 2017
ssl.sh: #1503: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:45 UTC 2017
ssl.sh: #1504: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:45 UTC 2017
ssl.sh: #1505: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:46 UTC 2017
ssl.sh: #1506: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:46 UTC 2017
ssl.sh: #1507: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:46 UTC 2017
ssl.sh: #1508: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:46 UTC 2017
ssl.sh: #1509: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:46 UTC 2017
ssl.sh: #1510: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:47 UTC 2017
ssl.sh: #1511: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:47 UTC 2017
ssl.sh: #1512: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:47 UTC 2017
ssl.sh: #1513: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:47 UTC 2017
ssl.sh: #1514: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:48 UTC 2017
ssl.sh: #1515: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1516: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:48 UTC 2017
ssl.sh: #1517: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:48 UTC 2017
ssl.sh: #1518: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:48 UTC 2017
ssl.sh: #1519: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:49 UTC 2017
ssl.sh: #1520: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:49 UTC 2017
ssl.sh: #1521: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:49 UTC 2017
ssl.sh: #1522: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:49 UTC 2017
ssl.sh: #1523: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:49 UTC 2017
ssl.sh: #1524: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:50 UTC 2017
ssl.sh: #1525: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:50 UTC 2017
ssl.sh: #1526: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:50 UTC 2017
ssl.sh: #1527: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:50 UTC 2017
ssl.sh: #1528: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19217 >/dev/null 2>/dev/null
selfserv_9505 with PID 19217 found at Wed May 10 11:43:50 UTC 2017
ssl.sh: #1529: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19217 at Wed May 10 11:43:51 UTC 2017
kill -USR1 19217
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19217 killed at Wed May 10 11:43:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:43:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:43:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:51 UTC 2017
selfserv_9505 with PID 20639 started at Wed May 10 11:43:51 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:51 UTC 2017
ssl.sh: #1530: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:51 UTC 2017
ssl.sh: #1531: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:51 UTC 2017
ssl.sh: #1532: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:51 UTC 2017
ssl.sh: #1533: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:52 UTC 2017
ssl.sh: #1534: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:52 UTC 2017
ssl.sh: #1535: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:52 UTC 2017
ssl.sh: #1536: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:52 UTC 2017
ssl.sh: #1537: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:53 UTC 2017
ssl.sh: #1538: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:53 UTC 2017
ssl.sh: #1539: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:53 UTC 2017
ssl.sh: #1540: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:53 UTC 2017
ssl.sh: #1541: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:54 UTC 2017
ssl.sh: #1542: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1543: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:54 UTC 2017
ssl.sh: #1544: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:54 UTC 2017
ssl.sh: #1545: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:54 UTC 2017
ssl.sh: #1546: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:55 UTC 2017
ssl.sh: #1547: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:55 UTC 2017
ssl.sh: #1548: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:55 UTC 2017
ssl.sh: #1549: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:55 UTC 2017
ssl.sh: #1550: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:56 UTC 2017
ssl.sh: #1551: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:56 UTC 2017
ssl.sh: #1552: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:56 UTC 2017
ssl.sh: #1553: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:56 UTC 2017
ssl.sh: #1554: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:56 UTC 2017
ssl.sh: #1555: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:57 UTC 2017
ssl.sh: #1556: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1557: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:57 UTC 2017
ssl.sh: #1558: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:57 UTC 2017
ssl.sh: #1559: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:57 UTC 2017
ssl.sh: #1560: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:58 UTC 2017
ssl.sh: #1561: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:58 UTC 2017
ssl.sh: #1562: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:58 UTC 2017
ssl.sh: #1563: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:58 UTC 2017
ssl.sh: #1564: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:59 UTC 2017
ssl.sh: #1565: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:59 UTC 2017
ssl.sh: #1566: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:59 UTC 2017
ssl.sh: #1567: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:59 UTC 2017
ssl.sh: #1568: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:43:59 UTC 2017
ssl.sh: #1569: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20639 >/dev/null 2>/dev/null
selfserv_9505 with PID 20639 found at Wed May 10 11:44:00 UTC 2017
ssl.sh: #1570: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20639 at Wed May 10 11:44:00 UTC 2017
kill -USR1 20639
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20639 killed at Wed May 10 11:44:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:00 UTC 2017
selfserv_9505 with PID 22061 started at Wed May 10 11:44:00 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:00 UTC 2017
ssl.sh: #1571: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:00 UTC 2017
ssl.sh: #1572: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:00 UTC 2017
ssl.sh: #1573: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:01 UTC 2017
ssl.sh: #1574: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:01 UTC 2017
ssl.sh: #1575: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:01 UTC 2017
ssl.sh: #1576: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:01 UTC 2017
ssl.sh: #1577: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:01 UTC 2017
ssl.sh: #1578: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:01 UTC 2017
ssl.sh: #1579: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:02 UTC 2017
ssl.sh: #1580: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:02 UTC 2017
ssl.sh: #1581: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:02 UTC 2017
ssl.sh: #1582: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:02 UTC 2017
ssl.sh: #1583: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1584: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:03 UTC 2017
ssl.sh: #1585: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:03 UTC 2017
ssl.sh: #1586: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:03 UTC 2017
ssl.sh: #1587: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:03 UTC 2017
ssl.sh: #1588: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:03 UTC 2017
ssl.sh: #1589: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:03 UTC 2017
ssl.sh: #1590: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:04 UTC 2017
ssl.sh: #1591: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:04 UTC 2017
ssl.sh: #1592: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:04 UTC 2017
ssl.sh: #1593: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:04 UTC 2017
ssl.sh: #1594: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:04 UTC 2017
ssl.sh: #1595: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:04 UTC 2017
ssl.sh: #1596: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:05 UTC 2017
ssl.sh: #1597: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1598: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:05 UTC 2017
ssl.sh: #1599: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:05 UTC 2017
ssl.sh: #1600: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:05 UTC 2017
ssl.sh: #1601: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:06 UTC 2017
ssl.sh: #1602: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:06 UTC 2017
ssl.sh: #1603: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:06 UTC 2017
ssl.sh: #1604: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:06 UTC 2017
ssl.sh: #1605: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:06 UTC 2017
ssl.sh: #1606: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:06 UTC 2017
ssl.sh: #1607: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:07 UTC 2017
ssl.sh: #1608: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:07 UTC 2017
ssl.sh: #1609: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:07 UTC 2017
ssl.sh: #1610: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22061 >/dev/null 2>/dev/null
selfserv_9505 with PID 22061 found at Wed May 10 11:44:07 UTC 2017
ssl.sh: #1611: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22061 at Wed May 10 11:44:07 UTC 2017
kill -USR1 22061
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22061 killed at Wed May 10 11:44:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:07 UTC 2017
selfserv_9505 with PID 23484 started at Wed May 10 11:44:07 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:07 UTC 2017
ssl.sh: #1612: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:08 UTC 2017
ssl.sh: #1613: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:08 UTC 2017
ssl.sh: #1614: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:08 UTC 2017
ssl.sh: #1615: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:08 UTC 2017
ssl.sh: #1616: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:09 UTC 2017
ssl.sh: #1617: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:09 UTC 2017
ssl.sh: #1618: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:09 UTC 2017
ssl.sh: #1619: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:09 UTC 2017
ssl.sh: #1620: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:10 UTC 2017
ssl.sh: #1621: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:10 UTC 2017
ssl.sh: #1622: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:10 UTC 2017
ssl.sh: #1623: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:10 UTC 2017
ssl.sh: #1624: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1625: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:11 UTC 2017
ssl.sh: #1626: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:11 UTC 2017
ssl.sh: #1627: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:11 UTC 2017
ssl.sh: #1628: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:11 UTC 2017
ssl.sh: #1629: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:12 UTC 2017
ssl.sh: #1630: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:12 UTC 2017
ssl.sh: #1631: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:12 UTC 2017
ssl.sh: #1632: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:12 UTC 2017
ssl.sh: #1633: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:12 UTC 2017
ssl.sh: #1634: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:13 UTC 2017
ssl.sh: #1635: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:13 UTC 2017
ssl.sh: #1636: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:13 UTC 2017
ssl.sh: #1637: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:13 UTC 2017
ssl.sh: #1638: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1639: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:14 UTC 2017
ssl.sh: #1640: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:14 UTC 2017
ssl.sh: #1641: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:14 UTC 2017
ssl.sh: #1642: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:14 UTC 2017
ssl.sh: #1643: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:15 UTC 2017
ssl.sh: #1644: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:15 UTC 2017
ssl.sh: #1645: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:15 UTC 2017
ssl.sh: #1646: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:15 UTC 2017
ssl.sh: #1647: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:15 UTC 2017
ssl.sh: #1648: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:16 UTC 2017
ssl.sh: #1649: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:16 UTC 2017
ssl.sh: #1650: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:16 UTC 2017
ssl.sh: #1651: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23484 >/dev/null 2>/dev/null
selfserv_9505 with PID 23484 found at Wed May 10 11:44:16 UTC 2017
ssl.sh: #1652: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23484 at Wed May 10 11:44:16 UTC 2017
kill -USR1 23484
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23484 killed at Wed May 10 11:44:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:16 UTC 2017
selfserv_9505 with PID 24909 started at Wed May 10 11:44:16 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:17 UTC 2017
ssl.sh: #1653: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:17 UTC 2017
ssl.sh: #1654: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:17 UTC 2017
ssl.sh: #1655: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:18 UTC 2017
ssl.sh: #1656: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:18 UTC 2017
ssl.sh: #1657: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:18 UTC 2017
ssl.sh: #1658: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:18 UTC 2017
ssl.sh: #1659: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:18 UTC 2017
ssl.sh: #1660: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:19 UTC 2017
ssl.sh: #1661: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:19 UTC 2017
ssl.sh: #1662: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:19 UTC 2017
ssl.sh: #1663: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:20 UTC 2017
ssl.sh: #1664: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:20 UTC 2017
ssl.sh: #1665: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1666: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:20 UTC 2017
ssl.sh: #1667: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:20 UTC 2017
ssl.sh: #1668: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:21 UTC 2017
ssl.sh: #1669: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:21 UTC 2017
ssl.sh: #1670: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:21 UTC 2017
ssl.sh: #1671: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:21 UTC 2017
ssl.sh: #1672: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:21 UTC 2017
ssl.sh: #1673: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:22 UTC 2017
ssl.sh: #1674: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:22 UTC 2017
ssl.sh: #1675: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:22 UTC 2017
ssl.sh: #1676: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:22 UTC 2017
ssl.sh: #1677: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:23 UTC 2017
ssl.sh: #1678: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:23 UTC 2017
ssl.sh: #1679: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1680: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:23 UTC 2017
ssl.sh: #1681: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:24 UTC 2017
ssl.sh: #1682: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:24 UTC 2017
ssl.sh: #1683: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:24 UTC 2017
ssl.sh: #1684: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:24 UTC 2017
ssl.sh: #1685: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:25 UTC 2017
ssl.sh: #1686: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:25 UTC 2017
ssl.sh: #1687: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:25 UTC 2017
ssl.sh: #1688: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:25 UTC 2017
ssl.sh: #1689: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:25 UTC 2017
ssl.sh: #1690: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:26 UTC 2017
ssl.sh: #1691: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:26 UTC 2017
ssl.sh: #1692: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
kill -0 24909 >/dev/null 2>/dev/null
selfserv_9505 with PID 24909 found at Wed May 10 11:44:26 UTC 2017
ssl.sh: #1693: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24909 at Wed May 10 11:44:26 UTC 2017
kill -USR1 24909
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24909 killed at Wed May 10 11:44:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:26 UTC 2017
selfserv_9505 with PID 26331 started at Wed May 10 11:44:26 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:27 UTC 2017
ssl.sh: #1694: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:27 UTC 2017
ssl.sh: #1695: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:27 UTC 2017
ssl.sh: #1696: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:27 UTC 2017
ssl.sh: #1697: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:27 UTC 2017
ssl.sh: #1698: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:27 UTC 2017
ssl.sh: #1699: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:28 UTC 2017
ssl.sh: #1700: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:28 UTC 2017
ssl.sh: #1701: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:28 UTC 2017
ssl.sh: #1702: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:28 UTC 2017
ssl.sh: #1703: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:28 UTC 2017
ssl.sh: #1704: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:29 UTC 2017
ssl.sh: #1705: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:29 UTC 2017
ssl.sh: #1706: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1707: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:29 UTC 2017
ssl.sh: #1708: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:29 UTC 2017
ssl.sh: #1709: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:30 UTC 2017
ssl.sh: #1710: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:30 UTC 2017
ssl.sh: #1711: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:30 UTC 2017
ssl.sh: #1712: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:30 UTC 2017
ssl.sh: #1713: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:30 UTC 2017
ssl.sh: #1714: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:30 UTC 2017
ssl.sh: #1715: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:31 UTC 2017
ssl.sh: #1716: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:31 UTC 2017
ssl.sh: #1717: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:31 UTC 2017
ssl.sh: #1718: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:31 UTC 2017
ssl.sh: #1719: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:31 UTC 2017
ssl.sh: #1720: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1721: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:32 UTC 2017
ssl.sh: #1722: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:32 UTC 2017
ssl.sh: #1723: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:32 UTC 2017
ssl.sh: #1724: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:32 UTC 2017
ssl.sh: #1725: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:32 UTC 2017
ssl.sh: #1726: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:33 UTC 2017
ssl.sh: #1727: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:33 UTC 2017
ssl.sh: #1728: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:33 UTC 2017
ssl.sh: #1729: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:33 UTC 2017
ssl.sh: #1730: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:33 UTC 2017
ssl.sh: #1731: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:34 UTC 2017
ssl.sh: #1732: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:34 UTC 2017
ssl.sh: #1733: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26331 >/dev/null 2>/dev/null
selfserv_9505 with PID 26331 found at Wed May 10 11:44:34 UTC 2017
ssl.sh: #1734: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 26331 at Wed May 10 11:44:34 UTC 2017
kill -USR1 26331
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 26331 killed at Wed May 10 11:44:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27753 >/dev/null 2>/dev/null
selfserv_9505 with PID 27753 found at Wed May 10 11:44:34 UTC 2017
selfserv_9505 with PID 27753 started at Wed May 10 11:44:34 UTC 2017
trying to kill selfserv_9505 with PID 27753 at Wed May 10 11:44:34 UTC 2017
kill -USR1 27753
selfserv: 0 cache hits; 0 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 27753 killed at Wed May 10 11:44:34 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1735:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -list
ssl.sh: #1736:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1737:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1738:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1739:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1740:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9505 starting at Wed May 10 11:44:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27863 >/dev/null 2>/dev/null
selfserv_9505 with PID 27863 found at Wed May 10 11:44:35 UTC 2017
selfserv_9505 with PID 27863 started at Wed May 10 11:44:35 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1793: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1794: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1799: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1800: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1805: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1806: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1811: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1812: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1817: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1818: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1822: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1826: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1830: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1834: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1838: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1842: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1844: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1847: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1848: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1849: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1850: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1851: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1852: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1853: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1854: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1855: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1856: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1857: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1858: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1859: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1860: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1861: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 27863 at Wed May 10 11:44:45 UTC 2017
kill -USR1 27863
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 27863 killed at Wed May 10 11:44:45 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30126 >/dev/null 2>/dev/null
selfserv_9505 with PID 30126 found at Wed May 10 11:44:45 UTC 2017
selfserv_9505 with PID 30126 started at Wed May 10 11:44:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1862: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30126 at Wed May 10 11:44:45 UTC 2017
kill -USR1 30126
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30126 killed at Wed May 10 11:44:45 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30183 >/dev/null 2>/dev/null
selfserv_9505 with PID 30183 found at Wed May 10 11:44:45 UTC 2017
selfserv_9505 with PID 30183 started at Wed May 10 11:44:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1863: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30183 at Wed May 10 11:44:45 UTC 2017
kill -USR1 30183
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30183 killed at Wed May 10 11:44:45 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30240 >/dev/null 2>/dev/null
selfserv_9505 with PID 30240 found at Wed May 10 11:44:45 UTC 2017
selfserv_9505 with PID 30240 started at Wed May 10 11:44:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1864: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30240 at Wed May 10 11:44:46 UTC 2017
kill -USR1 30240
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30240 killed at Wed May 10 11:44:46 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30297 >/dev/null 2>/dev/null
selfserv_9505 with PID 30297 found at Wed May 10 11:44:46 UTC 2017
selfserv_9505 with PID 30297 started at Wed May 10 11:44:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1865: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30297 at Wed May 10 11:44:46 UTC 2017
kill -USR1 30297
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30297 killed at Wed May 10 11:44:46 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30354 >/dev/null 2>/dev/null
selfserv_9505 with PID 30354 found at Wed May 10 11:44:46 UTC 2017
selfserv_9505 with PID 30354 started at Wed May 10 11:44:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1866: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30354 at Wed May 10 11:44:47 UTC 2017
kill -USR1 30354
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30354 killed at Wed May 10 11:44:47 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30411 >/dev/null 2>/dev/null
selfserv_9505 with PID 30411 found at Wed May 10 11:44:47 UTC 2017
selfserv_9505 with PID 30411 started at Wed May 10 11:44:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1867: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30411 at Wed May 10 11:44:47 UTC 2017
kill -USR1 30411
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30411 killed at Wed May 10 11:44:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30468 >/dev/null 2>/dev/null
selfserv_9505 with PID 30468 found at Wed May 10 11:44:47 UTC 2017
selfserv_9505 with PID 30468 started at Wed May 10 11:44:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1868: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30468 at Wed May 10 11:44:47 UTC 2017
kill -USR1 30468
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30468 killed at Wed May 10 11:44:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30525 >/dev/null 2>/dev/null
selfserv_9505 with PID 30525 found at Wed May 10 11:44:47 UTC 2017
selfserv_9505 with PID 30525 started at Wed May 10 11:44:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1869: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30525 at Wed May 10 11:44:48 UTC 2017
kill -USR1 30525
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30525 killed at Wed May 10 11:44:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 11:44:48 UTC 2017
selfserv_9505 with PID 30582 started at Wed May 10 11:44:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1870: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30582 at Wed May 10 11:44:48 UTC 2017
kill -USR1 30582
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30582 killed at Wed May 10 11:44:48 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30639 >/dev/null 2>/dev/null
selfserv_9505 with PID 30639 found at Wed May 10 11:44:48 UTC 2017
selfserv_9505 with PID 30639 started at Wed May 10 11:44:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1871: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30639 at Wed May 10 11:44:48 UTC 2017
kill -USR1 30639
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30639 killed at Wed May 10 11:44:48 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30696 >/dev/null 2>/dev/null
selfserv_9505 with PID 30696 found at Wed May 10 11:44:48 UTC 2017
selfserv_9505 with PID 30696 started at Wed May 10 11:44:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1872: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30696 at Wed May 10 11:44:49 UTC 2017
kill -USR1 30696
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30696 killed at Wed May 10 11:44:49 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30753 >/dev/null 2>/dev/null
selfserv_9505 with PID 30753 found at Wed May 10 11:44:49 UTC 2017
selfserv_9505 with PID 30753 started at Wed May 10 11:44:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1873: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30753 at Wed May 10 11:44:49 UTC 2017
kill -USR1 30753
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30753 killed at Wed May 10 11:44:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30810 >/dev/null 2>/dev/null
selfserv_9505 with PID 30810 found at Wed May 10 11:44:49 UTC 2017
selfserv_9505 with PID 30810 started at Wed May 10 11:44:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1874: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30810 at Wed May 10 11:44:49 UTC 2017
kill -USR1 30810
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30810 killed at Wed May 10 11:44:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30867 >/dev/null 2>/dev/null
selfserv_9505 with PID 30867 found at Wed May 10 11:44:50 UTC 2017
selfserv_9505 with PID 30867 started at Wed May 10 11:44:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1875: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30867 at Wed May 10 11:44:50 UTC 2017
kill -USR1 30867
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30867 killed at Wed May 10 11:44:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30924 >/dev/null 2>/dev/null
selfserv_9505 with PID 30924 found at Wed May 10 11:44:50 UTC 2017
selfserv_9505 with PID 30924 started at Wed May 10 11:44:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1876: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 30924 at Wed May 10 11:44:50 UTC 2017
kill -USR1 30924
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30924 killed at Wed May 10 11:44:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30981 >/dev/null 2>/dev/null
selfserv_9505 with PID 30981 found at Wed May 10 11:44:51 UTC 2017
selfserv_9505 with PID 30981 started at Wed May 10 11:44:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1877: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30981 at Wed May 10 11:44:51 UTC 2017
kill -USR1 30981
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30981 killed at Wed May 10 11:44:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31038 >/dev/null 2>/dev/null
selfserv_9505 with PID 31038 found at Wed May 10 11:44:51 UTC 2017
selfserv_9505 with PID 31038 started at Wed May 10 11:44:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1878: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31038 at Wed May 10 11:44:51 UTC 2017
kill -USR1 31038
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31038 killed at Wed May 10 11:44:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31095 >/dev/null 2>/dev/null
selfserv_9505 with PID 31095 found at Wed May 10 11:44:51 UTC 2017
selfserv_9505 with PID 31095 started at Wed May 10 11:44:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1879: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31095 at Wed May 10 11:44:52 UTC 2017
kill -USR1 31095
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31095 killed at Wed May 10 11:44:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31152 >/dev/null 2>/dev/null
selfserv_9505 with PID 31152 found at Wed May 10 11:44:52 UTC 2017
selfserv_9505 with PID 31152 started at Wed May 10 11:44:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1880: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31152 at Wed May 10 11:44:52 UTC 2017
kill -USR1 31152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31152 killed at Wed May 10 11:44:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31209 >/dev/null 2>/dev/null
selfserv_9505 with PID 31209 found at Wed May 10 11:44:52 UTC 2017
selfserv_9505 with PID 31209 started at Wed May 10 11:44:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1881: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31209 at Wed May 10 11:44:53 UTC 2017
kill -USR1 31209
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31209 killed at Wed May 10 11:44:53 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31266 >/dev/null 2>/dev/null
selfserv_9505 with PID 31266 found at Wed May 10 11:44:53 UTC 2017
selfserv_9505 with PID 31266 started at Wed May 10 11:44:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1882: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31266 at Wed May 10 11:44:53 UTC 2017
kill -USR1 31266
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31266 killed at Wed May 10 11:44:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31323 >/dev/null 2>/dev/null
selfserv_9505 with PID 31323 found at Wed May 10 11:44:53 UTC 2017
selfserv_9505 with PID 31323 started at Wed May 10 11:44:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1883: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31323 at Wed May 10 11:44:54 UTC 2017
kill -USR1 31323
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31323 killed at Wed May 10 11:44:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31380 >/dev/null 2>/dev/null
selfserv_9505 with PID 31380 found at Wed May 10 11:44:54 UTC 2017
selfserv_9505 with PID 31380 started at Wed May 10 11:44:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1884: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31380 at Wed May 10 11:44:54 UTC 2017
kill -USR1 31380
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31380 killed at Wed May 10 11:44:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31437 >/dev/null 2>/dev/null
selfserv_9505 with PID 31437 found at Wed May 10 11:44:54 UTC 2017
selfserv_9505 with PID 31437 started at Wed May 10 11:44:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1885: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31437 at Wed May 10 11:44:54 UTC 2017
kill -USR1 31437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31437 killed at Wed May 10 11:44:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31494 >/dev/null 2>/dev/null
selfserv_9505 with PID 31494 found at Wed May 10 11:44:54 UTC 2017
selfserv_9505 with PID 31494 started at Wed May 10 11:44:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1886: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31494 at Wed May 10 11:44:55 UTC 2017
kill -USR1 31494
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31494 killed at Wed May 10 11:44:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31551 >/dev/null 2>/dev/null
selfserv_9505 with PID 31551 found at Wed May 10 11:44:55 UTC 2017
selfserv_9505 with PID 31551 started at Wed May 10 11:44:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1887: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31551 at Wed May 10 11:44:55 UTC 2017
kill -USR1 31551
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31551 killed at Wed May 10 11:44:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31608 >/dev/null 2>/dev/null
selfserv_9505 with PID 31608 found at Wed May 10 11:44:55 UTC 2017
selfserv_9505 with PID 31608 started at Wed May 10 11:44:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1888: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31608 at Wed May 10 11:44:55 UTC 2017
kill -USR1 31608
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31608 killed at Wed May 10 11:44:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:44:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31665 >/dev/null 2>/dev/null
selfserv_9505 with PID 31665 found at Wed May 10 11:44:56 UTC 2017
selfserv_9505 with PID 31665 started at Wed May 10 11:44:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1889: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31665 at Wed May 10 11:44:56 UTC 2017
kill -USR1 31665
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31665 killed at Wed May 10 11:44:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31722 >/dev/null 2>/dev/null
selfserv_9505 with PID 31722 found at Wed May 10 11:44:56 UTC 2017
selfserv_9505 with PID 31722 started at Wed May 10 11:44:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1890: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31722 at Wed May 10 11:44:56 UTC 2017
kill -USR1 31722
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31722 killed at Wed May 10 11:44:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31779 >/dev/null 2>/dev/null
selfserv_9505 with PID 31779 found at Wed May 10 11:44:56 UTC 2017
selfserv_9505 with PID 31779 started at Wed May 10 11:44:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1891: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31779 at Wed May 10 11:44:57 UTC 2017
kill -USR1 31779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31779 killed at Wed May 10 11:44:57 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31851 >/dev/null 2>/dev/null
selfserv_9505 with PID 31851 found at Wed May 10 11:44:57 UTC 2017
selfserv_9505 with PID 31851 started at Wed May 10 11:44:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1892: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31851 at Wed May 10 11:44:57 UTC 2017
kill -USR1 31851
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31851 killed at Wed May 10 11:44:57 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31908 >/dev/null 2>/dev/null
selfserv_9505 with PID 31908 found at Wed May 10 11:44:57 UTC 2017
selfserv_9505 with PID 31908 started at Wed May 10 11:44:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1893: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 31908 at Wed May 10 11:44:57 UTC 2017
kill -USR1 31908
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31908 killed at Wed May 10 11:44:57 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31965 >/dev/null 2>/dev/null
selfserv_9505 with PID 31965 found at Wed May 10 11:44:57 UTC 2017
selfserv_9505 with PID 31965 started at Wed May 10 11:44:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1894: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31965 at Wed May 10 11:44:58 UTC 2017
kill -USR1 31965
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31965 killed at Wed May 10 11:44:58 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32022 >/dev/null 2>/dev/null
selfserv_9505 with PID 32022 found at Wed May 10 11:44:58 UTC 2017
selfserv_9505 with PID 32022 started at Wed May 10 11:44:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1895: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32022 at Wed May 10 11:44:58 UTC 2017
kill -USR1 32022
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32022 killed at Wed May 10 11:44:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32079 >/dev/null 2>/dev/null
selfserv_9505 with PID 32079 found at Wed May 10 11:44:58 UTC 2017
selfserv_9505 with PID 32079 started at Wed May 10 11:44:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32079 at Wed May 10 11:44:58 UTC 2017
kill -USR1 32079
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32079 killed at Wed May 10 11:44:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32136 >/dev/null 2>/dev/null
selfserv_9505 with PID 32136 found at Wed May 10 11:44:58 UTC 2017
selfserv_9505 with PID 32136 started at Wed May 10 11:44:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32136 at Wed May 10 11:44:59 UTC 2017
kill -USR1 32136
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32136 killed at Wed May 10 11:44:59 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32193 >/dev/null 2>/dev/null
selfserv_9505 with PID 32193 found at Wed May 10 11:44:59 UTC 2017
selfserv_9505 with PID 32193 started at Wed May 10 11:44:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1898: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32193 at Wed May 10 11:44:59 UTC 2017
kill -USR1 32193
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32193 killed at Wed May 10 11:44:59 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:44:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32250 >/dev/null 2>/dev/null
selfserv_9505 with PID 32250 found at Wed May 10 11:44:59 UTC 2017
selfserv_9505 with PID 32250 started at Wed May 10 11:44:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32250 at Wed May 10 11:44:59 UTC 2017
kill -USR1 32250
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32250 killed at Wed May 10 11:44:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:44:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:44:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32307 >/dev/null 2>/dev/null
selfserv_9505 with PID 32307 found at Wed May 10 11:44:59 UTC 2017
selfserv_9505 with PID 32307 started at Wed May 10 11:44:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32307 at Wed May 10 11:45:00 UTC 2017
kill -USR1 32307
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32307 killed at Wed May 10 11:45:00 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32364 >/dev/null 2>/dev/null
selfserv_9505 with PID 32364 found at Wed May 10 11:45:00 UTC 2017
selfserv_9505 with PID 32364 started at Wed May 10 11:45:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32364 at Wed May 10 11:45:00 UTC 2017
kill -USR1 32364
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32364 killed at Wed May 10 11:45:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:45:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32421 >/dev/null 2>/dev/null
selfserv_9505 with PID 32421 found at Wed May 10 11:45:00 UTC 2017
selfserv_9505 with PID 32421 started at Wed May 10 11:45:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1902: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32421 at Wed May 10 11:45:01 UTC 2017
kill -USR1 32421
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32421 killed at Wed May 10 11:45:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32478 >/dev/null 2>/dev/null
selfserv_9505 with PID 32478 found at Wed May 10 11:45:01 UTC 2017
selfserv_9505 with PID 32478 started at Wed May 10 11:45:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32478 at Wed May 10 11:45:01 UTC 2017
kill -USR1 32478
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32478 killed at Wed May 10 11:45:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:45:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32535 >/dev/null 2>/dev/null
selfserv_9505 with PID 32535 found at Wed May 10 11:45:01 UTC 2017
selfserv_9505 with PID 32535 started at Wed May 10 11:45:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32535 at Wed May 10 11:45:02 UTC 2017
kill -USR1 32535
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32535 killed at Wed May 10 11:45:02 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32592 >/dev/null 2>/dev/null
selfserv_9505 with PID 32592 found at Wed May 10 11:45:02 UTC 2017
selfserv_9505 with PID 32592 started at Wed May 10 11:45:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32592 at Wed May 10 11:45:02 UTC 2017
kill -USR1 32592
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32592 killed at Wed May 10 11:45:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:45:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32649 >/dev/null 2>/dev/null
selfserv_9505 with PID 32649 found at Wed May 10 11:45:02 UTC 2017
selfserv_9505 with PID 32649 started at Wed May 10 11:45:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1906: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32649 at Wed May 10 11:45:02 UTC 2017
kill -USR1 32649
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32649 killed at Wed May 10 11:45:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32706 >/dev/null 2>/dev/null
selfserv_9505 with PID 32706 found at Wed May 10 11:45:02 UTC 2017
selfserv_9505 with PID 32706 started at Wed May 10 11:45:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32706 at Wed May 10 11:45:03 UTC 2017
kill -USR1 32706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32706 killed at Wed May 10 11:45:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:45:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32763 >/dev/null 2>/dev/null
selfserv_9505 with PID 32763 found at Wed May 10 11:45:03 UTC 2017
selfserv_9505 with PID 32763 started at Wed May 10 11:45:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 32763 at Wed May 10 11:45:03 UTC 2017
kill -USR1 32763
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32763 killed at Wed May 10 11:45:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 357 >/dev/null 2>/dev/null
selfserv_9505 with PID 357 found at Wed May 10 11:45:03 UTC 2017
selfserv_9505 with PID 357 started at Wed May 10 11:45:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 357 at Wed May 10 11:45:04 UTC 2017
kill -USR1 357
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 357 killed at Wed May 10 11:45:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:45:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 417 >/dev/null 2>/dev/null
selfserv_9505 with PID 417 found at Wed May 10 11:45:04 UTC 2017
selfserv_9505 with PID 417 started at Wed May 10 11:45:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1910: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 417 at Wed May 10 11:45:04 UTC 2017
kill -USR1 417
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 417 killed at Wed May 10 11:45:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 485 >/dev/null 2>/dev/null
selfserv_9505 with PID 485 found at Wed May 10 11:45:04 UTC 2017
selfserv_9505 with PID 485 started at Wed May 10 11:45:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 485 at Wed May 10 11:45:04 UTC 2017
kill -USR1 485
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 485 killed at Wed May 10 11:45:04 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9505 starting at Wed May 10 11:45:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 567 >/dev/null 2>/dev/null
selfserv_9505 with PID 567 found at Wed May 10 11:45:04 UTC 2017
selfserv_9505 with PID 567 started at Wed May 10 11:45:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 567 at Wed May 10 11:45:05 UTC 2017
kill -USR1 567
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 567 killed at Wed May 10 11:45:05 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9505 starting at Wed May 10 11:45:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 630 >/dev/null 2>/dev/null
selfserv_9505 with PID 630 found at Wed May 10 11:45:05 UTC 2017
selfserv_9505 with PID 630 started at Wed May 10 11:45:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 630 at Wed May 10 11:45:05 UTC 2017
kill -USR1 630
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 630 killed at Wed May 10 11:45:05 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9505 starting at Wed May 10 11:45:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 699 >/dev/null 2>/dev/null
selfserv_9505 with PID 699 found at Wed May 10 11:45:05 UTC 2017
selfserv_9505 with PID 699 started at Wed May 10 11:45:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1914: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 699 at Wed May 10 11:45:05 UTC 2017
kill -USR1 699
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 699 killed at Wed May 10 11:45:05 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9505 starting at Wed May 10 11:45:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 814 >/dev/null 2>/dev/null
selfserv_9505 with PID 814 found at Wed May 10 11:45:05 UTC 2017
selfserv_9505 with PID 814 started at Wed May 10 11:45:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 814 at Wed May 10 11:45:06 UTC 2017
kill -USR1 814
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 814 killed at Wed May 10 11:45:06 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9505 starting at Wed May 10 11:45:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 877 >/dev/null 2>/dev/null
selfserv_9505 with PID 877 found at Wed May 10 11:45:06 UTC 2017
selfserv_9505 with PID 877 started at Wed May 10 11:45:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1916: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 877 at Wed May 10 11:45:06 UTC 2017
kill -USR1 877
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 877 killed at Wed May 10 11:45:06 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9505 starting at Wed May 10 11:45:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 940 >/dev/null 2>/dev/null
selfserv_9505 with PID 940 found at Wed May 10 11:45:06 UTC 2017
selfserv_9505 with PID 940 started at Wed May 10 11:45:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 940 at Wed May 10 11:45:06 UTC 2017
kill -USR1 940
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 940 killed at Wed May 10 11:45:06 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9505 starting at Wed May 10 11:45:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1006 >/dev/null 2>/dev/null
selfserv_9505 with PID 1006 found at Wed May 10 11:45:06 UTC 2017
selfserv_9505 with PID 1006 started at Wed May 10 11:45:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 1006 at Wed May 10 11:45:07 UTC 2017
kill -USR1 1006
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1006 killed at Wed May 10 11:45:07 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9505 starting at Wed May 10 11:45:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1069 >/dev/null 2>/dev/null
selfserv_9505 with PID 1069 found at Wed May 10 11:45:07 UTC 2017
selfserv_9505 with PID 1069 started at Wed May 10 11:45:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #1919: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1069 at Wed May 10 11:45:07 UTC 2017
kill -USR1 1069
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1069 killed at Wed May 10 11:45:07 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9505 starting at Wed May 10 11:45:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1132 >/dev/null 2>/dev/null
selfserv_9505 with PID 1132 found at Wed May 10 11:45:07 UTC 2017
selfserv_9505 with PID 1132 started at Wed May 10 11:45:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1920: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1132 at Wed May 10 11:45:07 UTC 2017
kill -USR1 1132
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1132 killed at Wed May 10 11:45:07 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9505 starting at Wed May 10 11:45:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1195 >/dev/null 2>/dev/null
selfserv_9505 with PID 1195 found at Wed May 10 11:45:07 UTC 2017
selfserv_9505 with PID 1195 started at Wed May 10 11:45:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1921: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1195 at Wed May 10 11:45:07 UTC 2017
kill -USR1 1195
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1195 killed at Wed May 10 11:45:07 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9505 starting at Wed May 10 11:45:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1302 >/dev/null 2>/dev/null
selfserv_9505 with PID 1302 found at Wed May 10 11:45:08 UTC 2017
selfserv_9505 with PID 1302 started at Wed May 10 11:45:08 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:08 UTC 2017
ssl.sh: #1922: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1302 at Wed May 10 11:45:08 UTC 2017
kill -USR1 1302
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1302 killed at Wed May 10 11:45:08 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9505 starting at Wed May 10 11:45:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1373 >/dev/null 2>/dev/null
selfserv_9505 with PID 1373 found at Wed May 10 11:45:08 UTC 2017
selfserv_9505 with PID 1373 started at Wed May 10 11:45:08 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:09 UTC 2017
ssl.sh: #1923: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1373 at Wed May 10 11:45:09 UTC 2017
kill -USR1 1373
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1373 killed at Wed May 10 11:45:09 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9505 starting at Wed May 10 11:45:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1444 >/dev/null 2>/dev/null
selfserv_9505 with PID 1444 found at Wed May 10 11:45:09 UTC 2017
selfserv_9505 with PID 1444 started at Wed May 10 11:45:09 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:10 UTC 2017
ssl.sh: #1924: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1444 at Wed May 10 11:45:10 UTC 2017
kill -USR1 1444
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1444 killed at Wed May 10 11:45:10 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9505 starting at Wed May 10 11:45:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1515 >/dev/null 2>/dev/null
selfserv_9505 with PID 1515 found at Wed May 10 11:45:10 UTC 2017
selfserv_9505 with PID 1515 started at Wed May 10 11:45:10 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:11 UTC 2017
ssl.sh: #1925: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1515 at Wed May 10 11:45:11 UTC 2017
kill -USR1 1515
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1515 killed at Wed May 10 11:45:11 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9505 starting at Wed May 10 11:45:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1586 >/dev/null 2>/dev/null
selfserv_9505 with PID 1586 found at Wed May 10 11:45:11 UTC 2017
selfserv_9505 with PID 1586 started at Wed May 10 11:45:11 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:11 UTC 2017
ssl.sh: #1926: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1586 at Wed May 10 11:45:11 UTC 2017
kill -USR1 1586
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1586 killed at Wed May 10 11:45:11 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9505 starting at Wed May 10 11:45:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1657 >/dev/null 2>/dev/null
selfserv_9505 with PID 1657 found at Wed May 10 11:45:12 UTC 2017
selfserv_9505 with PID 1657 started at Wed May 10 11:45:12 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:12 UTC 2017
ssl.sh: #1927: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1657 at Wed May 10 11:45:12 UTC 2017
kill -USR1 1657
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1657 killed at Wed May 10 11:45:12 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9505 starting at Wed May 10 11:45:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1728 >/dev/null 2>/dev/null
selfserv_9505 with PID 1728 found at Wed May 10 11:45:12 UTC 2017
selfserv_9505 with PID 1728 started at Wed May 10 11:45:12 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:12 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:13 UTC 2017
ssl.sh: #1928: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1728 at Wed May 10 11:45:13 UTC 2017
kill -USR1 1728
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1728 killed at Wed May 10 11:45:13 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9505 starting at Wed May 10 11:45:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1805 >/dev/null 2>/dev/null
selfserv_9505 with PID 1805 found at Wed May 10 11:45:13 UTC 2017
selfserv_9505 with PID 1805 started at Wed May 10 11:45:13 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:14 UTC 2017
ssl.sh: #1929: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1805 at Wed May 10 11:45:14 UTC 2017
kill -USR1 1805
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1805 killed at Wed May 10 11:45:14 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1891 >/dev/null 2>/dev/null
selfserv_9505 with PID 1891 found at Wed May 10 11:45:14 UTC 2017
selfserv_9505 with PID 1891 started at Wed May 10 11:45:14 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:15 UTC 2017
ssl.sh: #1930: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1891 at Wed May 10 11:45:15 UTC 2017
kill -USR1 1891
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1891 killed at Wed May 10 11:45:15 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1961 >/dev/null 2>/dev/null
selfserv_9505 with PID 1961 found at Wed May 10 11:45:15 UTC 2017
selfserv_9505 with PID 1961 started at Wed May 10 11:45:15 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:16 UTC 2017
ssl.sh: #1931: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 1961 at Wed May 10 11:45:16 UTC 2017
kill -USR1 1961
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1961 killed at Wed May 10 11:45:16 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2031 >/dev/null 2>/dev/null
selfserv_9505 with PID 2031 found at Wed May 10 11:45:17 UTC 2017
selfserv_9505 with PID 2031 started at Wed May 10 11:45:17 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:45:17 UTC 2017
ssl.sh: #1932: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2031 at Wed May 10 11:45:17 UTC 2017
kill -USR1 2031
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2031 killed at Wed May 10 11:45:17 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2102 >/dev/null 2>/dev/null
selfserv_9505 with PID 2102 found at Wed May 10 11:45:17 UTC 2017
selfserv_9505 with PID 2102 started at Wed May 10 11:45:17 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:17 UTC 2017
ssl.sh: #1933: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2102 at Wed May 10 11:45:17 UTC 2017
kill -USR1 2102
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2102 killed at Wed May 10 11:45:17 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 11:45:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2173 >/dev/null 2>/dev/null
selfserv_9505 with PID 2173 found at Wed May 10 11:45:17 UTC 2017
selfserv_9505 with PID 2173 started at Wed May 10 11:45:17 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:18 UTC 2017
ssl.sh: #1934: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2173 at Wed May 10 11:45:18 UTC 2017
kill -USR1 2173
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2173 killed at Wed May 10 11:45:18 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2244 >/dev/null 2>/dev/null
selfserv_9505 with PID 2244 found at Wed May 10 11:45:18 UTC 2017
selfserv_9505 with PID 2244 started at Wed May 10 11:45:18 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:45:18 UTC 2017
ssl.sh: #1935: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2244 at Wed May 10 11:45:18 UTC 2017
kill -USR1 2244
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2244 killed at Wed May 10 11:45:18 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 11:45:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2315 >/dev/null 2>/dev/null
selfserv_9505 with PID 2315 found at Wed May 10 11:45:18 UTC 2017
selfserv_9505 with PID 2315 started at Wed May 10 11:45:18 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:45:19 UTC 2017
ssl.sh: #1936: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2315 at Wed May 10 11:45:19 UTC 2017
kill -USR1 2315
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2315 killed at Wed May 10 11:45:19 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9505 starting at Wed May 10 11:45:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2392 >/dev/null 2>/dev/null
selfserv_9505 with PID 2392 found at Wed May 10 11:45:19 UTC 2017
selfserv_9505 with PID 2392 started at Wed May 10 11:45:19 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:20 UTC 2017
ssl.sh: #1937: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2392 at Wed May 10 11:45:20 UTC 2017
kill -USR1 2392
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2392 killed at Wed May 10 11:45:20 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9505 starting at Wed May 10 11:45:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2469 >/dev/null 2>/dev/null
selfserv_9505 with PID 2469 found at Wed May 10 11:45:20 UTC 2017
selfserv_9505 with PID 2469 started at Wed May 10 11:45:20 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:21 UTC 2017
ssl.sh: #1938: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2469 at Wed May 10 11:45:21 UTC 2017
kill -USR1 2469
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2469 killed at Wed May 10 11:45:21 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2555 >/dev/null 2>/dev/null
selfserv_9505 with PID 2555 found at Wed May 10 11:45:21 UTC 2017
selfserv_9505 with PID 2555 started at Wed May 10 11:45:21 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:24 UTC 2017
ssl.sh: #1939: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2555 at Wed May 10 11:45:24 UTC 2017
kill -USR1 2555
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2555 killed at Wed May 10 11:45:24 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2625 >/dev/null 2>/dev/null
selfserv_9505 with PID 2625 found at Wed May 10 11:45:24 UTC 2017
selfserv_9505 with PID 2625 started at Wed May 10 11:45:24 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:27 UTC 2017
ssl.sh: #1940: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2625 at Wed May 10 11:45:27 UTC 2017
kill -USR1 2625
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2625 killed at Wed May 10 11:45:27 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2695 >/dev/null 2>/dev/null
selfserv_9505 with PID 2695 found at Wed May 10 11:45:27 UTC 2017
selfserv_9505 with PID 2695 started at Wed May 10 11:45:27 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:30 UTC 2017
ssl.sh: #1941: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2695 at Wed May 10 11:45:30 UTC 2017
kill -USR1 2695
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2695 killed at Wed May 10 11:45:30 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2765 >/dev/null 2>/dev/null
selfserv_9505 with PID 2765 found at Wed May 10 11:45:30 UTC 2017
selfserv_9505 with PID 2765 started at Wed May 10 11:45:30 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:33 UTC 2017
ssl.sh: #1942: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2765 at Wed May 10 11:45:33 UTC 2017
kill -USR1 2765
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2765 killed at Wed May 10 11:45:33 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2835 >/dev/null 2>/dev/null
selfserv_9505 with PID 2835 found at Wed May 10 11:45:33 UTC 2017
selfserv_9505 with PID 2835 started at Wed May 10 11:45:33 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:35 UTC 2017
ssl.sh: #1943: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2835 at Wed May 10 11:45:35 UTC 2017
kill -USR1 2835
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2835 killed at Wed May 10 11:45:35 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9505 starting at Wed May 10 11:45:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2905 >/dev/null 2>/dev/null
selfserv_9505 with PID 2905 found at Wed May 10 11:45:35 UTC 2017
selfserv_9505 with PID 2905 started at Wed May 10 11:45:35 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:36 UTC 2017
ssl.sh: #1944: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2905 at Wed May 10 11:45:36 UTC 2017
kill -USR1 2905
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2905 killed at Wed May 10 11:45:36 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9505 starting at Wed May 10 11:45:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2976 >/dev/null 2>/dev/null
selfserv_9505 with PID 2976 found at Wed May 10 11:45:36 UTC 2017
selfserv_9505 with PID 2976 started at Wed May 10 11:45:36 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:37 UTC 2017
ssl.sh: #1945: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 2976 at Wed May 10 11:45:37 UTC 2017
kill -USR1 2976
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2976 killed at Wed May 10 11:45:37 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9505 starting at Wed May 10 11:45:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3047 >/dev/null 2>/dev/null
selfserv_9505 with PID 3047 found at Wed May 10 11:45:37 UTC 2017
selfserv_9505 with PID 3047 started at Wed May 10 11:45:37 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:38 UTC 2017
ssl.sh: #1946: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3047 at Wed May 10 11:45:38 UTC 2017
kill -USR1 3047
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3047 killed at Wed May 10 11:45:38 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9505 starting at Wed May 10 11:45:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3118 >/dev/null 2>/dev/null
selfserv_9505 with PID 3118 found at Wed May 10 11:45:38 UTC 2017
selfserv_9505 with PID 3118 started at Wed May 10 11:45:38 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:45:38 UTC 2017
ssl.sh: #1947: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3118 at Wed May 10 11:45:39 UTC 2017
kill -USR1 3118
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3118 killed at Wed May 10 11:45:39 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9505 starting at Wed May 10 11:45:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3189 >/dev/null 2>/dev/null
selfserv_9505 with PID 3189 found at Wed May 10 11:45:39 UTC 2017
selfserv_9505 with PID 3189 started at Wed May 10 11:45:39 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:45:39 UTC 2017
ssl.sh: #1948: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3189 at Wed May 10 11:45:39 UTC 2017
kill -USR1 3189
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3189 killed at Wed May 10 11:45:39 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3275 >/dev/null 2>/dev/null
selfserv_9505 with PID 3275 found at Wed May 10 11:45:39 UTC 2017
selfserv_9505 with PID 3275 started at Wed May 10 11:45:39 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:45:40 UTC 2017
ssl.sh: #1949: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3275 at Wed May 10 11:45:40 UTC 2017
kill -USR1 3275
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3275 killed at Wed May 10 11:45:40 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9505 starting at Wed May 10 11:45:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3345 >/dev/null 2>/dev/null
selfserv_9505 with PID 3345 found at Wed May 10 11:45:40 UTC 2017
selfserv_9505 with PID 3345 started at Wed May 10 11:45:40 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:40 UTC 2017
ssl.sh: #1950: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3345 at Wed May 10 11:45:40 UTC 2017
kill -USR1 3345
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3345 killed at Wed May 10 11:45:40 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3416 >/dev/null 2>/dev/null
selfserv_9505 with PID 3416 found at Wed May 10 11:45:40 UTC 2017
selfserv_9505 with PID 3416 started at Wed May 10 11:45:40 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:45:41 UTC 2017
ssl.sh: #1951: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3416 at Wed May 10 11:45:41 UTC 2017
kill -USR1 3416
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3416 killed at Wed May 10 11:45:41 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3486 >/dev/null 2>/dev/null
selfserv_9505 with PID 3486 found at Wed May 10 11:45:41 UTC 2017
selfserv_9505 with PID 3486 started at Wed May 10 11:45:41 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:45:42 UTC 2017
ssl.sh: #1952: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3486 at Wed May 10 11:45:42 UTC 2017
kill -USR1 3486
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3486 killed at Wed May 10 11:45:42 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9505 starting at Wed May 10 11:45:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3556 >/dev/null 2>/dev/null
selfserv_9505 with PID 3556 found at Wed May 10 11:45:42 UTC 2017
selfserv_9505 with PID 3556 started at Wed May 10 11:45:42 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:42 UTC 2017
ssl.sh: #1953: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3556 at Wed May 10 11:45:42 UTC 2017
kill -USR1 3556
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3556 killed at Wed May 10 11:45:42 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 11:45:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3627 >/dev/null 2>/dev/null
selfserv_9505 with PID 3627 found at Wed May 10 11:45:42 UTC 2017
selfserv_9505 with PID 3627 started at Wed May 10 11:45:42 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:45:43 UTC 2017
ssl.sh: #1954: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3627 at Wed May 10 11:45:43 UTC 2017
kill -USR1 3627
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3627 killed at Wed May 10 11:45:43 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3713 >/dev/null 2>/dev/null
selfserv_9505 with PID 3713 found at Wed May 10 11:45:43 UTC 2017
selfserv_9505 with PID 3713 started at Wed May 10 11:45:43 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:45 UTC 2017
ssl.sh: #1955: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3713 at Wed May 10 11:45:45 UTC 2017
kill -USR1 3713
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3713 killed at Wed May 10 11:45:45 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9505 starting at Wed May 10 11:45:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3783 >/dev/null 2>/dev/null
selfserv_9505 with PID 3783 found at Wed May 10 11:45:45 UTC 2017
selfserv_9505 with PID 3783 started at Wed May 10 11:45:45 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:45:46 UTC 2017
ssl.sh: #1956: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3783 at Wed May 10 11:45:46 UTC 2017
kill -USR1 3783
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3783 killed at Wed May 10 11:45:46 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3862 >/dev/null 2>/dev/null
selfserv_9505 with PID 3862 found at Wed May 10 11:45:46 UTC 2017
selfserv_9505 with PID 3862 started at Wed May 10 11:45:46 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:47 UTC 2017
ssl.sh: #1957: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3862 at Wed May 10 11:45:47 UTC 2017
kill -USR1 3862
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3862 killed at Wed May 10 11:45:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3936 >/dev/null 2>/dev/null
selfserv_9505 with PID 3936 found at Wed May 10 11:45:47 UTC 2017
selfserv_9505 with PID 3936 started at Wed May 10 11:45:47 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:45:49 UTC 2017
ssl.sh: #1958: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 3936 at Wed May 10 11:45:49 UTC 2017
kill -USR1 3936
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3936 killed at Wed May 10 11:45:49 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:45:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:45:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4016 >/dev/null 2>/dev/null
selfserv_9505 with PID 4016 found at Wed May 10 11:45:49 UTC 2017
selfserv_9505 with PID 4016 started at Wed May 10 11:45:49 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:45:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:46:09 UTC 2017
ssl.sh: #1959: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4016 at Wed May 10 11:46:09 UTC 2017
kill -USR1 4016
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4016 killed at Wed May 10 11:46:09 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9505 starting at Wed May 10 11:46:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 11:46:10 UTC 2017
selfserv_9505 with PID 4096 started at Wed May 10 11:46:10 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:46:28 UTC 2017
ssl.sh: #1960: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4096 at Wed May 10 11:46:28 UTC 2017
kill -USR1 4096
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4096 killed at Wed May 10 11:46:28 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:46:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4166 >/dev/null 2>/dev/null
selfserv_9505 with PID 4166 found at Wed May 10 11:46:28 UTC 2017
selfserv_9505 with PID 4166 started at Wed May 10 11:46:28 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:30 UTC 2017
ssl.sh: #1961: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4166 at Wed May 10 11:46:30 UTC 2017
kill -USR1 4166
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4166 killed at Wed May 10 11:46:30 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:46:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4236 >/dev/null 2>/dev/null
selfserv_9505 with PID 4236 found at Wed May 10 11:46:30 UTC 2017
selfserv_9505 with PID 4236 started at Wed May 10 11:46:30 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:32 UTC 2017
ssl.sh: #1962: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4236 at Wed May 10 11:46:32 UTC 2017
kill -USR1 4236
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4236 killed at Wed May 10 11:46:32 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:46:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4306 >/dev/null 2>/dev/null
selfserv_9505 with PID 4306 found at Wed May 10 11:46:32 UTC 2017
selfserv_9505 with PID 4306 started at Wed May 10 11:46:32 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:33 UTC 2017
ssl.sh: #1963: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4306 at Wed May 10 11:46:33 UTC 2017
kill -USR1 4306
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4306 killed at Wed May 10 11:46:33 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:46:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4391 >/dev/null 2>/dev/null
selfserv_9505 with PID 4391 found at Wed May 10 11:46:34 UTC 2017
selfserv_9505 with PID 4391 started at Wed May 10 11:46:34 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:46:36 UTC 2017
ssl.sh: #1964: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4391 at Wed May 10 11:46:36 UTC 2017
kill -USR1 4391
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4391 killed at Wed May 10 11:46:36 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9505 starting at Wed May 10 11:46:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4461 >/dev/null 2>/dev/null
selfserv_9505 with PID 4461 found at Wed May 10 11:46:37 UTC 2017
selfserv_9505 with PID 4461 started at Wed May 10 11:46:37 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:46:37 UTC 2017
ssl.sh: #1965: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4461 at Wed May 10 11:46:37 UTC 2017
kill -USR1 4461
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4461 killed at Wed May 10 11:46:37 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:46:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:46:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4547 >/dev/null 2>/dev/null
selfserv_9505 with PID 4547 found at Wed May 10 11:46:38 UTC 2017
selfserv_9505 with PID 4547 started at Wed May 10 11:46:38 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:46:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:47:02 UTC 2017
ssl.sh: #1966: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4547 at Wed May 10 11:47:02 UTC 2017
kill -USR1 4547
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4547 killed at Wed May 10 11:47:02 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:47:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4617 >/dev/null 2>/dev/null
selfserv_9505 with PID 4617 found at Wed May 10 11:47:02 UTC 2017
selfserv_9505 with PID 4617 started at Wed May 10 11:47:02 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:47:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:47:26 UTC 2017
ssl.sh: #1967: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 4617 at Wed May 10 11:47:26 UTC 2017
kill -USR1 4617
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4617 killed at Wed May 10 11:47:26 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9505 starting at Wed May 10 11:47:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4680 >/dev/null 2>/dev/null
selfserv_9505 with PID 4680 found at Wed May 10 11:47:26 UTC 2017
selfserv_9505 with PID 4680 started at Wed May 10 11:47:26 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2020: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2021: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2026: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2027: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2032: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2033: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2038: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2039: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2044: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2045: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2049: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2053: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2057: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2061: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2065: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2067: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2068: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2069: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2070: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2071: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2072: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2073: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2074: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2075: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2076: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2077: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2078: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2079: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2080: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2081: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2082: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2083: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2084: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2085: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2086: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2087: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2088: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4680 at Wed May 10 11:47:37 UTC 2017
kill -USR1 4680
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4680 killed at Wed May 10 11:47:37 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6944 >/dev/null 2>/dev/null
selfserv_9505 with PID 6944 found at Wed May 10 11:47:37 UTC 2017
selfserv_9505 with PID 6944 started at Wed May 10 11:47:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2089: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6944 at Wed May 10 11:47:37 UTC 2017
kill -USR1 6944
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6944 killed at Wed May 10 11:47:37 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7001 >/dev/null 2>/dev/null
selfserv_9505 with PID 7001 found at Wed May 10 11:47:38 UTC 2017
selfserv_9505 with PID 7001 started at Wed May 10 11:47:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2090: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7001 at Wed May 10 11:47:38 UTC 2017
kill -USR1 7001
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7001 killed at Wed May 10 11:47:38 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7058 >/dev/null 2>/dev/null
selfserv_9505 with PID 7058 found at Wed May 10 11:47:38 UTC 2017
selfserv_9505 with PID 7058 started at Wed May 10 11:47:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2091: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7058 at Wed May 10 11:47:38 UTC 2017
kill -USR1 7058
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7058 killed at Wed May 10 11:47:38 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7115 >/dev/null 2>/dev/null
selfserv_9505 with PID 7115 found at Wed May 10 11:47:38 UTC 2017
selfserv_9505 with PID 7115 started at Wed May 10 11:47:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2092: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7115 at Wed May 10 11:47:39 UTC 2017
kill -USR1 7115
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7115 killed at Wed May 10 11:47:39 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7172 >/dev/null 2>/dev/null
selfserv_9505 with PID 7172 found at Wed May 10 11:47:39 UTC 2017
selfserv_9505 with PID 7172 started at Wed May 10 11:47:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2093: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7172 at Wed May 10 11:47:39 UTC 2017
kill -USR1 7172
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7172 killed at Wed May 10 11:47:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7229 >/dev/null 2>/dev/null
selfserv_9505 with PID 7229 found at Wed May 10 11:47:39 UTC 2017
selfserv_9505 with PID 7229 started at Wed May 10 11:47:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2094: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7229 at Wed May 10 11:47:40 UTC 2017
kill -USR1 7229
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7229 killed at Wed May 10 11:47:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7286 >/dev/null 2>/dev/null
selfserv_9505 with PID 7286 found at Wed May 10 11:47:40 UTC 2017
selfserv_9505 with PID 7286 started at Wed May 10 11:47:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2095: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7286 at Wed May 10 11:47:40 UTC 2017
kill -USR1 7286
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7286 killed at Wed May 10 11:47:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7343 >/dev/null 2>/dev/null
selfserv_9505 with PID 7343 found at Wed May 10 11:47:40 UTC 2017
selfserv_9505 with PID 7343 started at Wed May 10 11:47:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2096: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7343 at Wed May 10 11:47:40 UTC 2017
kill -USR1 7343
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7343 killed at Wed May 10 11:47:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7400 >/dev/null 2>/dev/null
selfserv_9505 with PID 7400 found at Wed May 10 11:47:40 UTC 2017
selfserv_9505 with PID 7400 started at Wed May 10 11:47:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2097: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7400 at Wed May 10 11:47:41 UTC 2017
kill -USR1 7400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7400 killed at Wed May 10 11:47:41 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7457 >/dev/null 2>/dev/null
selfserv_9505 with PID 7457 found at Wed May 10 11:47:41 UTC 2017
selfserv_9505 with PID 7457 started at Wed May 10 11:47:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2098: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7457 at Wed May 10 11:47:41 UTC 2017
kill -USR1 7457
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7457 killed at Wed May 10 11:47:41 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7514 >/dev/null 2>/dev/null
selfserv_9505 with PID 7514 found at Wed May 10 11:47:41 UTC 2017
selfserv_9505 with PID 7514 started at Wed May 10 11:47:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2099: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7514 at Wed May 10 11:47:41 UTC 2017
kill -USR1 7514
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7514 killed at Wed May 10 11:47:41 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7571 >/dev/null 2>/dev/null
selfserv_9505 with PID 7571 found at Wed May 10 11:47:42 UTC 2017
selfserv_9505 with PID 7571 started at Wed May 10 11:47:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2100: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7571 at Wed May 10 11:47:42 UTC 2017
kill -USR1 7571
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7571 killed at Wed May 10 11:47:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7628 >/dev/null 2>/dev/null
selfserv_9505 with PID 7628 found at Wed May 10 11:47:42 UTC 2017
selfserv_9505 with PID 7628 started at Wed May 10 11:47:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2101: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7628 at Wed May 10 11:47:42 UTC 2017
kill -USR1 7628
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7628 killed at Wed May 10 11:47:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7685 >/dev/null 2>/dev/null
selfserv_9505 with PID 7685 found at Wed May 10 11:47:42 UTC 2017
selfserv_9505 with PID 7685 started at Wed May 10 11:47:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2102: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7685 at Wed May 10 11:47:43 UTC 2017
kill -USR1 7685
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7685 killed at Wed May 10 11:47:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7742 >/dev/null 2>/dev/null
selfserv_9505 with PID 7742 found at Wed May 10 11:47:43 UTC 2017
selfserv_9505 with PID 7742 started at Wed May 10 11:47:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2103: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7742 at Wed May 10 11:47:43 UTC 2017
kill -USR1 7742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7742 killed at Wed May 10 11:47:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7799 >/dev/null 2>/dev/null
selfserv_9505 with PID 7799 found at Wed May 10 11:47:43 UTC 2017
selfserv_9505 with PID 7799 started at Wed May 10 11:47:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2104: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7799 at Wed May 10 11:47:44 UTC 2017
kill -USR1 7799
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7799 killed at Wed May 10 11:47:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7856 >/dev/null 2>/dev/null
selfserv_9505 with PID 7856 found at Wed May 10 11:47:44 UTC 2017
selfserv_9505 with PID 7856 started at Wed May 10 11:47:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2105: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7856 at Wed May 10 11:47:44 UTC 2017
kill -USR1 7856
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7856 killed at Wed May 10 11:47:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7913 >/dev/null 2>/dev/null
selfserv_9505 with PID 7913 found at Wed May 10 11:47:44 UTC 2017
selfserv_9505 with PID 7913 started at Wed May 10 11:47:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2106: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7913 at Wed May 10 11:47:45 UTC 2017
kill -USR1 7913
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7913 killed at Wed May 10 11:47:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7970 >/dev/null 2>/dev/null
selfserv_9505 with PID 7970 found at Wed May 10 11:47:45 UTC 2017
selfserv_9505 with PID 7970 started at Wed May 10 11:47:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2107: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7970 at Wed May 10 11:47:45 UTC 2017
kill -USR1 7970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7970 killed at Wed May 10 11:47:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8027 >/dev/null 2>/dev/null
selfserv_9505 with PID 8027 found at Wed May 10 11:47:45 UTC 2017
selfserv_9505 with PID 8027 started at Wed May 10 11:47:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2108: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8027 at Wed May 10 11:47:46 UTC 2017
kill -USR1 8027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8027 killed at Wed May 10 11:47:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8084 >/dev/null 2>/dev/null
selfserv_9505 with PID 8084 found at Wed May 10 11:47:46 UTC 2017
selfserv_9505 with PID 8084 started at Wed May 10 11:47:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2109: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8084 at Wed May 10 11:47:46 UTC 2017
kill -USR1 8084
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8084 killed at Wed May 10 11:47:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8141 >/dev/null 2>/dev/null
selfserv_9505 with PID 8141 found at Wed May 10 11:47:46 UTC 2017
selfserv_9505 with PID 8141 started at Wed May 10 11:47:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2110: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8141 at Wed May 10 11:47:47 UTC 2017
kill -USR1 8141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8141 killed at Wed May 10 11:47:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8198 >/dev/null 2>/dev/null
selfserv_9505 with PID 8198 found at Wed May 10 11:47:47 UTC 2017
selfserv_9505 with PID 8198 started at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2111: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8198 at Wed May 10 11:47:47 UTC 2017
kill -USR1 8198
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8198 killed at Wed May 10 11:47:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8255 >/dev/null 2>/dev/null
selfserv_9505 with PID 8255 found at Wed May 10 11:47:47 UTC 2017
selfserv_9505 with PID 8255 started at Wed May 10 11:47:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2112: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8255 at Wed May 10 11:47:47 UTC 2017
kill -USR1 8255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8255 killed at Wed May 10 11:47:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8312 >/dev/null 2>/dev/null
selfserv_9505 with PID 8312 found at Wed May 10 11:47:48 UTC 2017
selfserv_9505 with PID 8312 started at Wed May 10 11:47:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2113: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8312 at Wed May 10 11:47:48 UTC 2017
kill -USR1 8312
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8312 killed at Wed May 10 11:47:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8369 >/dev/null 2>/dev/null
selfserv_9505 with PID 8369 found at Wed May 10 11:47:48 UTC 2017
selfserv_9505 with PID 8369 started at Wed May 10 11:47:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2114: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8369 at Wed May 10 11:47:48 UTC 2017
kill -USR1 8369
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8369 killed at Wed May 10 11:47:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8426 >/dev/null 2>/dev/null
selfserv_9505 with PID 8426 found at Wed May 10 11:47:48 UTC 2017
selfserv_9505 with PID 8426 started at Wed May 10 11:47:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2115: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8426 at Wed May 10 11:47:49 UTC 2017
kill -USR1 8426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8426 killed at Wed May 10 11:47:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:47:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8483 >/dev/null 2>/dev/null
selfserv_9505 with PID 8483 found at Wed May 10 11:47:49 UTC 2017
selfserv_9505 with PID 8483 started at Wed May 10 11:47:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2116: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8483 at Wed May 10 11:47:49 UTC 2017
kill -USR1 8483
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8483 killed at Wed May 10 11:47:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8540 >/dev/null 2>/dev/null
selfserv_9505 with PID 8540 found at Wed May 10 11:47:49 UTC 2017
selfserv_9505 with PID 8540 started at Wed May 10 11:47:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2117: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8540 at Wed May 10 11:47:50 UTC 2017
kill -USR1 8540
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8540 killed at Wed May 10 11:47:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8597 >/dev/null 2>/dev/null
selfserv_9505 with PID 8597 found at Wed May 10 11:47:50 UTC 2017
selfserv_9505 with PID 8597 started at Wed May 10 11:47:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2118: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8597 at Wed May 10 11:47:50 UTC 2017
kill -USR1 8597
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8597 killed at Wed May 10 11:47:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8669 >/dev/null 2>/dev/null
selfserv_9505 with PID 8669 found at Wed May 10 11:47:50 UTC 2017
selfserv_9505 with PID 8669 started at Wed May 10 11:47:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2119: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8669 at Wed May 10 11:47:50 UTC 2017
kill -USR1 8669
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8669 killed at Wed May 10 11:47:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8726 >/dev/null 2>/dev/null
selfserv_9505 with PID 8726 found at Wed May 10 11:47:50 UTC 2017
selfserv_9505 with PID 8726 started at Wed May 10 11:47:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2120: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8726 at Wed May 10 11:47:51 UTC 2017
kill -USR1 8726
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8726 killed at Wed May 10 11:47:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8783 >/dev/null 2>/dev/null
selfserv_9505 with PID 8783 found at Wed May 10 11:47:51 UTC 2017
selfserv_9505 with PID 8783 started at Wed May 10 11:47:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2121: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8783 at Wed May 10 11:47:51 UTC 2017
kill -USR1 8783
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8783 killed at Wed May 10 11:47:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8840 >/dev/null 2>/dev/null
selfserv_9505 with PID 8840 found at Wed May 10 11:47:51 UTC 2017
selfserv_9505 with PID 8840 started at Wed May 10 11:47:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8840 at Wed May 10 11:47:52 UTC 2017
kill -USR1 8840
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8840 killed at Wed May 10 11:47:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8897 >/dev/null 2>/dev/null
selfserv_9505 with PID 8897 found at Wed May 10 11:47:52 UTC 2017
selfserv_9505 with PID 8897 started at Wed May 10 11:47:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8897 at Wed May 10 11:47:52 UTC 2017
kill -USR1 8897
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8897 killed at Wed May 10 11:47:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8954 >/dev/null 2>/dev/null
selfserv_9505 with PID 8954 found at Wed May 10 11:47:52 UTC 2017
selfserv_9505 with PID 8954 started at Wed May 10 11:47:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8954 at Wed May 10 11:47:52 UTC 2017
kill -USR1 8954
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8954 killed at Wed May 10 11:47:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9011 >/dev/null 2>/dev/null
selfserv_9505 with PID 9011 found at Wed May 10 11:47:53 UTC 2017
selfserv_9505 with PID 9011 started at Wed May 10 11:47:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2125: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9011 at Wed May 10 11:47:53 UTC 2017
kill -USR1 9011
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9011 killed at Wed May 10 11:47:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9070 >/dev/null 2>/dev/null
selfserv_9505 with PID 9070 found at Wed May 10 11:47:53 UTC 2017
selfserv_9505 with PID 9070 started at Wed May 10 11:47:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9070 at Wed May 10 11:47:53 UTC 2017
kill -USR1 9070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9070 killed at Wed May 10 11:47:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9127 >/dev/null 2>/dev/null
selfserv_9505 with PID 9127 found at Wed May 10 11:47:53 UTC 2017
selfserv_9505 with PID 9127 started at Wed May 10 11:47:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9127 at Wed May 10 11:47:54 UTC 2017
kill -USR1 9127
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9127 killed at Wed May 10 11:47:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9184 >/dev/null 2>/dev/null
selfserv_9505 with PID 9184 found at Wed May 10 11:47:54 UTC 2017
selfserv_9505 with PID 9184 started at Wed May 10 11:47:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9184 at Wed May 10 11:47:54 UTC 2017
kill -USR1 9184
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9184 killed at Wed May 10 11:47:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9241 >/dev/null 2>/dev/null
selfserv_9505 with PID 9241 found at Wed May 10 11:47:54 UTC 2017
selfserv_9505 with PID 9241 started at Wed May 10 11:47:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2129: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9241 at Wed May 10 11:47:55 UTC 2017
kill -USR1 9241
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9241 killed at Wed May 10 11:47:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9298 >/dev/null 2>/dev/null
selfserv_9505 with PID 9298 found at Wed May 10 11:47:55 UTC 2017
selfserv_9505 with PID 9298 started at Wed May 10 11:47:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9298 at Wed May 10 11:47:55 UTC 2017
kill -USR1 9298
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9298 killed at Wed May 10 11:47:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9355 >/dev/null 2>/dev/null
selfserv_9505 with PID 9355 found at Wed May 10 11:47:55 UTC 2017
selfserv_9505 with PID 9355 started at Wed May 10 11:47:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9355 at Wed May 10 11:47:56 UTC 2017
kill -USR1 9355
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9355 killed at Wed May 10 11:47:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9413 >/dev/null 2>/dev/null
selfserv_9505 with PID 9413 found at Wed May 10 11:47:56 UTC 2017
selfserv_9505 with PID 9413 started at Wed May 10 11:47:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9413 at Wed May 10 11:47:56 UTC 2017
kill -USR1 9413
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9413 killed at Wed May 10 11:47:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9470 >/dev/null 2>/dev/null
selfserv_9505 with PID 9470 found at Wed May 10 11:47:56 UTC 2017
selfserv_9505 with PID 9470 started at Wed May 10 11:47:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2133: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9470 at Wed May 10 11:47:57 UTC 2017
kill -USR1 9470
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9470 killed at Wed May 10 11:47:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9527 >/dev/null 2>/dev/null
selfserv_9505 with PID 9527 found at Wed May 10 11:47:57 UTC 2017
selfserv_9505 with PID 9527 started at Wed May 10 11:47:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9527 at Wed May 10 11:47:57 UTC 2017
kill -USR1 9527
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9527 killed at Wed May 10 11:47:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9584 >/dev/null 2>/dev/null
selfserv_9505 with PID 9584 found at Wed May 10 11:47:57 UTC 2017
selfserv_9505 with PID 9584 started at Wed May 10 11:47:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9584 at Wed May 10 11:47:58 UTC 2017
kill -USR1 9584
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9584 killed at Wed May 10 11:47:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9642 >/dev/null 2>/dev/null
selfserv_9505 with PID 9642 found at Wed May 10 11:47:58 UTC 2017
selfserv_9505 with PID 9642 started at Wed May 10 11:47:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9642 at Wed May 10 11:47:58 UTC 2017
kill -USR1 9642
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9642 killed at Wed May 10 11:47:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:47:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9699 >/dev/null 2>/dev/null
selfserv_9505 with PID 9699 found at Wed May 10 11:47:58 UTC 2017
selfserv_9505 with PID 9699 started at Wed May 10 11:47:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2137: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9699 at Wed May 10 11:47:59 UTC 2017
kill -USR1 9699
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9699 killed at Wed May 10 11:47:59 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:47:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9756 >/dev/null 2>/dev/null
selfserv_9505 with PID 9756 found at Wed May 10 11:47:59 UTC 2017
selfserv_9505 with PID 9756 started at Wed May 10 11:47:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9756 at Wed May 10 11:47:59 UTC 2017
kill -USR1 9756
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9756 killed at Wed May 10 11:47:59 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9505 starting at Wed May 10 11:47:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:47:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9898 >/dev/null 2>/dev/null
selfserv_9505 with PID 9898 found at Wed May 10 11:47:59 UTC 2017
selfserv_9505 with PID 9898 started at Wed May 10 11:47:59 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:47:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:00 UTC 2017
ssl.sh: #2139: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 9898 at Wed May 10 11:48:00 UTC 2017
kill -USR1 9898
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9898 killed at Wed May 10 11:48:00 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9505 starting at Wed May 10 11:48:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9969 >/dev/null 2>/dev/null
selfserv_9505 with PID 9969 found at Wed May 10 11:48:00 UTC 2017
selfserv_9505 with PID 9969 started at Wed May 10 11:48:00 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:01 UTC 2017
ssl.sh: #2140: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 9969 at Wed May 10 11:48:01 UTC 2017
kill -USR1 9969
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9969 killed at Wed May 10 11:48:01 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9505 starting at Wed May 10 11:48:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10040 >/dev/null 2>/dev/null
selfserv_9505 with PID 10040 found at Wed May 10 11:48:01 UTC 2017
selfserv_9505 with PID 10040 started at Wed May 10 11:48:01 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:02 UTC 2017
ssl.sh: #2141: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10040 at Wed May 10 11:48:02 UTC 2017
kill -USR1 10040
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10040 killed at Wed May 10 11:48:02 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9505 starting at Wed May 10 11:48:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10111 >/dev/null 2>/dev/null
selfserv_9505 with PID 10111 found at Wed May 10 11:48:02 UTC 2017
selfserv_9505 with PID 10111 started at Wed May 10 11:48:02 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:48:03 UTC 2017
ssl.sh: #2142: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10111 at Wed May 10 11:48:03 UTC 2017
kill -USR1 10111
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10111 killed at Wed May 10 11:48:03 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9505 starting at Wed May 10 11:48:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10182 >/dev/null 2>/dev/null
selfserv_9505 with PID 10182 found at Wed May 10 11:48:03 UTC 2017
selfserv_9505 with PID 10182 started at Wed May 10 11:48:03 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:04 UTC 2017
ssl.sh: #2143: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10182 at Wed May 10 11:48:04 UTC 2017
kill -USR1 10182
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10182 killed at Wed May 10 11:48:04 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9505 starting at Wed May 10 11:48:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10253 >/dev/null 2>/dev/null
selfserv_9505 with PID 10253 found at Wed May 10 11:48:04 UTC 2017
selfserv_9505 with PID 10253 started at Wed May 10 11:48:04 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:48:05 UTC 2017
ssl.sh: #2144: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10253 at Wed May 10 11:48:05 UTC 2017
kill -USR1 10253
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10253 killed at Wed May 10 11:48:05 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9505 starting at Wed May 10 11:48:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10324 >/dev/null 2>/dev/null
selfserv_9505 with PID 10324 found at Wed May 10 11:48:05 UTC 2017
selfserv_9505 with PID 10324 started at Wed May 10 11:48:05 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:48:06 UTC 2017
ssl.sh: #2145: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10324 at Wed May 10 11:48:06 UTC 2017
kill -USR1 10324
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10324 killed at Wed May 10 11:48:06 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10412 >/dev/null 2>/dev/null
selfserv_9505 with PID 10412 found at Wed May 10 11:48:06 UTC 2017
selfserv_9505 with PID 10412 started at Wed May 10 11:48:06 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:06 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:07 UTC 2017
ssl.sh: #2146: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10412 at Wed May 10 11:48:07 UTC 2017
kill -USR1 10412
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10412 killed at Wed May 10 11:48:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10482 >/dev/null 2>/dev/null
selfserv_9505 with PID 10482 found at Wed May 10 11:48:07 UTC 2017
selfserv_9505 with PID 10482 started at Wed May 10 11:48:07 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:09 UTC 2017
ssl.sh: #2147: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10482 at Wed May 10 11:48:09 UTC 2017
kill -USR1 10482
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10482 killed at Wed May 10 11:48:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10552 >/dev/null 2>/dev/null
selfserv_9505 with PID 10552 found at Wed May 10 11:48:09 UTC 2017
selfserv_9505 with PID 10552 started at Wed May 10 11:48:09 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:48:09 UTC 2017
ssl.sh: #2148: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10552 at Wed May 10 11:48:09 UTC 2017
kill -USR1 10552
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10552 killed at Wed May 10 11:48:09 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10627 >/dev/null 2>/dev/null
selfserv_9505 with PID 10627 found at Wed May 10 11:48:09 UTC 2017
selfserv_9505 with PID 10627 started at Wed May 10 11:48:09 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:10 UTC 2017
ssl.sh: #2149: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10627 at Wed May 10 11:48:10 UTC 2017
kill -USR1 10627
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10627 killed at Wed May 10 11:48:10 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 11:48:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10698 >/dev/null 2>/dev/null
selfserv_9505 with PID 10698 found at Wed May 10 11:48:10 UTC 2017
selfserv_9505 with PID 10698 started at Wed May 10 11:48:10 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:10 UTC 2017
ssl.sh: #2150: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10698 at Wed May 10 11:48:10 UTC 2017
kill -USR1 10698
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10698 killed at Wed May 10 11:48:10 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10769 >/dev/null 2>/dev/null
selfserv_9505 with PID 10769 found at Wed May 10 11:48:10 UTC 2017
selfserv_9505 with PID 10769 started at Wed May 10 11:48:10 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:10 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:48:11 UTC 2017
ssl.sh: #2151: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10769 at Wed May 10 11:48:11 UTC 2017
kill -USR1 10769
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10769 killed at Wed May 10 11:48:11 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 11:48:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10840 >/dev/null 2>/dev/null
selfserv_9505 with PID 10840 found at Wed May 10 11:48:11 UTC 2017
selfserv_9505 with PID 10840 started at Wed May 10 11:48:11 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:48:11 UTC 2017
ssl.sh: #2152: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10840 at Wed May 10 11:48:11 UTC 2017
kill -USR1 10840
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10840 killed at Wed May 10 11:48:11 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10930 >/dev/null 2>/dev/null
selfserv_9505 with PID 10930 found at Wed May 10 11:48:11 UTC 2017
selfserv_9505 with PID 10930 started at Wed May 10 11:48:11 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:11 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:16 UTC 2017
ssl.sh: #2153: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 10930 at Wed May 10 11:48:16 UTC 2017
kill -USR1 10930
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10930 killed at Wed May 10 11:48:16 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11000 >/dev/null 2>/dev/null
selfserv_9505 with PID 11000 found at Wed May 10 11:48:16 UTC 2017
selfserv_9505 with PID 11000 started at Wed May 10 11:48:16 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:20 UTC 2017
ssl.sh: #2154: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11000 at Wed May 10 11:48:20 UTC 2017
kill -USR1 11000
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11000 killed at Wed May 10 11:48:20 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11070 >/dev/null 2>/dev/null
selfserv_9505 with PID 11070 found at Wed May 10 11:48:20 UTC 2017
selfserv_9505 with PID 11070 started at Wed May 10 11:48:20 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:24 UTC 2017
ssl.sh: #2155: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11070 at Wed May 10 11:48:24 UTC 2017
kill -USR1 11070
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11070 killed at Wed May 10 11:48:24 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11140 >/dev/null 2>/dev/null
selfserv_9505 with PID 11140 found at Wed May 10 11:48:24 UTC 2017
selfserv_9505 with PID 11140 started at Wed May 10 11:48:24 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:28 UTC 2017
ssl.sh: #2156: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11140 at Wed May 10 11:48:28 UTC 2017
kill -USR1 11140
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11140 killed at Wed May 10 11:48:28 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11210 >/dev/null 2>/dev/null
selfserv_9505 with PID 11210 found at Wed May 10 11:48:28 UTC 2017
selfserv_9505 with PID 11210 started at Wed May 10 11:48:28 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:29 UTC 2017
ssl.sh: #2157: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11210 at Wed May 10 11:48:29 UTC 2017
kill -USR1 11210
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11210 killed at Wed May 10 11:48:29 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9505 starting at Wed May 10 11:48:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11280 >/dev/null 2>/dev/null
selfserv_9505 with PID 11280 found at Wed May 10 11:48:29 UTC 2017
selfserv_9505 with PID 11280 started at Wed May 10 11:48:29 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:30 UTC 2017
ssl.sh: #2158: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11280 at Wed May 10 11:48:30 UTC 2017
kill -USR1 11280
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11280 killed at Wed May 10 11:48:30 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9505 starting at Wed May 10 11:48:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11351 >/dev/null 2>/dev/null
selfserv_9505 with PID 11351 found at Wed May 10 11:48:30 UTC 2017
selfserv_9505 with PID 11351 started at Wed May 10 11:48:30 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:31 UTC 2017
ssl.sh: #2159: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11351 at Wed May 10 11:48:31 UTC 2017
kill -USR1 11351
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11351 killed at Wed May 10 11:48:31 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9505 starting at Wed May 10 11:48:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11422 >/dev/null 2>/dev/null
selfserv_9505 with PID 11422 found at Wed May 10 11:48:31 UTC 2017
selfserv_9505 with PID 11422 started at Wed May 10 11:48:31 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:31 UTC 2017
ssl.sh: #2160: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11422 at Wed May 10 11:48:31 UTC 2017
kill -USR1 11422
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11422 killed at Wed May 10 11:48:31 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9505 starting at Wed May 10 11:48:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11494 >/dev/null 2>/dev/null
selfserv_9505 with PID 11494 found at Wed May 10 11:48:32 UTC 2017
selfserv_9505 with PID 11494 started at Wed May 10 11:48:32 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:48:32 UTC 2017
ssl.sh: #2161: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11494 at Wed May 10 11:48:32 UTC 2017
kill -USR1 11494
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11494 killed at Wed May 10 11:48:32 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9505 starting at Wed May 10 11:48:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11565 >/dev/null 2>/dev/null
selfserv_9505 with PID 11565 found at Wed May 10 11:48:33 UTC 2017
selfserv_9505 with PID 11565 started at Wed May 10 11:48:33 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:48:33 UTC 2017
ssl.sh: #2162: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11565 at Wed May 10 11:48:33 UTC 2017
kill -USR1 11565
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11565 killed at Wed May 10 11:48:33 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11651 >/dev/null 2>/dev/null
selfserv_9505 with PID 11651 found at Wed May 10 11:48:33 UTC 2017
selfserv_9505 with PID 11651 started at Wed May 10 11:48:33 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:48:34 UTC 2017
ssl.sh: #2163: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11651 at Wed May 10 11:48:34 UTC 2017
kill -USR1 11651
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11651 killed at Wed May 10 11:48:34 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9505 starting at Wed May 10 11:48:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11721 >/dev/null 2>/dev/null
selfserv_9505 with PID 11721 found at Wed May 10 11:48:34 UTC 2017
selfserv_9505 with PID 11721 started at Wed May 10 11:48:34 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:34 UTC 2017
ssl.sh: #2164: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11721 at Wed May 10 11:48:34 UTC 2017
kill -USR1 11721
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11721 killed at Wed May 10 11:48:34 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11792 >/dev/null 2>/dev/null
selfserv_9505 with PID 11792 found at Wed May 10 11:48:35 UTC 2017
selfserv_9505 with PID 11792 started at Wed May 10 11:48:35 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:48:35 UTC 2017
ssl.sh: #2165: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11792 at Wed May 10 11:48:35 UTC 2017
kill -USR1 11792
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11792 killed at Wed May 10 11:48:35 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11862 >/dev/null 2>/dev/null
selfserv_9505 with PID 11862 found at Wed May 10 11:48:36 UTC 2017
selfserv_9505 with PID 11862 started at Wed May 10 11:48:36 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:48:36 UTC 2017
ssl.sh: #2166: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11862 at Wed May 10 11:48:36 UTC 2017
kill -USR1 11862
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11862 killed at Wed May 10 11:48:36 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9505 starting at Wed May 10 11:48:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11932 >/dev/null 2>/dev/null
selfserv_9505 with PID 11932 found at Wed May 10 11:48:36 UTC 2017
selfserv_9505 with PID 11932 started at Wed May 10 11:48:36 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:36 UTC 2017
ssl.sh: #2167: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 11932 at Wed May 10 11:48:36 UTC 2017
kill -USR1 11932
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11932 killed at Wed May 10 11:48:36 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 11:48:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12003 >/dev/null 2>/dev/null
selfserv_9505 with PID 12003 found at Wed May 10 11:48:37 UTC 2017
selfserv_9505 with PID 12003 started at Wed May 10 11:48:37 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:48:37 UTC 2017
ssl.sh: #2168: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12003 at Wed May 10 11:48:37 UTC 2017
kill -USR1 12003
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12003 killed at Wed May 10 11:48:37 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12089 >/dev/null 2>/dev/null
selfserv_9505 with PID 12089 found at Wed May 10 11:48:37 UTC 2017
selfserv_9505 with PID 12089 started at Wed May 10 11:48:37 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:39 UTC 2017
ssl.sh: #2169: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12089 at Wed May 10 11:48:39 UTC 2017
kill -USR1 12089
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12089 killed at Wed May 10 11:48:39 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9505 starting at Wed May 10 11:48:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12159 >/dev/null 2>/dev/null
selfserv_9505 with PID 12159 found at Wed May 10 11:48:39 UTC 2017
selfserv_9505 with PID 12159 started at Wed May 10 11:48:39 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:48:40 UTC 2017
ssl.sh: #2170: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12159 at Wed May 10 11:48:40 UTC 2017
kill -USR1 12159
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12159 killed at Wed May 10 11:48:40 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12230 >/dev/null 2>/dev/null
selfserv_9505 with PID 12230 found at Wed May 10 11:48:40 UTC 2017
selfserv_9505 with PID 12230 started at Wed May 10 11:48:40 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:41 UTC 2017
ssl.sh: #2171: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12230 at Wed May 10 11:48:41 UTC 2017
kill -USR1 12230
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12230 killed at Wed May 10 11:48:41 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12300 >/dev/null 2>/dev/null
selfserv_9505 with PID 12300 found at Wed May 10 11:48:42 UTC 2017
selfserv_9505 with PID 12300 started at Wed May 10 11:48:42 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:48:44 UTC 2017
ssl.sh: #2172: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12300 at Wed May 10 11:48:44 UTC 2017
kill -USR1 12300
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12300 killed at Wed May 10 11:48:44 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9505 starting at Wed May 10 11:48:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:48:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12380 >/dev/null 2>/dev/null
selfserv_9505 with PID 12380 found at Wed May 10 11:48:44 UTC 2017
selfserv_9505 with PID 12380 started at Wed May 10 11:48:44 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:48:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:49:08 UTC 2017
ssl.sh: #2173: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12380 at Wed May 10 11:49:08 UTC 2017
kill -USR1 12380
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12380 killed at Wed May 10 11:49:08 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9505 starting at Wed May 10 11:49:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12460 >/dev/null 2>/dev/null
selfserv_9505 with PID 12460 found at Wed May 10 11:49:08 UTC 2017
selfserv_9505 with PID 12460 started at Wed May 10 11:49:08 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:49:31 UTC 2017
ssl.sh: #2174: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12460 at Wed May 10 11:49:31 UTC 2017
kill -USR1 12460
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12460 killed at Wed May 10 11:49:31 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:49:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12530 >/dev/null 2>/dev/null
selfserv_9505 with PID 12530 found at Wed May 10 11:49:31 UTC 2017
selfserv_9505 with PID 12530 started at Wed May 10 11:49:31 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:49:32 UTC 2017
ssl.sh: #2175: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12530 at Wed May 10 11:49:32 UTC 2017
kill -USR1 12530
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12530 killed at Wed May 10 11:49:32 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:49:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12600 >/dev/null 2>/dev/null
selfserv_9505 with PID 12600 found at Wed May 10 11:49:33 UTC 2017
selfserv_9505 with PID 12600 started at Wed May 10 11:49:33 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:49:34 UTC 2017
ssl.sh: #2176: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12600 at Wed May 10 11:49:34 UTC 2017
kill -USR1 12600
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12600 killed at Wed May 10 11:49:34 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9505 starting at Wed May 10 11:49:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12670 >/dev/null 2>/dev/null
selfserv_9505 with PID 12670 found at Wed May 10 11:49:34 UTC 2017
selfserv_9505 with PID 12670 started at Wed May 10 11:49:34 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:49:36 UTC 2017
ssl.sh: #2177: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12670 at Wed May 10 11:49:36 UTC 2017
kill -USR1 12670
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12670 killed at Wed May 10 11:49:36 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:49:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12755 >/dev/null 2>/dev/null
selfserv_9505 with PID 12755 found at Wed May 10 11:49:36 UTC 2017
selfserv_9505 with PID 12755 started at Wed May 10 11:49:36 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:49:40 UTC 2017
ssl.sh: #2178: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12755 at Wed May 10 11:49:40 UTC 2017
kill -USR1 12755
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12755 killed at Wed May 10 11:49:40 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9505 starting at Wed May 10 11:49:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12825 >/dev/null 2>/dev/null
selfserv_9505 with PID 12825 found at Wed May 10 11:49:40 UTC 2017
selfserv_9505 with PID 12825 started at Wed May 10 11:49:40 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:49:41 UTC 2017
ssl.sh: #2179: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12825 at Wed May 10 11:49:41 UTC 2017
kill -USR1 12825
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12825 killed at Wed May 10 11:49:41 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:49:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:49:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12911 >/dev/null 2>/dev/null
selfserv_9505 with PID 12911 found at Wed May 10 11:49:41 UTC 2017
selfserv_9505 with PID 12911 started at Wed May 10 11:49:41 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:49:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:50:16 UTC 2017
ssl.sh: #2180: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12911 at Wed May 10 11:50:16 UTC 2017
kill -USR1 12911
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12911 killed at Wed May 10 11:50:16 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:50:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:50:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12981 >/dev/null 2>/dev/null
selfserv_9505 with PID 12981 found at Wed May 10 11:50:16 UTC 2017
selfserv_9505 with PID 12981 started at Wed May 10 11:50:16 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:50:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:50:51 UTC 2017
ssl.sh: #2181: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 12981 at Wed May 10 11:50:51 UTC 2017
kill -USR1 12981
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12981 killed at Wed May 10 11:50:51 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2182:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/server -list
ssl.sh: #2183:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2184:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2185:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2186:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2187:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2188:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -list
ssl.sh: #2189:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2190:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2191:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2192:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2193:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9505 starting at Wed May 10 11:50:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:50:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13175 >/dev/null 2>/dev/null
selfserv_9505 with PID 13175 found at Wed May 10 11:50:52 UTC 2017
selfserv_9505 with PID 13175 started at Wed May 10 11:50:52 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2243: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2244: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2246: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2247: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2249: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2250: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2252: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2253: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2255: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2256: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2258: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2260: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2262: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2264: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2266: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2270: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2272: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2275: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2276: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2277: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2278: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2279: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2280: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2281: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2282: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2283: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2284: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2285: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2286: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2287: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2288: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2289: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2290: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2291: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2292: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2293: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2294: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2295: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2296: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 13175 at Wed May 10 11:51:15 UTC 2017
kill -USR1 13175
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13175 killed at Wed May 10 11:51:15 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:51:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:51:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15445 >/dev/null 2>/dev/null
selfserv_9505 with PID 15445 found at Wed May 10 11:51:15 UTC 2017
selfserv_9505 with PID 15445 started at Wed May 10 11:51:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2315: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15445 at Wed May 10 11:51:16 UTC 2017
kill -USR1 15445
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15445 killed at Wed May 10 11:51:16 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:51:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:51:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15502 >/dev/null 2>/dev/null
selfserv_9505 with PID 15502 found at Wed May 10 11:51:16 UTC 2017
selfserv_9505 with PID 15502 started at Wed May 10 11:51:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2316: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15502 at Wed May 10 11:51:42 UTC 2017
kill -USR1 15502
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15502 killed at Wed May 10 11:51:42 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:51:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15559 >/dev/null 2>/dev/null
selfserv_9505 with PID 15559 found at Wed May 10 11:51:42 UTC 2017
selfserv_9505 with PID 15559 started at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 15559 at Wed May 10 11:51:42 UTC 2017
kill -USR1 15559
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15559 killed at Wed May 10 11:51:42 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:51:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15622 >/dev/null 2>/dev/null
selfserv_9505 with PID 15622 found at Wed May 10 11:51:42 UTC 2017
selfserv_9505 with PID 15622 started at Wed May 10 11:51:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2318: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15622 at Wed May 10 11:51:43 UTC 2017
kill -USR1 15622
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15622 killed at Wed May 10 11:51:43 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:51:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:51:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15679 >/dev/null 2>/dev/null
selfserv_9505 with PID 15679 found at Wed May 10 11:51:43 UTC 2017
selfserv_9505 with PID 15679 started at Wed May 10 11:51:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2319: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15679 at Wed May 10 11:52:06 UTC 2017
kill -USR1 15679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15679 killed at Wed May 10 11:52:06 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:52:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:52:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15736 >/dev/null 2>/dev/null
selfserv_9505 with PID 15736 found at Wed May 10 11:52:06 UTC 2017
selfserv_9505 with PID 15736 started at Wed May 10 11:52:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 15736 at Wed May 10 11:52:07 UTC 2017
kill -USR1 15736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15736 killed at Wed May 10 11:52:07 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:52:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:52:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15799 >/dev/null 2>/dev/null
selfserv_9505 with PID 15799 found at Wed May 10 11:52:07 UTC 2017
selfserv_9505 with PID 15799 started at Wed May 10 11:52:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2321: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15799 at Wed May 10 11:52:07 UTC 2017
kill -USR1 15799
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15799 killed at Wed May 10 11:52:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:52:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:52:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15856 >/dev/null 2>/dev/null
selfserv_9505 with PID 15856 found at Wed May 10 11:52:07 UTC 2017
selfserv_9505 with PID 15856 started at Wed May 10 11:52:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2322: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15856 at Wed May 10 11:52:33 UTC 2017
kill -USR1 15856
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15856 killed at Wed May 10 11:52:33 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:52:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:52:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15914 >/dev/null 2>/dev/null
selfserv_9505 with PID 15914 found at Wed May 10 11:52:33 UTC 2017
selfserv_9505 with PID 15914 started at Wed May 10 11:52:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 15914 at Wed May 10 11:52:34 UTC 2017
kill -USR1 15914
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15914 killed at Wed May 10 11:52:34 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:52:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:52:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15977 >/dev/null 2>/dev/null
selfserv_9505 with PID 15977 found at Wed May 10 11:52:34 UTC 2017
selfserv_9505 with PID 15977 started at Wed May 10 11:52:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2324: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15977 at Wed May 10 11:52:34 UTC 2017
kill -USR1 15977
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15977 killed at Wed May 10 11:52:34 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:52:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:52:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16034 >/dev/null 2>/dev/null
selfserv_9505 with PID 16034 found at Wed May 10 11:52:34 UTC 2017
selfserv_9505 with PID 16034 started at Wed May 10 11:52:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2325: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16034 at Wed May 10 11:53:00 UTC 2017
kill -USR1 16034
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16034 killed at Wed May 10 11:53:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:53:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16091 >/dev/null 2>/dev/null
selfserv_9505 with PID 16091 found at Wed May 10 11:53:01 UTC 2017
selfserv_9505 with PID 16091 started at Wed May 10 11:53:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16091 at Wed May 10 11:53:01 UTC 2017
kill -USR1 16091
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16091 killed at Wed May 10 11:53:01 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:53:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16154 >/dev/null 2>/dev/null
selfserv_9505 with PID 16154 found at Wed May 10 11:53:01 UTC 2017
selfserv_9505 with PID 16154 started at Wed May 10 11:53:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2327: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16154 at Wed May 10 11:53:02 UTC 2017
kill -USR1 16154
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16154 killed at Wed May 10 11:53:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:53:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16211 >/dev/null 2>/dev/null
selfserv_9505 with PID 16211 found at Wed May 10 11:53:02 UTC 2017
selfserv_9505 with PID 16211 started at Wed May 10 11:53:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
ssl.sh: #2328: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16211 at Wed May 10 11:53:25 UTC 2017
kill -USR1 16211
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16211 killed at Wed May 10 11:53:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:53:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16268 >/dev/null 2>/dev/null
selfserv_9505 with PID 16268 found at Wed May 10 11:53:25 UTC 2017
selfserv_9505 with PID 16268 started at Wed May 10 11:53:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16268 at Wed May 10 11:53:25 UTC 2017
kill -USR1 16268
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16268 killed at Wed May 10 11:53:25 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:53:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16344 >/dev/null 2>/dev/null
selfserv_9505 with PID 16344 found at Wed May 10 11:53:25 UTC 2017
selfserv_9505 with PID 16344 started at Wed May 10 11:53:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2330: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16344 at Wed May 10 11:53:52 UTC 2017
kill -USR1 16344
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16344 killed at Wed May 10 11:53:52 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:53:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16401 >/dev/null 2>/dev/null
selfserv_9505 with PID 16401 found at Wed May 10 11:53:52 UTC 2017
selfserv_9505 with PID 16401 started at Wed May 10 11:53:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16401 at Wed May 10 11:53:52 UTC 2017
kill -USR1 16401
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16401 killed at Wed May 10 11:53:52 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:53:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:53:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16462 >/dev/null 2>/dev/null
selfserv_9505 with PID 16462 found at Wed May 10 11:53:52 UTC 2017
selfserv_9505 with PID 16462 started at Wed May 10 11:53:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2332: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16462 at Wed May 10 11:54:15 UTC 2017
kill -USR1 16462
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16462 killed at Wed May 10 11:54:15 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:54:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:54:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16519 >/dev/null 2>/dev/null
selfserv_9505 with PID 16519 found at Wed May 10 11:54:15 UTC 2017
selfserv_9505 with PID 16519 started at Wed May 10 11:54:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16519 at Wed May 10 11:54:16 UTC 2017
kill -USR1 16519
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16519 killed at Wed May 10 11:54:16 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:54:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:54:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16580 >/dev/null 2>/dev/null
selfserv_9505 with PID 16580 found at Wed May 10 11:54:16 UTC 2017
selfserv_9505 with PID 16580 started at Wed May 10 11:54:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2334: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16580 at Wed May 10 11:54:42 UTC 2017
kill -USR1 16580
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16580 killed at Wed May 10 11:54:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:54:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:54:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16637 >/dev/null 2>/dev/null
selfserv_9505 with PID 16637 found at Wed May 10 11:54:42 UTC 2017
selfserv_9505 with PID 16637 started at Wed May 10 11:54:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16637 at Wed May 10 11:54:42 UTC 2017
kill -USR1 16637
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16637 killed at Wed May 10 11:54:42 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:54:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:54:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16698 >/dev/null 2>/dev/null
selfserv_9505 with PID 16698 found at Wed May 10 11:54:42 UTC 2017
selfserv_9505 with PID 16698 started at Wed May 10 11:54:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2336: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16698 at Wed May 10 11:55:09 UTC 2017
kill -USR1 16698
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16698 killed at Wed May 10 11:55:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:55:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16755 >/dev/null 2>/dev/null
selfserv_9505 with PID 16755 found at Wed May 10 11:55:09 UTC 2017
selfserv_9505 with PID 16755 started at Wed May 10 11:55:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16755 at Wed May 10 11:55:09 UTC 2017
kill -USR1 16755
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16755 killed at Wed May 10 11:55:09 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:55:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16816 >/dev/null 2>/dev/null
selfserv_9505 with PID 16816 found at Wed May 10 11:55:09 UTC 2017
selfserv_9505 with PID 16816 started at Wed May 10 11:55:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2338: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16816 at Wed May 10 11:55:32 UTC 2017
kill -USR1 16816
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16816 killed at Wed May 10 11:55:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:55:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16873 >/dev/null 2>/dev/null
selfserv_9505 with PID 16873 found at Wed May 10 11:55:33 UTC 2017
selfserv_9505 with PID 16873 started at Wed May 10 11:55:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16873 at Wed May 10 11:55:33 UTC 2017
kill -USR1 16873
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16873 killed at Wed May 10 11:55:33 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9505 starting at Wed May 10 11:55:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16951 >/dev/null 2>/dev/null
selfserv_9505 with PID 16951 found at Wed May 10 11:55:33 UTC 2017
selfserv_9505 with PID 16951 started at Wed May 10 11:55:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16951 at Wed May 10 11:55:33 UTC 2017
kill -USR1 16951
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16951 killed at Wed May 10 11:55:33 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9505 starting at Wed May 10 11:55:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17014 >/dev/null 2>/dev/null
selfserv_9505 with PID 17014 found at Wed May 10 11:55:33 UTC 2017
selfserv_9505 with PID 17014 started at Wed May 10 11:55:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17014 at Wed May 10 11:55:34 UTC 2017
kill -USR1 17014
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17014 killed at Wed May 10 11:55:34 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9505 starting at Wed May 10 11:55:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17077 >/dev/null 2>/dev/null
selfserv_9505 with PID 17077 found at Wed May 10 11:55:34 UTC 2017
selfserv_9505 with PID 17077 started at Wed May 10 11:55:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2342: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 17077 at Wed May 10 11:55:34 UTC 2017
kill -USR1 17077
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17077 killed at Wed May 10 11:55:34 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9505 starting at Wed May 10 11:55:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17140 >/dev/null 2>/dev/null
selfserv_9505 with PID 17140 found at Wed May 10 11:55:34 UTC 2017
selfserv_9505 with PID 17140 started at Wed May 10 11:55:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17140 at Wed May 10 11:55:34 UTC 2017
kill -USR1 17140
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17140 killed at Wed May 10 11:55:34 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9505 starting at Wed May 10 11:55:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17203 >/dev/null 2>/dev/null
selfserv_9505 with PID 17203 found at Wed May 10 11:55:34 UTC 2017
selfserv_9505 with PID 17203 started at Wed May 10 11:55:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2344: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 17203 at Wed May 10 11:55:35 UTC 2017
kill -USR1 17203
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17203 killed at Wed May 10 11:55:35 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9505 starting at Wed May 10 11:55:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17266 >/dev/null 2>/dev/null
selfserv_9505 with PID 17266 found at Wed May 10 11:55:35 UTC 2017
selfserv_9505 with PID 17266 started at Wed May 10 11:55:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17266 at Wed May 10 11:55:35 UTC 2017
kill -USR1 17266
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17266 killed at Wed May 10 11:55:35 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9505 starting at Wed May 10 11:55:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17329 >/dev/null 2>/dev/null
selfserv_9505 with PID 17329 found at Wed May 10 11:55:35 UTC 2017
selfserv_9505 with PID 17329 started at Wed May 10 11:55:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17329 at Wed May 10 11:55:35 UTC 2017
kill -USR1 17329
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17329 killed at Wed May 10 11:55:35 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9505 starting at Wed May 10 11:55:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17392 >/dev/null 2>/dev/null
selfserv_9505 with PID 17392 found at Wed May 10 11:55:35 UTC 2017
selfserv_9505 with PID 17392 started at Wed May 10 11:55:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #2347: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 17392 at Wed May 10 11:55:36 UTC 2017
kill -USR1 17392
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17392 killed at Wed May 10 11:55:36 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9505 starting at Wed May 10 11:55:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17455 >/dev/null 2>/dev/null
selfserv_9505 with PID 17455 found at Wed May 10 11:55:36 UTC 2017
selfserv_9505 with PID 17455 started at Wed May 10 11:55:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2348: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 17455 at Wed May 10 11:55:36 UTC 2017
kill -USR1 17455
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17455 killed at Wed May 10 11:55:36 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9505 starting at Wed May 10 11:55:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17518 >/dev/null 2>/dev/null
selfserv_9505 with PID 17518 found at Wed May 10 11:55:36 UTC 2017
selfserv_9505 with PID 17518 started at Wed May 10 11:55:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2349: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 17518 at Wed May 10 11:55:36 UTC 2017
kill -USR1 17518
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17518 killed at Wed May 10 11:55:36 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17617 >/dev/null 2>/dev/null
selfserv_9505 with PID 17617 found at Wed May 10 11:55:36 UTC 2017
selfserv_9505 with PID 17617 started at Wed May 10 11:55:36 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:55:37 UTC 2017
ssl.sh: #2350: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 17617 at Wed May 10 11:55:37 UTC 2017
kill -USR1 17617
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17617 killed at Wed May 10 11:55:37 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17687 >/dev/null 2>/dev/null
selfserv_9505 with PID 17687 found at Wed May 10 11:55:38 UTC 2017
selfserv_9505 with PID 17687 started at Wed May 10 11:55:38 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:55:39 UTC 2017
ssl.sh: #2351: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 17687 at Wed May 10 11:55:39 UTC 2017
kill -USR1 17687
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17687 killed at Wed May 10 11:55:39 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17757 >/dev/null 2>/dev/null
selfserv_9505 with PID 17757 found at Wed May 10 11:55:39 UTC 2017
selfserv_9505 with PID 17757 started at Wed May 10 11:55:39 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:55:39 UTC 2017
ssl.sh: #2352: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 17757 at Wed May 10 11:55:39 UTC 2017
kill -USR1 17757
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17757 killed at Wed May 10 11:55:39 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17828 >/dev/null 2>/dev/null
selfserv_9505 with PID 17828 found at Wed May 10 11:55:39 UTC 2017
selfserv_9505 with PID 17828 started at Wed May 10 11:55:39 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:55:39 UTC 2017
ssl.sh: #2353: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 17828 at Wed May 10 11:55:39 UTC 2017
kill -USR1 17828
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17828 killed at Wed May 10 11:55:40 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 11:55:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17899 >/dev/null 2>/dev/null
selfserv_9505 with PID 17899 found at Wed May 10 11:55:40 UTC 2017
selfserv_9505 with PID 17899 started at Wed May 10 11:55:40 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:55:40 UTC 2017
ssl.sh: #2354: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 17899 at Wed May 10 11:55:40 UTC 2017
kill -USR1 17899
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17899 killed at Wed May 10 11:55:40 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17972 >/dev/null 2>/dev/null
selfserv_9505 with PID 17972 found at Wed May 10 11:55:40 UTC 2017
selfserv_9505 with PID 17972 started at Wed May 10 11:55:40 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:55:40 UTC 2017
ssl.sh: #2355: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 17972 at Wed May 10 11:55:40 UTC 2017
kill -USR1 17972
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17972 killed at Wed May 10 11:55:40 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 11:55:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18043 >/dev/null 2>/dev/null
selfserv_9505 with PID 18043 found at Wed May 10 11:55:40 UTC 2017
selfserv_9505 with PID 18043 started at Wed May 10 11:55:40 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:55:41 UTC 2017
ssl.sh: #2356: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18043 at Wed May 10 11:55:41 UTC 2017
kill -USR1 18043
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18043 killed at Wed May 10 11:55:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9505 starting at Wed May 10 11:55:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18122 >/dev/null 2>/dev/null
selfserv_9505 with PID 18122 found at Wed May 10 11:55:41 UTC 2017
selfserv_9505 with PID 18122 started at Wed May 10 11:55:41 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:55:42 UTC 2017
ssl.sh: #2357: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18122 at Wed May 10 11:55:42 UTC 2017
kill -USR1 18122
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18122 killed at Wed May 10 11:55:42 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9505 starting at Wed May 10 11:55:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18199 >/dev/null 2>/dev/null
selfserv_9505 with PID 18199 found at Wed May 10 11:55:42 UTC 2017
selfserv_9505 with PID 18199 started at Wed May 10 11:55:42 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Wed May 10 11:55:43 UTC 2017
ssl.sh: #2358: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18199 at Wed May 10 11:55:43 UTC 2017
kill -USR1 18199
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18199 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18302 >/dev/null 2>/dev/null
selfserv_9505 with PID 18302 found at Wed May 10 11:55:43 UTC 2017
selfserv_9505 with PID 18302 started at Wed May 10 11:55:43 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:55:43 UTC 2017
ssl.sh: #2359: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18302 at Wed May 10 11:55:43 UTC 2017
kill -USR1 18302
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18302 killed at Wed May 10 11:55:43 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9505 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18372 >/dev/null 2>/dev/null
selfserv_9505 with PID 18372 found at Wed May 10 11:55:44 UTC 2017
selfserv_9505 with PID 18372 started at Wed May 10 11:55:44 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:55:44 UTC 2017
ssl.sh: #2360: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18372 at Wed May 10 11:55:44 UTC 2017
kill -USR1 18372
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18372 killed at Wed May 10 11:55:44 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18443 >/dev/null 2>/dev/null
selfserv_9505 with PID 18443 found at Wed May 10 11:55:44 UTC 2017
selfserv_9505 with PID 18443 started at Wed May 10 11:55:44 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:55:45 UTC 2017
ssl.sh: #2361: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18443 at Wed May 10 11:55:45 UTC 2017
kill -USR1 18443
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18443 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18513 >/dev/null 2>/dev/null
selfserv_9505 with PID 18513 found at Wed May 10 11:55:45 UTC 2017
selfserv_9505 with PID 18513 started at Wed May 10 11:55:45 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 11:55:45 UTC 2017
ssl.sh: #2362: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18513 at Wed May 10 11:55:45 UTC 2017
kill -USR1 18513
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18513 killed at Wed May 10 11:55:45 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9505 starting at Wed May 10 11:55:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18583 >/dev/null 2>/dev/null
selfserv_9505 with PID 18583 found at Wed May 10 11:55:45 UTC 2017
selfserv_9505 with PID 18583 started at Wed May 10 11:55:45 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:55:46 UTC 2017
ssl.sh: #2363: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18583 at Wed May 10 11:55:46 UTC 2017
kill -USR1 18583
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18583 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18654 >/dev/null 2>/dev/null
selfserv_9505 with PID 18654 found at Wed May 10 11:55:46 UTC 2017
selfserv_9505 with PID 18654 started at Wed May 10 11:55:46 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 11:55:46 UTC 2017
ssl.sh: #2364: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18654 at Wed May 10 11:55:46 UTC 2017
kill -USR1 18654
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18654 killed at Wed May 10 11:55:46 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18763 >/dev/null 2>/dev/null
selfserv_9505 with PID 18763 found at Wed May 10 11:55:46 UTC 2017
selfserv_9505 with PID 18763 started at Wed May 10 11:55:46 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 11:55:49 UTC 2017
ssl.sh: #2365: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18763 at Wed May 10 11:55:49 UTC 2017
kill -USR1 18763
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18763 killed at Wed May 10 11:55:49 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9505 starting at Wed May 10 11:55:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18833 >/dev/null 2>/dev/null
selfserv_9505 with PID 18833 found at Wed May 10 11:55:49 UTC 2017
selfserv_9505 with PID 18833 started at Wed May 10 11:55:49 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 11:55:50 UTC 2017
ssl.sh: #2366: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18833 at Wed May 10 11:55:50 UTC 2017
kill -USR1 18833
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18833 killed at Wed May 10 11:55:50 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:55:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:55:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18916 >/dev/null 2>/dev/null
selfserv_9505 with PID 18916 found at Wed May 10 11:55:50 UTC 2017
selfserv_9505 with PID 18916 started at Wed May 10 11:55:50 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:55:50 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:56:14 UTC 2017
ssl.sh: #2367: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18916 at Wed May 10 11:56:14 UTC 2017
kill -USR1 18916
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18916 killed at Wed May 10 11:56:14 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 11:56:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:56:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18986 >/dev/null 2>/dev/null
selfserv_9505 with PID 18986 found at Wed May 10 11:56:14 UTC 2017
selfserv_9505 with PID 18986 started at Wed May 10 11:56:14 UTC 2017
strsclnt -q -p 9505 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 11:56:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 11:56:38 UTC 2017
ssl.sh: #2368: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 18986 at Wed May 10 11:56:38 UTC 2017
kill -USR1 18986
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18986 killed at Wed May 10 11:56:38 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9505 starting at Wed May 10 11:56:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:56:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19051 >/dev/null 2>/dev/null
selfserv_9505 with PID 19051 found at Wed May 10 11:56:38 UTC 2017
selfserv_9505 with PID 19051 started at Wed May 10 11:56:38 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2418: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2419: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2421: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2422: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2424: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2425: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2427: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2428: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2430: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2431: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2433: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2435: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2437: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2439: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2441: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2443: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2444: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2445: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2446: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2447: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2448: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2449: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2450: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2451: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2452: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2453: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2454: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2455: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2456: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2457: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2458: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2459: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2460: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2461: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2462: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2463: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2464: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2465: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2466: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2467: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2468: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2469: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2470: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2471: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2472: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2473: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2474: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2475: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2476: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2477: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2478: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2479: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2480: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2481: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2482: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2483: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2484: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2485: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2486: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2487: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2488: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9505 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2489: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19051 at Wed May 10 11:57:02 UTC 2017
kill -USR1 19051
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19051 killed at Wed May 10 11:57:02 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:57:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21319 >/dev/null 2>/dev/null
selfserv_9505 with PID 21319 found at Wed May 10 11:57:02 UTC 2017
selfserv_9505 with PID 21319 started at Wed May 10 11:57:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2490: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21319 at Wed May 10 11:57:03 UTC 2017
kill -USR1 21319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21319 killed at Wed May 10 11:57:03 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:57:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21376 >/dev/null 2>/dev/null
selfserv_9505 with PID 21376 found at Wed May 10 11:57:03 UTC 2017
selfserv_9505 with PID 21376 started at Wed May 10 11:57:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2491: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21376 at Wed May 10 11:57:30 UTC 2017
kill -USR1 21376
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21376 killed at Wed May 10 11:57:30 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:57:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21434 >/dev/null 2>/dev/null
selfserv_9505 with PID 21434 found at Wed May 10 11:57:30 UTC 2017
selfserv_9505 with PID 21434 started at Wed May 10 11:57:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2492: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21434 at Wed May 10 11:57:31 UTC 2017
kill -USR1 21434
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21434 killed at Wed May 10 11:57:31 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:57:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21497 >/dev/null 2>/dev/null
selfserv_9505 with PID 21497 found at Wed May 10 11:57:31 UTC 2017
selfserv_9505 with PID 21497 started at Wed May 10 11:57:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2493: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21497 at Wed May 10 11:57:31 UTC 2017
kill -USR1 21497
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21497 killed at Wed May 10 11:57:31 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 11:57:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21554 >/dev/null 2>/dev/null
selfserv_9505 with PID 21554 found at Wed May 10 11:57:31 UTC 2017
selfserv_9505 with PID 21554 started at Wed May 10 11:57:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2494: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21554 at Wed May 10 11:57:54 UTC 2017
kill -USR1 21554
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21554 killed at Wed May 10 11:57:54 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 11:57:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21611 >/dev/null 2>/dev/null
selfserv_9505 with PID 21611 found at Wed May 10 11:57:54 UTC 2017
selfserv_9505 with PID 21611 started at Wed May 10 11:57:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2495: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21611 at Wed May 10 11:57:55 UTC 2017
kill -USR1 21611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21611 killed at Wed May 10 11:57:55 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:57:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21674 >/dev/null 2>/dev/null
selfserv_9505 with PID 21674 found at Wed May 10 11:57:55 UTC 2017
selfserv_9505 with PID 21674 started at Wed May 10 11:57:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2496: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21674 at Wed May 10 11:57:55 UTC 2017
kill -USR1 21674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21674 killed at Wed May 10 11:57:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:57:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:57:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21731 >/dev/null 2>/dev/null
selfserv_9505 with PID 21731 found at Wed May 10 11:57:55 UTC 2017
selfserv_9505 with PID 21731 started at Wed May 10 11:57:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2497: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21731 at Wed May 10 11:58:23 UTC 2017
kill -USR1 21731
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21731 killed at Wed May 10 11:58:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:58:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:58:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21788 >/dev/null 2>/dev/null
selfserv_9505 with PID 21788 found at Wed May 10 11:58:23 UTC 2017
selfserv_9505 with PID 21788 started at Wed May 10 11:58:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2498: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21788 at Wed May 10 11:58:23 UTC 2017
kill -USR1 21788
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21788 killed at Wed May 10 11:58:23 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:58:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:58:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21851 >/dev/null 2>/dev/null
selfserv_9505 with PID 21851 found at Wed May 10 11:58:23 UTC 2017
selfserv_9505 with PID 21851 started at Wed May 10 11:58:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2499: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21851 at Wed May 10 11:58:24 UTC 2017
kill -USR1 21851
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21851 killed at Wed May 10 11:58:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:58:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:58:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21908 >/dev/null 2>/dev/null
selfserv_9505 with PID 21908 found at Wed May 10 11:58:24 UTC 2017
selfserv_9505 with PID 21908 started at Wed May 10 11:58:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2500: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21908 at Wed May 10 11:58:51 UTC 2017
kill -USR1 21908
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21908 killed at Wed May 10 11:58:51 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:58:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:58:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21965 >/dev/null 2>/dev/null
selfserv_9505 with PID 21965 found at Wed May 10 11:58:51 UTC 2017
selfserv_9505 with PID 21965 started at Wed May 10 11:58:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2501: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21965 at Wed May 10 11:58:51 UTC 2017
kill -USR1 21965
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21965 killed at Wed May 10 11:58:51 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 11:58:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:58:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22028 >/dev/null 2>/dev/null
selfserv_9505 with PID 22028 found at Wed May 10 11:58:51 UTC 2017
selfserv_9505 with PID 22028 started at Wed May 10 11:58:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2502: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22028 at Wed May 10 11:58:52 UTC 2017
kill -USR1 22028
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22028 killed at Wed May 10 11:58:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 11:58:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:58:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22085 >/dev/null 2>/dev/null
selfserv_9505 with PID 22085 found at Wed May 10 11:58:52 UTC 2017
selfserv_9505 with PID 22085 started at Wed May 10 11:58:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
ssl.sh: #2503: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22085 at Wed May 10 11:59:15 UTC 2017
kill -USR1 22085
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22085 killed at Wed May 10 11:59:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 11:59:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:59:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22142 >/dev/null 2>/dev/null
selfserv_9505 with PID 22142 found at Wed May 10 11:59:15 UTC 2017
selfserv_9505 with PID 22142 started at Wed May 10 11:59:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2504: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22142 at Wed May 10 11:59:15 UTC 2017
kill -USR1 22142
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22142 killed at Wed May 10 11:59:15 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:59:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:59:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22218 >/dev/null 2>/dev/null
selfserv_9505 with PID 22218 found at Wed May 10 11:59:16 UTC 2017
selfserv_9505 with PID 22218 started at Wed May 10 11:59:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2505: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22218 at Wed May 10 11:59:43 UTC 2017
kill -USR1 22218
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22218 killed at Wed May 10 11:59:43 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 11:59:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:59:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22275 >/dev/null 2>/dev/null
selfserv_9505 with PID 22275 found at Wed May 10 11:59:43 UTC 2017
selfserv_9505 with PID 22275 started at Wed May 10 11:59:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2506: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22275 at Wed May 10 11:59:43 UTC 2017
kill -USR1 22275
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22275 killed at Wed May 10 11:59:43 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 11:59:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 11:59:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22336 >/dev/null 2>/dev/null
selfserv_9505 with PID 22336 found at Wed May 10 11:59:43 UTC 2017
selfserv_9505 with PID 22336 started at Wed May 10 11:59:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
ssl.sh: #2507: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22336 at Wed May 10 12:00:07 UTC 2017
kill -USR1 22336
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22336 killed at Wed May 10 12:00:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:00:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:00:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22393 >/dev/null 2>/dev/null
selfserv_9505 with PID 22393 found at Wed May 10 12:00:07 UTC 2017
selfserv_9505 with PID 22393 started at Wed May 10 12:00:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2508: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22393 at Wed May 10 12:00:07 UTC 2017
kill -USR1 22393
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22393 killed at Wed May 10 12:00:07 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:00:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:00:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22454 >/dev/null 2>/dev/null
selfserv_9505 with PID 22454 found at Wed May 10 12:00:07 UTC 2017
selfserv_9505 with PID 22454 started at Wed May 10 12:00:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2509: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22454 at Wed May 10 12:00:35 UTC 2017
kill -USR1 22454
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22454 killed at Wed May 10 12:00:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:00:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:00:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22511 >/dev/null 2>/dev/null
selfserv_9505 with PID 22511 found at Wed May 10 12:00:35 UTC 2017
selfserv_9505 with PID 22511 started at Wed May 10 12:00:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2510: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22511 at Wed May 10 12:00:35 UTC 2017
kill -USR1 22511
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22511 killed at Wed May 10 12:00:35 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:00:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:00:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22572 >/dev/null 2>/dev/null
selfserv_9505 with PID 22572 found at Wed May 10 12:00:35 UTC 2017
selfserv_9505 with PID 22572 started at Wed May 10 12:00:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2511: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22572 at Wed May 10 12:01:02 UTC 2017
kill -USR1 22572
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22572 killed at Wed May 10 12:01:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:01:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22632 >/dev/null 2>/dev/null
selfserv_9505 with PID 22632 found at Wed May 10 12:01:02 UTC 2017
selfserv_9505 with PID 22632 started at Wed May 10 12:01:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2512: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22632 at Wed May 10 12:01:03 UTC 2017
kill -USR1 22632
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22632 killed at Wed May 10 12:01:03 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:01:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22693 >/dev/null 2>/dev/null
selfserv_9505 with PID 22693 found at Wed May 10 12:01:03 UTC 2017
selfserv_9505 with PID 22693 started at Wed May 10 12:01:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2513: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22693 at Wed May 10 12:01:26 UTC 2017
kill -USR1 22693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22693 killed at Wed May 10 12:01:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:01:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22750 >/dev/null 2>/dev/null
selfserv_9505 with PID 22750 found at Wed May 10 12:01:26 UTC 2017
selfserv_9505 with PID 22750 started at Wed May 10 12:01:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2514: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22750 at Wed May 10 12:01:27 UTC 2017
kill -USR1 22750
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22750 killed at Wed May 10 12:01:27 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22884 >/dev/null 2>/dev/null
selfserv_9505 with PID 22884 found at Wed May 10 12:01:27 UTC 2017
selfserv_9505 with PID 22884 started at Wed May 10 12:01:27 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 12:01:29 UTC 2017
ssl.sh: #2515: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 22884 at Wed May 10 12:01:29 UTC 2017
kill -USR1 22884
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22884 killed at Wed May 10 12:01:29 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22954 >/dev/null 2>/dev/null
selfserv_9505 with PID 22954 found at Wed May 10 12:01:29 UTC 2017
selfserv_9505 with PID 22954 started at Wed May 10 12:01:29 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 12:01:30 UTC 2017
ssl.sh: #2516: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 22954 at Wed May 10 12:01:30 UTC 2017
kill -USR1 22954
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22954 killed at Wed May 10 12:01:30 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23024 >/dev/null 2>/dev/null
selfserv_9505 with PID 23024 found at Wed May 10 12:01:30 UTC 2017
selfserv_9505 with PID 23024 started at Wed May 10 12:01:30 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 12:01:31 UTC 2017
ssl.sh: #2517: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23024 at Wed May 10 12:01:31 UTC 2017
kill -USR1 23024
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23024 killed at Wed May 10 12:01:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23095 >/dev/null 2>/dev/null
selfserv_9505 with PID 23095 found at Wed May 10 12:01:31 UTC 2017
selfserv_9505 with PID 23095 started at Wed May 10 12:01:31 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 12:01:31 UTC 2017
ssl.sh: #2518: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23095 at Wed May 10 12:01:31 UTC 2017
kill -USR1 23095
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23095 killed at Wed May 10 12:01:31 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 12:01:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23166 >/dev/null 2>/dev/null
selfserv_9505 with PID 23166 found at Wed May 10 12:01:31 UTC 2017
selfserv_9505 with PID 23166 started at Wed May 10 12:01:31 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 12:01:32 UTC 2017
ssl.sh: #2519: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23166 at Wed May 10 12:01:32 UTC 2017
kill -USR1 23166
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23166 killed at Wed May 10 12:01:32 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23237 >/dev/null 2>/dev/null
selfserv_9505 with PID 23237 found at Wed May 10 12:01:32 UTC 2017
selfserv_9505 with PID 23237 started at Wed May 10 12:01:32 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 12:01:32 UTC 2017
ssl.sh: #2520: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23237 at Wed May 10 12:01:32 UTC 2017
kill -USR1 23237
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23237 killed at Wed May 10 12:01:32 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9505 starting at Wed May 10 12:01:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23308 >/dev/null 2>/dev/null
selfserv_9505 with PID 23308 found at Wed May 10 12:01:32 UTC 2017
selfserv_9505 with PID 23308 started at Wed May 10 12:01:32 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 12:01:33 UTC 2017
ssl.sh: #2521: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23308 at Wed May 10 12:01:33 UTC 2017
kill -USR1 23308
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23308 killed at Wed May 10 12:01:33 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23416 >/dev/null 2>/dev/null
selfserv_9505 with PID 23416 found at Wed May 10 12:01:33 UTC 2017
selfserv_9505 with PID 23416 started at Wed May 10 12:01:33 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 12:01:34 UTC 2017
ssl.sh: #2522: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23416 at Wed May 10 12:01:34 UTC 2017
kill -USR1 23416
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23416 killed at Wed May 10 12:01:34 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9505 starting at Wed May 10 12:01:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23486 >/dev/null 2>/dev/null
selfserv_9505 with PID 23486 found at Wed May 10 12:01:34 UTC 2017
selfserv_9505 with PID 23486 started at Wed May 10 12:01:34 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 12:01:34 UTC 2017
ssl.sh: #2523: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23486 at Wed May 10 12:01:34 UTC 2017
kill -USR1 23486
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23486 killed at Wed May 10 12:01:34 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23557 >/dev/null 2>/dev/null
selfserv_9505 with PID 23557 found at Wed May 10 12:01:34 UTC 2017
selfserv_9505 with PID 23557 started at Wed May 10 12:01:34 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 12:01:35 UTC 2017
ssl.sh: #2524: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23557 at Wed May 10 12:01:35 UTC 2017
kill -USR1 23557
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23557 killed at Wed May 10 12:01:35 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23627 >/dev/null 2>/dev/null
selfserv_9505 with PID 23627 found at Wed May 10 12:01:35 UTC 2017
selfserv_9505 with PID 23627 started at Wed May 10 12:01:35 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:35 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Wed May 10 12:01:36 UTC 2017
ssl.sh: #2525: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23627 at Wed May 10 12:01:36 UTC 2017
kill -USR1 23627
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23627 killed at Wed May 10 12:01:36 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9505 starting at Wed May 10 12:01:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23697 >/dev/null 2>/dev/null
selfserv_9505 with PID 23697 found at Wed May 10 12:01:36 UTC 2017
selfserv_9505 with PID 23697 started at Wed May 10 12:01:36 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 12:01:36 UTC 2017
ssl.sh: #2526: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23697 at Wed May 10 12:01:36 UTC 2017
kill -USR1 23697
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23697 killed at Wed May 10 12:01:36 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23769 >/dev/null 2>/dev/null
selfserv_9505 with PID 23769 found at Wed May 10 12:01:36 UTC 2017
selfserv_9505 with PID 23769 started at Wed May 10 12:01:36 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Wed May 10 12:01:37 UTC 2017
ssl.sh: #2527: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23769 at Wed May 10 12:01:37 UTC 2017
kill -USR1 23769
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23769 killed at Wed May 10 12:01:37 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23878 >/dev/null 2>/dev/null
selfserv_9505 with PID 23878 found at Wed May 10 12:01:37 UTC 2017
selfserv_9505 with PID 23878 started at Wed May 10 12:01:37 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Wed May 10 12:01:41 UTC 2017
ssl.sh: #2528: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23878 at Wed May 10 12:01:41 UTC 2017
kill -USR1 23878
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23878 killed at Wed May 10 12:01:41 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9505 starting at Wed May 10 12:01:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23949 >/dev/null 2>/dev/null
selfserv_9505 with PID 23949 found at Wed May 10 12:01:41 UTC 2017
selfserv_9505 with PID 23949 started at Wed May 10 12:01:41 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Wed May 10 12:01:42 UTC 2017
ssl.sh: #2529: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 23949 at Wed May 10 12:01:42 UTC 2017
kill -USR1 23949
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23949 killed at Wed May 10 12:01:42 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:01:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:01:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24032 >/dev/null 2>/dev/null
selfserv_9505 with PID 24032 found at Wed May 10 12:01:42 UTC 2017
selfserv_9505 with PID 24032 started at Wed May 10 12:01:42 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:01:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 12:02:17 UTC 2017
ssl.sh: #2530: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 24032 at Wed May 10 12:02:17 UTC 2017
kill -USR1 24032
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24032 killed at Wed May 10 12:02:17 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9505 starting at Wed May 10 12:02:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:02:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24103 >/dev/null 2>/dev/null
selfserv_9505 with PID 24103 found at Wed May 10 12:02:17 UTC 2017
selfserv_9505 with PID 24103 started at Wed May 10 12:02:17 UTC 2017
strsclnt -q -p 9505 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Wed May 10 12:02:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Wed May 10 12:02:52 UTC 2017
ssl.sh: #2531: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9505 with PID 24103 at Wed May 10 12:02:52 UTC 2017
kill -USR1 24103
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24103 killed at Wed May 10 12:02:52 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2532:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/client -list
ssl.sh: #2533:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2534:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2535:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2536:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2537:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Wed May 10 12:02:52 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Wed May 10 12:02:52 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Wed May 10 12:02:52 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed May 10 12:02:52 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.17937 -t Test2 -f ../tests.pw
merge.sh: #2538: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2539: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2540: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2541: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2542: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2543: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:41 2017
            Not After : Tue May 10 11:40:41 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:05:f0:6b:db:a5:67:db:dd:4c:5f:26:87:62:70:91:
                    44:d9:21:21:7a:4a:83:75:fc:21:59:98:9e:a1:92:30:
                    e3:d0:5d:f8:72:22:de:88:c8:91:7d:a3:1d:20:4f:1e:
                    75:2e:f1:dc:03:bd:a7:74:42:78:4f:ed:7d:02:9e:35:
                    99:c3:6e:b1:af:81:53:c4:15:5a:79:1a:e4:16:fb:b8:
                    00:db:cc:8c:d8:3b:36:b5:91:8f:24:b3:5f:1c:ea:91:
                    84:c2:d4:03:59:02:c2:7a:a4:70:02:4a:d1:a7:47:8b:
                    70:f9:80:c1:8c:c5:1c:4d:e8:c5:f1:4a:40:91:9e:db:
                    ff:3f:15:8e:f8:0c:31:36:26:6d:53:d9:4b:a0:88:25:
                    cb:25:c3:e0:b2:66:a8:c9:55:56:0b:16:01:e0:a5:31:
                    64:5e:92:ae:09:21:e3:5e:8b:3f:88:bd:f7:93:32:4c:
                    2c:91:ac:ea:bf:91:11:55:41:8e:f0:37:a6:50:61:f3:
                    78:1b:b3:31:8a:2f:31:c5:6e:8c:5a:95:28:bc:a5:a0:
                    b3:94:5d:2c:4d:16:38:70:9e:69:9e:22:63:e1:29:b2:
                    00:66:d2:b1:74:86:26:82:c6:75:23:2f:db:c0:e9:ad:
                    d4:ed:2d:43:fd:7a:43:93:9d:8c:ed:11:12:1b:8f:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:84:14:8e:df:42:bd:63:9b:fd:d6:a2:9d:1a:30:44:
        27:4c:ea:a2:ca:0d:b7:c9:3e:e2:a2:9d:16:c5:fb:07:
        95:65:8f:44:96:aa:8e:58:76:b5:4c:dc:0a:87:fd:da:
        b0:92:2b:86:62:af:6a:67:81:2a:04:90:74:71:ed:e4:
        dc:61:0a:6a:82:f1:89:91:95:f4:10:d1:36:3e:8d:43:
        8b:9c:71:1f:46:27:7b:c3:0f:90:4c:db:ff:7a:9f:25:
        ff:7a:9e:42:87:89:74:a8:d5:90:8e:70:43:90:63:f1:
        c9:d9:da:8c:e3:6a:e7:33:30:2c:a9:e5:a8:fe:8e:1e:
        f7:8c:fc:90:69:c7:d5:64:3c:2e:83:00:91:94:c8:13:
        01:9e:da:8d:24:4e:de:6b:f1:bc:d0:f6:e8:99:e1:21:
        0e:45:02:d9:d0:0b:90:3c:ee:8e:a0:ef:e0:71:0a:87:
        d7:89:fe:2d:57:c0:f5:fd:2c:8e:58:8b:f8:f9:08:2a:
        cc:cb:09:4f:fa:a0:ab:25:9e:7e:53:19:7a:2a:c4:03:
        57:ab:e9:c1:63:47:50:5b:c0:e4:db:39:af:bd:a9:df:
        3c:d5:7f:10:ab:64:c1:bf:7d:72:39:22:15:88:4d:4d:
        dc:e4:6f:b4:f6:98:6d:57:d7:6c:cb:fe:30:8d:26:fb
    Fingerprint (SHA-256):
        C2:16:05:91:81:32:0F:4F:B7:C4:6B:B5:78:63:BC:0C:DC:F9:C0:A8:49:60:4C:69:C1:14:AB:C6:14:31:6B:41
    Fingerprint (SHA1):
        38:23:14:B7:BA:4C:C1:30:C2:08:D6:24:56:D7:42:5A:78:78:03:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2544: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:42 2017
            Not After : Tue May 10 11:40:42 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:dc:14:7b:ef:db:ee:3b:53:a8:38:b9:77:3b:bb:7e:
                    e7:11:82:57:fd:10:78:3c:5c:e6:af:f9:e2:3d:18:62:
                    8f:05:32:4e:94:a9:78:9f:d3:8a:64:ae:a9:4d:81:cc:
                    36:d5:66:e9:56:64:8a:70:23:28:ae:93:da:e4:e3:17:
                    a4:d3:dd:f6:62:8e:bd:a8:06:26:6c:de:59:cd:50:9e:
                    fe:ae:20:db:e2:20:c4:62:13:c3:d9:3c:8b:85:16:7b:
                    fa:e1:d0:0f:cf:f3:89:b2:35:4e:e1:1d:0e:65:8e:68:
                    1f:79:2c:52:63:87:30:7e:b8:d9:e3:9d:f9:92:eb:d7:
                    72:d6:a1:07:5e:65:b2:6b:ff:cb:0a:26:23:02:96:71:
                    f7:f0:b0:2b:04:de:dc:2e:59:51:b9:bc:bc:10:19:76:
                    f2:c2:55:b1:e9:b1:a6:71:82:18:cb:c7:80:49:b7:41:
                    e2:cd:e2:21:ae:5f:86:92:59:2a:99:37:e9:62:9b:9b:
                    f0:de:59:bc:9f:77:78:29:19:df:56:ed:29:50:08:b0:
                    5d:4a:5e:6d:db:79:59:6d:14:84:f8:f2:63:15:b1:d9:
                    a8:d3:da:d0:87:77:f1:52:7e:54:c3:f9:d4:52:3b:1d:
                    b5:94:6a:c7:dc:3a:44:f9:e8:b0:cf:82:81:e4:e6:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:c3:0e:18:fb:1d:96:0e:55:66:73:d4:b4:53:3e:57:
        88:63:93:31:99:df:72:91:4c:03:86:14:21:04:b1:39:
        14:91:cb:91:47:36:d7:37:de:a6:43:9e:7c:8c:be:df:
        d7:d2:01:c3:13:b5:41:c0:1e:18:7f:5a:9d:82:93:32:
        f2:07:71:c9:38:20:47:3f:97:3d:86:4c:3a:1b:67:b9:
        c5:32:d3:84:35:2f:d3:0d:44:40:d8:63:a5:3e:83:94:
        f5:30:e8:44:bf:04:ba:3b:ff:d7:2c:4e:fe:ff:3a:e2:
        8d:b3:ba:7b:73:a7:a0:e4:72:a5:a7:82:1b:92:a2:5a:
        07:14:8d:ea:47:e3:3f:bb:9a:3c:44:ae:e6:54:df:29:
        6a:18:61:ab:4e:81:e0:1e:7e:8a:0d:0f:ea:fa:52:90:
        53:3a:7e:f9:8e:51:cf:78:c8:c3:38:3b:3a:70:d6:df:
        2a:b2:40:46:c3:06:de:8c:92:ae:af:1f:8b:9b:d1:1e:
        3c:d5:e3:0f:a5:7f:02:c5:55:37:47:c1:72:02:ef:e2:
        b9:04:4a:1b:e1:c6:a9:1c:5e:68:79:8f:ba:3a:2d:86:
        05:af:16:5d:89:9c:26:60:d3:29:d4:b3:97:16:b9:ff:
        cc:9d:1a:c7:8c:2a:ae:4d:ea:83:5e:0e:c1:3f:10:14
    Fingerprint (SHA-256):
        16:4A:08:71:23:B6:94:48:1E:50:45:39:77:A9:00:FE:4C:CB:D9:04:ED:17:0A:45:26:75:19:E4:BD:51:68:AD
    Fingerprint (SHA1):
        13:D7:1D:B8:98:46:62:BE:D9:A0:E8:31:58:1B:64:C6:73:DB:9F:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2545: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2546: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
clientCA-dsa                                                 T,C,C
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v3.17937 -t Test2 -f ../tests.pw
merge.sh: #2547: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests.v1.17937 -t Test1 -f ../tests.pw
merge.sh: #2548: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2549: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2550: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2551: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed May 10 11:40:56 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:39:53 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed May 10 11:40:52 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2552: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Wed May 10 12:02:54 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Wed May 10 12:02:54 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Wed May 10 12:02:54 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed May 10 12:02:54 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2553: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120255 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2554: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2555: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2556: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2557: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2558: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2559: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2560: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2563: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2564: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2565: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2566: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2567: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2568: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2569: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2570: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2571: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2572: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2573: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2574: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2575: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2576: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2577: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2578: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2579: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2580: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2581: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2582: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2583: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2584: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2585: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2586: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2587: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2588: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2589: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2590: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2591: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2592: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2593: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2594: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2595: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2596: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2597: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2598: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2599: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2600: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2601: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2602: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2603: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2604: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2606: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2608: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2609: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2610: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2611: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2612: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2613: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2614: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2615: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510120307Z
nextupdate=20180510120307Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:03:07 2017
    Next Update: Thu May 10 12:03:07 2018
    CRL Extensions:
chains.sh: #2616: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510120308Z
addcert 2 20170510120308Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:03:08 2017
    Next Update: Thu May 10 12:03:07 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:08 2017
    CRL Extensions:
chains.sh: #2617: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510120308Z
nextupdate=20180510120308Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:03:08 2017
    Next Update: Thu May 10 12:03:08 2018
    CRL Extensions:
chains.sh: #2618: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510120309Z
addcert 2 20170510120309Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:03:09 2017
    Next Update: Thu May 10 12:03:08 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:09 2017
    CRL Extensions:
chains.sh: #2619: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510120310Z
addcert 4 20170510120310Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:03:10 2017
    Next Update: Thu May 10 12:03:08 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:09 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed May 10 12:03:10 2017
    CRL Extensions:
chains.sh: #2620: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510120310Z
nextupdate=20180510120310Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:03:10 2017
    Next Update: Thu May 10 12:03:10 2018
    CRL Extensions:
chains.sh: #2621: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510120311Z
addcert 2 20170510120311Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:03:11 2017
    Next Update: Thu May 10 12:03:10 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:11 2017
    CRL Extensions:
chains.sh: #2622: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510120312Z
addcert 3 20170510120312Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:03:12 2017
    Next Update: Thu May 10 12:03:10 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:11 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:03:12 2017
    CRL Extensions:
chains.sh: #2623: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510120312Z
nextupdate=20180510120312Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:03:12 2017
    Next Update: Thu May 10 12:03:12 2018
    CRL Extensions:
chains.sh: #2624: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510120313Z
addcert 2 20170510120313Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:03:13 2017
    Next Update: Thu May 10 12:03:12 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:13 2017
    CRL Extensions:
chains.sh: #2625: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510120314Z
addcert 3 20170510120314Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:03:14 2017
    Next Update: Thu May 10 12:03:12 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:03:13 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:03:14 2017
    CRL Extensions:
chains.sh: #2626: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2627: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2628: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2629: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2630: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2631: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2632: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2633: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2634: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2635: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2636: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2637: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2638: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2639: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2640: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2641: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2642: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2643: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2644: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2645: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2646: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2647: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2648: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2649: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2650: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed May 10 12:03:15 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:03:15 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 25798 >/dev/null 2>/dev/null
httpserv with PID 25798 found at Wed May 10 12:03:15 UTC 2017
httpserv with PID 25798 started at Wed May 10 12:03:15 UTC 2017
tstclnt -h localhost.localdomain -p 9515 -q -t 20
chains.sh: #2651: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120255 (0x1e67d13f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:02:55 2017
            Not After : Tue May 10 12:02:55 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:0a:66:b2:0e:4a:04:a2:40:d3:4e:07:c5:6a:7f:4b:
                    da:27:32:ca:fc:a5:ba:ee:df:fc:fb:03:a4:7c:68:75:
                    40:5d:c7:23:a3:da:3d:a5:54:94:78:ce:21:bb:c7:12:
                    5c:da:3a:91:2b:95:48:23:27:c3:1b:c6:e2:18:13:eb:
                    2d:11:72:9b:0e:0f:b8:53:a5:b9:26:e0:1a:58:94:45:
                    27:aa:19:20:47:2d:4b:9d:73:57:a7:56:6d:c0:28:57:
                    cb:cf:17:21:6b:fb:87:0b:1b:58:60:1c:f8:bd:3c:c1:
                    ed:b7:46:e0:c5:92:c9:9a:3c:2a:b3:ec:5b:7e:c3:cf:
                    5f:3f:bc:39:4b:37:af:e0:9f:2d:30:b0:d0:3c:bc:e3:
                    a3:64:64:56:4d:31:56:9f:7d:6c:f0:e0:75:d9:f6:60:
                    8a:c7:b8:83:94:d7:5f:62:b4:a0:83:50:28:ca:c8:00:
                    a1:a5:83:08:f3:c6:f4:5e:72:bd:7c:98:d5:e8:8f:c1:
                    cc:81:c0:45:13:b2:ba:15:ba:e6:61:29:56:df:5d:cf:
                    50:18:4e:48:b3:29:31:d7:d3:4e:49:70:0d:10:f5:42:
                    1f:f0:2e:d4:1b:84:12:3b:1b:67:32:2d:31:82:76:27:
                    0d:67:c1:0a:19:e8:58:5f:41:6d:99:e0:db:80:4e:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:c9:ec:a8:dc:b5:79:82:1c:e5:76:9c:96:20:f8:6d:
        77:55:d0:9e:e9:69:aa:47:e9:9f:24:01:ae:89:c6:89:
        c5:88:e5:14:ab:00:f4:6c:bd:3f:5a:c1:85:c2:a4:38:
        19:92:f2:b0:c7:20:5b:9a:0f:11:f5:fb:9c:38:b0:2a:
        1b:b9:a7:bc:77:2c:b5:76:7f:2e:f6:1a:84:db:b2:5c:
        98:6c:98:43:01:5d:b4:8e:35:5f:08:76:c5:62:af:0d:
        4f:c0:e7:16:f5:1a:3b:a6:c4:af:64:e0:d9:0d:fc:0b:
        23:f3:a0:7d:bd:f8:7a:18:8e:88:7e:d0:04:60:73:12:
        dc:ac:ce:ec:3e:97:7b:5d:7d:dc:e8:e3:93:a5:39:68:
        71:db:11:36:4d:15:d1:fc:f6:f9:8a:49:fb:3a:fd:f5:
        97:47:5e:9a:33:4c:32:55:be:82:ef:f8:04:05:d3:f1:
        be:0c:7d:58:89:25:90:46:2f:c5:1c:fc:5a:c6:1e:ad:
        2b:81:d2:a1:bc:ca:6e:ff:74:d6:c5:d7:3c:b3:de:c1:
        f7:1f:dc:8f:d6:4c:36:df:62:37:47:18:88:7b:6b:5c:
        76:37:1c:ea:4c:59:12:d1:f9:dc:c9:2b:bc:df:4e:cb:
        58:ea:08:b1:a2:c3:ba:b9:12:85:1a:5c:a7:5d:ce:ec
    Fingerprint (SHA-256):
        15:D9:CC:9C:0D:6D:E1:0A:13:5D:4B:B0:26:6A:8A:03:45:22:9B:5A:4F:D9:F8:1A:F2:20:FE:3E:23:CE:AE:8F
    Fingerprint (SHA1):
        A2:8D:87:67:DD:1C:2D:FC:D5:98:0D:79:0D:18:C0:FB:B8:9C:CE:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2652: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2653: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2654: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 25798 at Wed May 10 12:03:16 UTC 2017
kill -USR1 25798
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 25798 killed at Wed May 10 12:03:16 UTC 2017
httpserv starting at Wed May 10 12:03:16 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:03:16 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 25967 >/dev/null 2>/dev/null
httpserv with PID 25967 found at Wed May 10 12:03:16 UTC 2017
httpserv with PID 25967 started at Wed May 10 12:03:16 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2655: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2656: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2657: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9515 -q -t 20
chains.sh: #2658: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120255 (0x1e67d13f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:02:55 2017
            Not After : Tue May 10 12:02:55 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:0a:66:b2:0e:4a:04:a2:40:d3:4e:07:c5:6a:7f:4b:
                    da:27:32:ca:fc:a5:ba:ee:df:fc:fb:03:a4:7c:68:75:
                    40:5d:c7:23:a3:da:3d:a5:54:94:78:ce:21:bb:c7:12:
                    5c:da:3a:91:2b:95:48:23:27:c3:1b:c6:e2:18:13:eb:
                    2d:11:72:9b:0e:0f:b8:53:a5:b9:26:e0:1a:58:94:45:
                    27:aa:19:20:47:2d:4b:9d:73:57:a7:56:6d:c0:28:57:
                    cb:cf:17:21:6b:fb:87:0b:1b:58:60:1c:f8:bd:3c:c1:
                    ed:b7:46:e0:c5:92:c9:9a:3c:2a:b3:ec:5b:7e:c3:cf:
                    5f:3f:bc:39:4b:37:af:e0:9f:2d:30:b0:d0:3c:bc:e3:
                    a3:64:64:56:4d:31:56:9f:7d:6c:f0:e0:75:d9:f6:60:
                    8a:c7:b8:83:94:d7:5f:62:b4:a0:83:50:28:ca:c8:00:
                    a1:a5:83:08:f3:c6:f4:5e:72:bd:7c:98:d5:e8:8f:c1:
                    cc:81:c0:45:13:b2:ba:15:ba:e6:61:29:56:df:5d:cf:
                    50:18:4e:48:b3:29:31:d7:d3:4e:49:70:0d:10:f5:42:
                    1f:f0:2e:d4:1b:84:12:3b:1b:67:32:2d:31:82:76:27:
                    0d:67:c1:0a:19:e8:58:5f:41:6d:99:e0:db:80:4e:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:c9:ec:a8:dc:b5:79:82:1c:e5:76:9c:96:20:f8:6d:
        77:55:d0:9e:e9:69:aa:47:e9:9f:24:01:ae:89:c6:89:
        c5:88:e5:14:ab:00:f4:6c:bd:3f:5a:c1:85:c2:a4:38:
        19:92:f2:b0:c7:20:5b:9a:0f:11:f5:fb:9c:38:b0:2a:
        1b:b9:a7:bc:77:2c:b5:76:7f:2e:f6:1a:84:db:b2:5c:
        98:6c:98:43:01:5d:b4:8e:35:5f:08:76:c5:62:af:0d:
        4f:c0:e7:16:f5:1a:3b:a6:c4:af:64:e0:d9:0d:fc:0b:
        23:f3:a0:7d:bd:f8:7a:18:8e:88:7e:d0:04:60:73:12:
        dc:ac:ce:ec:3e:97:7b:5d:7d:dc:e8:e3:93:a5:39:68:
        71:db:11:36:4d:15:d1:fc:f6:f9:8a:49:fb:3a:fd:f5:
        97:47:5e:9a:33:4c:32:55:be:82:ef:f8:04:05:d3:f1:
        be:0c:7d:58:89:25:90:46:2f:c5:1c:fc:5a:c6:1e:ad:
        2b:81:d2:a1:bc:ca:6e:ff:74:d6:c5:d7:3c:b3:de:c1:
        f7:1f:dc:8f:d6:4c:36:df:62:37:47:18:88:7b:6b:5c:
        76:37:1c:ea:4c:59:12:d1:f9:dc:c9:2b:bc:df:4e:cb:
        58:ea:08:b1:a2:c3:ba:b9:12:85:1a:5c:a7:5d:ce:ec
    Fingerprint (SHA-256):
        15:D9:CC:9C:0D:6D:E1:0A:13:5D:4B:B0:26:6A:8A:03:45:22:9B:5A:4F:D9:F8:1A:F2:20:FE:3E:23:CE:AE:8F
    Fingerprint (SHA1):
        A2:8D:87:67:DD:1C:2D:FC:D5:98:0D:79:0D:18:C0:FB:B8:9C:CE:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2659: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2660: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2661: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 25967 at Wed May 10 12:03:17 UTC 2017
kill -USR1 25967
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 25967 killed at Wed May 10 12:03:17 UTC 2017
httpserv starting at Wed May 10 12:03:17 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:03:17 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 26214 >/dev/null 2>/dev/null
httpserv with PID 26214 found at Wed May 10 12:03:17 UTC 2017
httpserv with PID 26214 started at Wed May 10 12:03:17 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2662: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2663: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120256 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2664: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2665: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2666: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120257 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2667: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2668: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2669: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2670: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510120258 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2671: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2672: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510120259 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2673: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2674: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2675: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2676: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2677: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510120260   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2678: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2679: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2680: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2681: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2682: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120257 (0x1e67d141)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:af:9c:d1:b1:52:d7:77:0a:93:a2:a9:e1:01:ee:3e:
                    3c:06:80:7f:42:89:a3:6b:b5:45:43:44:a7:ab:0e:81:
                    84:7e:11:74:05:06:6c:a5:cf:b9:a2:51:31:8a:98:c9:
                    a6:09:d6:ca:52:71:b3:cf:b2:ff:62:d1:8e:15:ca:64:
                    cf:6f:83:47:72:f5:2c:21:df:21:70:ca:8e:48:d6:af:
                    bd:f5:5b:89:2b:c1:d7:b6:74:65:e5:ce:27:6a:b1:8e:
                    f0:d1:32:4f:78:74:98:d4:b1:e6:a0:49:5e:78:0a:90:
                    73:54:98:d2:13:f0:8d:db:5c:6e:a2:9c:08:c7:4e:df:
                    39:94:b4:b7:d7:be:06:9f:46:f0:d8:23:18:8f:8d:24:
                    f9:eb:9e:d9:f8:79:13:89:ac:e3:3d:d2:93:1b:5c:6a:
                    bf:79:9d:aa:d2:89:82:84:98:76:bf:57:87:d1:2f:c1:
                    eb:25:da:10:89:86:73:2e:1f:e2:ac:e0:33:d4:e4:de:
                    05:ae:4d:2c:f4:45:8c:ac:3b:23:8a:60:33:ed:17:73:
                    ea:32:05:c4:06:5e:22:0a:d4:f5:4e:33:47:4d:81:a6:
                    c1:2e:bf:14:e0:f2:e2:84:75:e6:0a:da:52:c8:79:60:
                    5c:37:85:68:38:a9:c4:fb:9c:1a:8c:15:5d:96:02:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:ae:34:97:88:b8:6e:b3:04:03:0f:38:d8:e6:13:ff:
        83:5f:30:cf:65:8e:99:a8:7a:da:7d:23:34:f2:42:17:
        13:4e:aa:21:a3:ea:fa:5f:e7:67:b9:60:00:cb:b5:87:
        dc:03:c3:90:29:c6:c5:98:bf:ab:17:6e:7e:1f:8f:95:
        b9:30:b4:58:b6:28:85:22:4c:2b:6c:a9:a7:e5:81:2c:
        d6:5d:43:e9:a6:59:76:1e:c2:d4:c2:00:a2:37:3e:57:
        c5:ac:30:8f:2a:c7:6c:5c:ff:0b:d3:fe:b7:3d:c8:14:
        12:8c:ac:1c:11:fd:a1:f2:84:b8:3a:6d:0e:1f:ca:7f:
        0f:12:f4:c4:c8:39:0b:4e:f1:d4:ef:3d:44:91:d6:72:
        57:9a:9e:96:7f:98:7a:43:98:94:c2:f5:d4:7a:cc:74:
        54:18:9e:f7:b0:cc:c2:5a:6e:1b:d6:75:0f:01:0e:1a:
        03:17:0c:e8:41:4b:9f:dc:47:fa:b7:fc:07:3f:7b:42:
        bc:d7:b6:fa:6a:e4:8f:84:bc:1a:b7:d7:bd:70:bc:51:
        3f:3e:7a:92:16:ae:4c:58:2d:4c:49:82:53:83:3d:2d:
        44:05:fb:93:38:97:9c:f0:26:7d:57:4e:10:7a:18:f7:
        b7:7a:2d:ff:b5:75:27:62:b6:a2:0b:5f:da:bc:4a:73
    Fingerprint (SHA-256):
        C6:F5:87:48:AB:14:A5:4F:9C:B3:38:98:B2:EC:0A:15:76:4B:F1:A0:3D:8E:D7:1F:22:50:FB:D6:4A:EE:C6:FC
    Fingerprint (SHA1):
        A7:68:71:24:49:82:75:82:A4:61:87:25:B9:D6:80:D6:F7:D1:5E:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2683: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120256 (0x1e67d140)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:ca:02:66:1a:dd:cb:7f:71:94:a7:f0:e2:ca:e7:b0:
                    9e:9b:7b:7d:f6:6d:5d:91:b6:67:fe:ff:70:11:a0:8f:
                    61:b9:2f:88:65:40:b1:6c:0d:cf:df:76:b9:86:5e:c7:
                    d4:cd:be:84:d7:33:d1:76:9a:28:97:2c:e4:db:aa:ce:
                    ce:55:1b:37:3f:7c:3e:e9:95:32:0b:98:1f:c2:e4:4c:
                    d5:50:2b:f2:1d:9a:59:18:e5:ec:12:3e:1a:c4:af:a8:
                    e7:9d:84:e1:74:d5:30:eb:a6:d0:53:88:6e:4a:61:dc:
                    16:d2:99:49:9d:73:7a:d8:9d:1c:8a:25:b2:1a:ad:06:
                    cb:16:6a:bc:fd:08:b9:eb:cc:f8:c1:dd:2e:e7:f5:7d:
                    90:d6:87:eb:62:34:1d:a3:ff:08:04:41:e6:60:44:ab:
                    90:69:74:40:59:3e:8c:5b:ee:5b:05:50:ff:8c:d9:ac:
                    54:23:55:03:3c:dc:a6:46:25:db:13:34:5b:16:82:02:
                    84:45:00:2d:12:8d:e0:da:b9:57:6d:de:15:8b:16:47:
                    8a:8e:fe:a5:17:8d:68:9f:70:f4:a6:cf:eb:d3:7b:c8:
                    8a:d1:2f:b0:af:e7:9b:ea:7c:f9:8b:f9:b7:25:02:11:
                    7e:ad:8c:dd:45:58:fa:90:fa:b3:4a:36:c8:35:fa:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:9b:eb:a4:75:18:c3:61:f0:b5:1d:68:21:46:95:db:
        93:29:fc:3f:18:e9:38:64:7c:44:ec:b3:ca:f5:00:74:
        33:4b:91:c9:c1:a7:df:d0:09:a6:b9:b3:0d:c1:30:99:
        e8:7d:d3:56:34:3a:6a:88:d7:0f:db:df:7f:8d:57:9a:
        1f:d7:42:75:24:f2:a1:74:19:5f:9a:d8:4c:19:f3:6e:
        c4:e5:57:47:f9:93:39:63:4f:4c:1d:e5:ba:76:16:17:
        49:99:2d:c0:42:8f:bf:0c:05:1f:70:15:87:47:5a:4d:
        ac:1e:e3:e1:a9:cc:fe:77:6d:40:30:92:80:32:de:86:
        6d:16:ab:6e:67:b9:73:6c:4f:83:cb:56:20:9c:8c:47:
        e2:6c:49:83:ee:03:19:14:ff:bd:c5:e8:e8:0b:e2:66:
        75:b8:f2:8f:bc:8f:38:ff:16:2f:53:da:0b:94:ae:3a:
        74:6e:ca:26:27:94:eb:cf:5a:c4:fe:02:8e:46:5e:a0:
        b0:65:4b:bf:29:99:fa:7b:90:ea:4b:86:9f:30:e7:8f:
        ce:46:08:28:24:80:d5:00:5f:af:c7:86:70:41:1b:7f:
        29:46:65:3b:16:5f:59:05:0d:f4:0b:59:1a:45:83:dd:
        fb:d4:11:25:20:db:a8:9e:d4:32:d3:20:15:6a:af:27
    Fingerprint (SHA-256):
        AC:5D:67:81:3E:27:69:74:DF:62:A4:DF:DD:4D:9F:CA:2E:EE:3C:32:E9:07:F6:CA:75:64:A2:B2:7E:CB:21:74
    Fingerprint (SHA1):
        CA:51:A7:14:10:E7:66:37:3B:20:82:BB:16:17:5D:ED:A5:7E:09:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2684: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2685: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2686: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2687: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120256 (0x1e67d140)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:ca:02:66:1a:dd:cb:7f:71:94:a7:f0:e2:ca:e7:b0:
                    9e:9b:7b:7d:f6:6d:5d:91:b6:67:fe:ff:70:11:a0:8f:
                    61:b9:2f:88:65:40:b1:6c:0d:cf:df:76:b9:86:5e:c7:
                    d4:cd:be:84:d7:33:d1:76:9a:28:97:2c:e4:db:aa:ce:
                    ce:55:1b:37:3f:7c:3e:e9:95:32:0b:98:1f:c2:e4:4c:
                    d5:50:2b:f2:1d:9a:59:18:e5:ec:12:3e:1a:c4:af:a8:
                    e7:9d:84:e1:74:d5:30:eb:a6:d0:53:88:6e:4a:61:dc:
                    16:d2:99:49:9d:73:7a:d8:9d:1c:8a:25:b2:1a:ad:06:
                    cb:16:6a:bc:fd:08:b9:eb:cc:f8:c1:dd:2e:e7:f5:7d:
                    90:d6:87:eb:62:34:1d:a3:ff:08:04:41:e6:60:44:ab:
                    90:69:74:40:59:3e:8c:5b:ee:5b:05:50:ff:8c:d9:ac:
                    54:23:55:03:3c:dc:a6:46:25:db:13:34:5b:16:82:02:
                    84:45:00:2d:12:8d:e0:da:b9:57:6d:de:15:8b:16:47:
                    8a:8e:fe:a5:17:8d:68:9f:70:f4:a6:cf:eb:d3:7b:c8:
                    8a:d1:2f:b0:af:e7:9b:ea:7c:f9:8b:f9:b7:25:02:11:
                    7e:ad:8c:dd:45:58:fa:90:fa:b3:4a:36:c8:35:fa:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:9b:eb:a4:75:18:c3:61:f0:b5:1d:68:21:46:95:db:
        93:29:fc:3f:18:e9:38:64:7c:44:ec:b3:ca:f5:00:74:
        33:4b:91:c9:c1:a7:df:d0:09:a6:b9:b3:0d:c1:30:99:
        e8:7d:d3:56:34:3a:6a:88:d7:0f:db:df:7f:8d:57:9a:
        1f:d7:42:75:24:f2:a1:74:19:5f:9a:d8:4c:19:f3:6e:
        c4:e5:57:47:f9:93:39:63:4f:4c:1d:e5:ba:76:16:17:
        49:99:2d:c0:42:8f:bf:0c:05:1f:70:15:87:47:5a:4d:
        ac:1e:e3:e1:a9:cc:fe:77:6d:40:30:92:80:32:de:86:
        6d:16:ab:6e:67:b9:73:6c:4f:83:cb:56:20:9c:8c:47:
        e2:6c:49:83:ee:03:19:14:ff:bd:c5:e8:e8:0b:e2:66:
        75:b8:f2:8f:bc:8f:38:ff:16:2f:53:da:0b:94:ae:3a:
        74:6e:ca:26:27:94:eb:cf:5a:c4:fe:02:8e:46:5e:a0:
        b0:65:4b:bf:29:99:fa:7b:90:ea:4b:86:9f:30:e7:8f:
        ce:46:08:28:24:80:d5:00:5f:af:c7:86:70:41:1b:7f:
        29:46:65:3b:16:5f:59:05:0d:f4:0b:59:1a:45:83:dd:
        fb:d4:11:25:20:db:a8:9e:d4:32:d3:20:15:6a:af:27
    Fingerprint (SHA-256):
        AC:5D:67:81:3E:27:69:74:DF:62:A4:DF:DD:4D:9F:CA:2E:EE:3C:32:E9:07:F6:CA:75:64:A2:B2:7E:CB:21:74
    Fingerprint (SHA1):
        CA:51:A7:14:10:E7:66:37:3B:20:82:BB:16:17:5D:ED:A5:7E:09:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2688: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120257 (0x1e67d141)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:af:9c:d1:b1:52:d7:77:0a:93:a2:a9:e1:01:ee:3e:
                    3c:06:80:7f:42:89:a3:6b:b5:45:43:44:a7:ab:0e:81:
                    84:7e:11:74:05:06:6c:a5:cf:b9:a2:51:31:8a:98:c9:
                    a6:09:d6:ca:52:71:b3:cf:b2:ff:62:d1:8e:15:ca:64:
                    cf:6f:83:47:72:f5:2c:21:df:21:70:ca:8e:48:d6:af:
                    bd:f5:5b:89:2b:c1:d7:b6:74:65:e5:ce:27:6a:b1:8e:
                    f0:d1:32:4f:78:74:98:d4:b1:e6:a0:49:5e:78:0a:90:
                    73:54:98:d2:13:f0:8d:db:5c:6e:a2:9c:08:c7:4e:df:
                    39:94:b4:b7:d7:be:06:9f:46:f0:d8:23:18:8f:8d:24:
                    f9:eb:9e:d9:f8:79:13:89:ac:e3:3d:d2:93:1b:5c:6a:
                    bf:79:9d:aa:d2:89:82:84:98:76:bf:57:87:d1:2f:c1:
                    eb:25:da:10:89:86:73:2e:1f:e2:ac:e0:33:d4:e4:de:
                    05:ae:4d:2c:f4:45:8c:ac:3b:23:8a:60:33:ed:17:73:
                    ea:32:05:c4:06:5e:22:0a:d4:f5:4e:33:47:4d:81:a6:
                    c1:2e:bf:14:e0:f2:e2:84:75:e6:0a:da:52:c8:79:60:
                    5c:37:85:68:38:a9:c4:fb:9c:1a:8c:15:5d:96:02:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:ae:34:97:88:b8:6e:b3:04:03:0f:38:d8:e6:13:ff:
        83:5f:30:cf:65:8e:99:a8:7a:da:7d:23:34:f2:42:17:
        13:4e:aa:21:a3:ea:fa:5f:e7:67:b9:60:00:cb:b5:87:
        dc:03:c3:90:29:c6:c5:98:bf:ab:17:6e:7e:1f:8f:95:
        b9:30:b4:58:b6:28:85:22:4c:2b:6c:a9:a7:e5:81:2c:
        d6:5d:43:e9:a6:59:76:1e:c2:d4:c2:00:a2:37:3e:57:
        c5:ac:30:8f:2a:c7:6c:5c:ff:0b:d3:fe:b7:3d:c8:14:
        12:8c:ac:1c:11:fd:a1:f2:84:b8:3a:6d:0e:1f:ca:7f:
        0f:12:f4:c4:c8:39:0b:4e:f1:d4:ef:3d:44:91:d6:72:
        57:9a:9e:96:7f:98:7a:43:98:94:c2:f5:d4:7a:cc:74:
        54:18:9e:f7:b0:cc:c2:5a:6e:1b:d6:75:0f:01:0e:1a:
        03:17:0c:e8:41:4b:9f:dc:47:fa:b7:fc:07:3f:7b:42:
        bc:d7:b6:fa:6a:e4:8f:84:bc:1a:b7:d7:bd:70:bc:51:
        3f:3e:7a:92:16:ae:4c:58:2d:4c:49:82:53:83:3d:2d:
        44:05:fb:93:38:97:9c:f0:26:7d:57:4e:10:7a:18:f7:
        b7:7a:2d:ff:b5:75:27:62:b6:a2:0b:5f:da:bc:4a:73
    Fingerprint (SHA-256):
        C6:F5:87:48:AB:14:A5:4F:9C:B3:38:98:B2:EC:0A:15:76:4B:F1:A0:3D:8E:D7:1F:22:50:FB:D6:4A:EE:C6:FC
    Fingerprint (SHA1):
        A7:68:71:24:49:82:75:82:A4:61:87:25:B9:D6:80:D6:F7:D1:5E:FE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2689: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2690: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2691: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2692: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2693: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2694: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120257 (0x1e67d141)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:af:9c:d1:b1:52:d7:77:0a:93:a2:a9:e1:01:ee:3e:
                    3c:06:80:7f:42:89:a3:6b:b5:45:43:44:a7:ab:0e:81:
                    84:7e:11:74:05:06:6c:a5:cf:b9:a2:51:31:8a:98:c9:
                    a6:09:d6:ca:52:71:b3:cf:b2:ff:62:d1:8e:15:ca:64:
                    cf:6f:83:47:72:f5:2c:21:df:21:70:ca:8e:48:d6:af:
                    bd:f5:5b:89:2b:c1:d7:b6:74:65:e5:ce:27:6a:b1:8e:
                    f0:d1:32:4f:78:74:98:d4:b1:e6:a0:49:5e:78:0a:90:
                    73:54:98:d2:13:f0:8d:db:5c:6e:a2:9c:08:c7:4e:df:
                    39:94:b4:b7:d7:be:06:9f:46:f0:d8:23:18:8f:8d:24:
                    f9:eb:9e:d9:f8:79:13:89:ac:e3:3d:d2:93:1b:5c:6a:
                    bf:79:9d:aa:d2:89:82:84:98:76:bf:57:87:d1:2f:c1:
                    eb:25:da:10:89:86:73:2e:1f:e2:ac:e0:33:d4:e4:de:
                    05:ae:4d:2c:f4:45:8c:ac:3b:23:8a:60:33:ed:17:73:
                    ea:32:05:c4:06:5e:22:0a:d4:f5:4e:33:47:4d:81:a6:
                    c1:2e:bf:14:e0:f2:e2:84:75:e6:0a:da:52:c8:79:60:
                    5c:37:85:68:38:a9:c4:fb:9c:1a:8c:15:5d:96:02:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:ae:34:97:88:b8:6e:b3:04:03:0f:38:d8:e6:13:ff:
        83:5f:30:cf:65:8e:99:a8:7a:da:7d:23:34:f2:42:17:
        13:4e:aa:21:a3:ea:fa:5f:e7:67:b9:60:00:cb:b5:87:
        dc:03:c3:90:29:c6:c5:98:bf:ab:17:6e:7e:1f:8f:95:
        b9:30:b4:58:b6:28:85:22:4c:2b:6c:a9:a7:e5:81:2c:
        d6:5d:43:e9:a6:59:76:1e:c2:d4:c2:00:a2:37:3e:57:
        c5:ac:30:8f:2a:c7:6c:5c:ff:0b:d3:fe:b7:3d:c8:14:
        12:8c:ac:1c:11:fd:a1:f2:84:b8:3a:6d:0e:1f:ca:7f:
        0f:12:f4:c4:c8:39:0b:4e:f1:d4:ef:3d:44:91:d6:72:
        57:9a:9e:96:7f:98:7a:43:98:94:c2:f5:d4:7a:cc:74:
        54:18:9e:f7:b0:cc:c2:5a:6e:1b:d6:75:0f:01:0e:1a:
        03:17:0c:e8:41:4b:9f:dc:47:fa:b7:fc:07:3f:7b:42:
        bc:d7:b6:fa:6a:e4:8f:84:bc:1a:b7:d7:bd:70:bc:51:
        3f:3e:7a:92:16:ae:4c:58:2d:4c:49:82:53:83:3d:2d:
        44:05:fb:93:38:97:9c:f0:26:7d:57:4e:10:7a:18:f7:
        b7:7a:2d:ff:b5:75:27:62:b6:a2:0b:5f:da:bc:4a:73
    Fingerprint (SHA-256):
        C6:F5:87:48:AB:14:A5:4F:9C:B3:38:98:B2:EC:0A:15:76:4B:F1:A0:3D:8E:D7:1F:22:50:FB:D6:4A:EE:C6:FC
    Fingerprint (SHA1):
        A7:68:71:24:49:82:75:82:A4:61:87:25:B9:D6:80:D6:F7:D1:5E:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2695: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120257 (0x1e67d141)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:af:9c:d1:b1:52:d7:77:0a:93:a2:a9:e1:01:ee:3e:
                    3c:06:80:7f:42:89:a3:6b:b5:45:43:44:a7:ab:0e:81:
                    84:7e:11:74:05:06:6c:a5:cf:b9:a2:51:31:8a:98:c9:
                    a6:09:d6:ca:52:71:b3:cf:b2:ff:62:d1:8e:15:ca:64:
                    cf:6f:83:47:72:f5:2c:21:df:21:70:ca:8e:48:d6:af:
                    bd:f5:5b:89:2b:c1:d7:b6:74:65:e5:ce:27:6a:b1:8e:
                    f0:d1:32:4f:78:74:98:d4:b1:e6:a0:49:5e:78:0a:90:
                    73:54:98:d2:13:f0:8d:db:5c:6e:a2:9c:08:c7:4e:df:
                    39:94:b4:b7:d7:be:06:9f:46:f0:d8:23:18:8f:8d:24:
                    f9:eb:9e:d9:f8:79:13:89:ac:e3:3d:d2:93:1b:5c:6a:
                    bf:79:9d:aa:d2:89:82:84:98:76:bf:57:87:d1:2f:c1:
                    eb:25:da:10:89:86:73:2e:1f:e2:ac:e0:33:d4:e4:de:
                    05:ae:4d:2c:f4:45:8c:ac:3b:23:8a:60:33:ed:17:73:
                    ea:32:05:c4:06:5e:22:0a:d4:f5:4e:33:47:4d:81:a6:
                    c1:2e:bf:14:e0:f2:e2:84:75:e6:0a:da:52:c8:79:60:
                    5c:37:85:68:38:a9:c4:fb:9c:1a:8c:15:5d:96:02:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:ae:34:97:88:b8:6e:b3:04:03:0f:38:d8:e6:13:ff:
        83:5f:30:cf:65:8e:99:a8:7a:da:7d:23:34:f2:42:17:
        13:4e:aa:21:a3:ea:fa:5f:e7:67:b9:60:00:cb:b5:87:
        dc:03:c3:90:29:c6:c5:98:bf:ab:17:6e:7e:1f:8f:95:
        b9:30:b4:58:b6:28:85:22:4c:2b:6c:a9:a7:e5:81:2c:
        d6:5d:43:e9:a6:59:76:1e:c2:d4:c2:00:a2:37:3e:57:
        c5:ac:30:8f:2a:c7:6c:5c:ff:0b:d3:fe:b7:3d:c8:14:
        12:8c:ac:1c:11:fd:a1:f2:84:b8:3a:6d:0e:1f:ca:7f:
        0f:12:f4:c4:c8:39:0b:4e:f1:d4:ef:3d:44:91:d6:72:
        57:9a:9e:96:7f:98:7a:43:98:94:c2:f5:d4:7a:cc:74:
        54:18:9e:f7:b0:cc:c2:5a:6e:1b:d6:75:0f:01:0e:1a:
        03:17:0c:e8:41:4b:9f:dc:47:fa:b7:fc:07:3f:7b:42:
        bc:d7:b6:fa:6a:e4:8f:84:bc:1a:b7:d7:bd:70:bc:51:
        3f:3e:7a:92:16:ae:4c:58:2d:4c:49:82:53:83:3d:2d:
        44:05:fb:93:38:97:9c:f0:26:7d:57:4e:10:7a:18:f7:
        b7:7a:2d:ff:b5:75:27:62:b6:a2:0b:5f:da:bc:4a:73
    Fingerprint (SHA-256):
        C6:F5:87:48:AB:14:A5:4F:9C:B3:38:98:B2:EC:0A:15:76:4B:F1:A0:3D:8E:D7:1F:22:50:FB:D6:4A:EE:C6:FC
    Fingerprint (SHA1):
        A7:68:71:24:49:82:75:82:A4:61:87:25:B9:D6:80:D6:F7:D1:5E:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2696: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2697: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2698: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2699: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2700: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2701: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120256 (0x1e67d140)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:ca:02:66:1a:dd:cb:7f:71:94:a7:f0:e2:ca:e7:b0:
                    9e:9b:7b:7d:f6:6d:5d:91:b6:67:fe:ff:70:11:a0:8f:
                    61:b9:2f:88:65:40:b1:6c:0d:cf:df:76:b9:86:5e:c7:
                    d4:cd:be:84:d7:33:d1:76:9a:28:97:2c:e4:db:aa:ce:
                    ce:55:1b:37:3f:7c:3e:e9:95:32:0b:98:1f:c2:e4:4c:
                    d5:50:2b:f2:1d:9a:59:18:e5:ec:12:3e:1a:c4:af:a8:
                    e7:9d:84:e1:74:d5:30:eb:a6:d0:53:88:6e:4a:61:dc:
                    16:d2:99:49:9d:73:7a:d8:9d:1c:8a:25:b2:1a:ad:06:
                    cb:16:6a:bc:fd:08:b9:eb:cc:f8:c1:dd:2e:e7:f5:7d:
                    90:d6:87:eb:62:34:1d:a3:ff:08:04:41:e6:60:44:ab:
                    90:69:74:40:59:3e:8c:5b:ee:5b:05:50:ff:8c:d9:ac:
                    54:23:55:03:3c:dc:a6:46:25:db:13:34:5b:16:82:02:
                    84:45:00:2d:12:8d:e0:da:b9:57:6d:de:15:8b:16:47:
                    8a:8e:fe:a5:17:8d:68:9f:70:f4:a6:cf:eb:d3:7b:c8:
                    8a:d1:2f:b0:af:e7:9b:ea:7c:f9:8b:f9:b7:25:02:11:
                    7e:ad:8c:dd:45:58:fa:90:fa:b3:4a:36:c8:35:fa:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:9b:eb:a4:75:18:c3:61:f0:b5:1d:68:21:46:95:db:
        93:29:fc:3f:18:e9:38:64:7c:44:ec:b3:ca:f5:00:74:
        33:4b:91:c9:c1:a7:df:d0:09:a6:b9:b3:0d:c1:30:99:
        e8:7d:d3:56:34:3a:6a:88:d7:0f:db:df:7f:8d:57:9a:
        1f:d7:42:75:24:f2:a1:74:19:5f:9a:d8:4c:19:f3:6e:
        c4:e5:57:47:f9:93:39:63:4f:4c:1d:e5:ba:76:16:17:
        49:99:2d:c0:42:8f:bf:0c:05:1f:70:15:87:47:5a:4d:
        ac:1e:e3:e1:a9:cc:fe:77:6d:40:30:92:80:32:de:86:
        6d:16:ab:6e:67:b9:73:6c:4f:83:cb:56:20:9c:8c:47:
        e2:6c:49:83:ee:03:19:14:ff:bd:c5:e8:e8:0b:e2:66:
        75:b8:f2:8f:bc:8f:38:ff:16:2f:53:da:0b:94:ae:3a:
        74:6e:ca:26:27:94:eb:cf:5a:c4:fe:02:8e:46:5e:a0:
        b0:65:4b:bf:29:99:fa:7b:90:ea:4b:86:9f:30:e7:8f:
        ce:46:08:28:24:80:d5:00:5f:af:c7:86:70:41:1b:7f:
        29:46:65:3b:16:5f:59:05:0d:f4:0b:59:1a:45:83:dd:
        fb:d4:11:25:20:db:a8:9e:d4:32:d3:20:15:6a:af:27
    Fingerprint (SHA-256):
        AC:5D:67:81:3E:27:69:74:DF:62:A4:DF:DD:4D:9F:CA:2E:EE:3C:32:E9:07:F6:CA:75:64:A2:B2:7E:CB:21:74
    Fingerprint (SHA1):
        CA:51:A7:14:10:E7:66:37:3B:20:82:BB:16:17:5D:ED:A5:7E:09:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2702: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120256 (0x1e67d140)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:03:18 2017
            Not After : Tue May 10 12:03:18 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:ca:02:66:1a:dd:cb:7f:71:94:a7:f0:e2:ca:e7:b0:
                    9e:9b:7b:7d:f6:6d:5d:91:b6:67:fe:ff:70:11:a0:8f:
                    61:b9:2f:88:65:40:b1:6c:0d:cf:df:76:b9:86:5e:c7:
                    d4:cd:be:84:d7:33:d1:76:9a:28:97:2c:e4:db:aa:ce:
                    ce:55:1b:37:3f:7c:3e:e9:95:32:0b:98:1f:c2:e4:4c:
                    d5:50:2b:f2:1d:9a:59:18:e5:ec:12:3e:1a:c4:af:a8:
                    e7:9d:84:e1:74:d5:30:eb:a6:d0:53:88:6e:4a:61:dc:
                    16:d2:99:49:9d:73:7a:d8:9d:1c:8a:25:b2:1a:ad:06:
                    cb:16:6a:bc:fd:08:b9:eb:cc:f8:c1:dd:2e:e7:f5:7d:
                    90:d6:87:eb:62:34:1d:a3:ff:08:04:41:e6:60:44:ab:
                    90:69:74:40:59:3e:8c:5b:ee:5b:05:50:ff:8c:d9:ac:
                    54:23:55:03:3c:dc:a6:46:25:db:13:34:5b:16:82:02:
                    84:45:00:2d:12:8d:e0:da:b9:57:6d:de:15:8b:16:47:
                    8a:8e:fe:a5:17:8d:68:9f:70:f4:a6:cf:eb:d3:7b:c8:
                    8a:d1:2f:b0:af:e7:9b:ea:7c:f9:8b:f9:b7:25:02:11:
                    7e:ad:8c:dd:45:58:fa:90:fa:b3:4a:36:c8:35:fa:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:9b:eb:a4:75:18:c3:61:f0:b5:1d:68:21:46:95:db:
        93:29:fc:3f:18:e9:38:64:7c:44:ec:b3:ca:f5:00:74:
        33:4b:91:c9:c1:a7:df:d0:09:a6:b9:b3:0d:c1:30:99:
        e8:7d:d3:56:34:3a:6a:88:d7:0f:db:df:7f:8d:57:9a:
        1f:d7:42:75:24:f2:a1:74:19:5f:9a:d8:4c:19:f3:6e:
        c4:e5:57:47:f9:93:39:63:4f:4c:1d:e5:ba:76:16:17:
        49:99:2d:c0:42:8f:bf:0c:05:1f:70:15:87:47:5a:4d:
        ac:1e:e3:e1:a9:cc:fe:77:6d:40:30:92:80:32:de:86:
        6d:16:ab:6e:67:b9:73:6c:4f:83:cb:56:20:9c:8c:47:
        e2:6c:49:83:ee:03:19:14:ff:bd:c5:e8:e8:0b:e2:66:
        75:b8:f2:8f:bc:8f:38:ff:16:2f:53:da:0b:94:ae:3a:
        74:6e:ca:26:27:94:eb:cf:5a:c4:fe:02:8e:46:5e:a0:
        b0:65:4b:bf:29:99:fa:7b:90:ea:4b:86:9f:30:e7:8f:
        ce:46:08:28:24:80:d5:00:5f:af:c7:86:70:41:1b:7f:
        29:46:65:3b:16:5f:59:05:0d:f4:0b:59:1a:45:83:dd:
        fb:d4:11:25:20:db:a8:9e:d4:32:d3:20:15:6a:af:27
    Fingerprint (SHA-256):
        AC:5D:67:81:3E:27:69:74:DF:62:A4:DF:DD:4D:9F:CA:2E:EE:3C:32:E9:07:F6:CA:75:64:A2:B2:7E:CB:21:74
    Fingerprint (SHA1):
        CA:51:A7:14:10:E7:66:37:3B:20:82:BB:16:17:5D:ED:A5:7E:09:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2704: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120261 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2705: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2706: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2707: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120262 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2708: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2709: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2710: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120263 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2711: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2712: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2713: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120264 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2714: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2715: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2716: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120265 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2717: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2718: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2719: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120266 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2720: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2721: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2722: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120267 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2723: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2724: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2725: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120268 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2726: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2727: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2728: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120269 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2729: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2730: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2731: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2732: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510120270 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2733: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2734: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510120271 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2735: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2736: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510120272 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2737: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2738: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2739: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2740: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2741: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510120273 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2742: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2743: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510120274 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2744: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2745: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510120275 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2746: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2747: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2748: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2749: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2750: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510120276 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2751: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2752: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510120277 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2753: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2754: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510120278 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2755: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2756: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2757: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2758: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2759: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510120279 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2760: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510120280 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2762: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2763: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510120281 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2764: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2765: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2766: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2767: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2768: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510120282   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2769: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2770: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2771: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2772: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120283   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2773: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2774: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120261 (0x1e67d145)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:22 2017
            Not After : Tue May 10 12:03:22 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:fc:92:7d:38:f2:cc:60:74:58:3b:a4:ff:7e:f3:aa:
                    2c:10:66:31:0c:52:97:37:db:dc:68:73:b5:16:ca:45:
                    16:5f:9b:72:94:74:f7:96:85:1d:2a:2c:d8:97:95:63:
                    ef:f0:a7:40:a9:f8:cd:3f:e7:5f:0f:d0:d1:c1:6c:52:
                    fa:a7:a9:7d:1f:0e:92:7f:cc:dd:9d:37:0d:c9:db:9a:
                    15:fd:40:0c:d3:49:c7:66:a4:80:f0:e9:3f:3d:02:96:
                    3e:ea:be:84:20:cc:72:aa:fa:5a:75:4b:1b:ea:75:a7:
                    f6:e9:6e:66:ab:a7:7f:4a:4b:03:e4:fd:99:ac:09:2c:
                    3f:b3:56:87:b6:f3:fe:56:45:03:b7:9f:40:8e:5e:24:
                    49:19:19:f7:14:c0:be:15:69:1b:06:2b:66:1a:c5:84:
                    75:cc:40:ae:ef:16:4a:40:1c:ea:aa:38:e8:69:1a:b2:
                    cc:95:3d:53:c8:65:26:06:40:0c:e6:17:a0:f6:1f:5a:
                    37:f2:c1:c3:22:57:7a:20:af:6c:70:04:d1:9a:ca:e2:
                    dc:dc:5c:a4:55:cf:5d:b2:91:3c:f3:2b:1d:55:3e:d5:
                    3a:40:07:ca:a4:4f:7d:48:30:8c:ff:0b:d9:b5:9c:8a:
                    ea:5d:0c:12:7a:f9:49:59:22:31:20:7a:e5:4b:60:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:a3:34:f9:59:a3:13:2e:87:b9:8d:7d:b5:51:a5:bc:
        69:a6:1f:99:02:ef:ba:3d:88:9e:72:f2:db:fe:71:4c:
        d3:03:ea:0f:fd:96:97:c7:00:2d:46:de:d5:1e:ba:f1:
        e9:3e:39:82:bb:a5:d3:ed:1e:f9:ad:07:03:63:01:ab:
        af:27:e4:bf:ea:12:1d:dd:1d:0e:6f:09:0c:80:4e:6e:
        ef:37:ef:b4:8d:a5:ed:8f:fa:20:16:77:75:53:51:d7:
        9f:a4:1a:8e:4c:04:96:f7:52:10:2b:66:a4:e4:18:af:
        85:95:0e:05:2d:f9:75:77:7b:10:01:ce:d5:91:cf:13:
        28:e0:da:e7:07:55:9c:05:9b:d1:e7:35:42:62:1e:b2:
        c4:0b:b5:24:ec:f8:54:5e:93:4b:b8:d5:87:f3:4f:28:
        88:8e:f5:a1:fe:01:34:f6:53:39:d6:00:e9:53:4d:ff:
        34:87:8d:9f:cc:71:c9:cc:e4:9a:ce:d8:10:30:5f:1f:
        7e:c3:94:84:ec:3f:41:9c:4e:7e:45:1a:fd:07:4d:9c:
        0d:d6:37:72:28:c4:23:9b:bd:2b:6e:fa:89:99:5f:3a:
        70:58:04:a2:ce:74:ee:2c:d2:46:2d:ba:40:2e:24:ef:
        68:ed:9f:b1:8e:f3:e2:5a:ed:e9:86:37:9c:a4:68:21
    Fingerprint (SHA-256):
        E3:0D:98:64:26:92:52:B9:54:5A:3B:D8:81:EF:F7:DC:95:B2:41:D5:39:EB:06:9F:07:9D:4A:E7:BC:E8:88:19
    Fingerprint (SHA1):
        82:AD:7C:38:16:AE:F7:83:8B:82:C7:7D:31:35:26:AF:48:63:30:00
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2775: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120262 (0x1e67d146)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:03:22 2017
            Not After : Tue May 10 12:03:22 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:36:af:8e:8d:6c:fa:26:fd:41:9a:58:65:22:35:73:
                    91:60:0e:86:fa:ec:50:05:8a:2b:fe:f5:02:18:ac:a4:
                    80:cf:83:f2:70:79:75:98:d3:24:c2:13:00:23:06:20:
                    f7:56:20:8d:34:d6:c7:94:04:fc:41:da:32:3f:8a:7b:
                    bc:3a:c3:00:e6:2a:b8:f8:3e:3b:73:d2:a1:6a:17:54:
                    4e:80:22:af:7c:3c:68:04:43:dc:70:2f:7e:d5:52:74:
                    30:9b:e7:f3:cd:1c:45:83:12:5b:47:30:ad:d5:f4:40:
                    d0:1f:47:4d:c6:13:5c:a7:0b:2b:a5:93:44:f9:25:d1:
                    ae:be:81:18:24:d7:68:ea:92:2d:af:67:4a:40:f2:e8:
                    c1:f3:82:a8:06:1f:db:d3:6d:ea:0e:bf:0a:5f:e5:47:
                    5d:cd:5e:c2:08:19:cc:a7:69:c8:00:6f:0f:16:54:c5:
                    1b:03:e9:4b:76:da:85:a8:06:ca:83:2b:82:07:89:69:
                    65:2f:ef:f5:de:c3:94:21:b6:3d:64:18:0e:f5:6f:25:
                    e9:36:5f:31:fd:fc:73:d8:0d:9c:39:ce:66:d3:02:0a:
                    9d:2e:0b:47:bb:57:8e:18:c8:d2:4e:e9:27:15:dd:b6:
                    cd:ff:8c:59:aa:87:df:54:e4:6e:12:86:c8:9a:ba:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:75:6b:06:fc:4b:18:f4:20:51:ec:e8:ad:94:33:32:
        ab:fc:a1:66:48:7b:b0:3f:5d:ed:0a:d0:c8:80:ec:be:
        e0:6a:eb:e4:6b:a9:f6:f5:ca:6b:7c:88:0c:b1:ee:2d:
        89:b0:8f:70:f6:74:3c:5d:a0:eb:52:50:49:37:7d:f3:
        08:44:25:48:8b:9e:d0:3b:c3:1a:55:12:12:a0:40:de:
        91:b5:fa:a9:22:0e:26:ba:21:1c:41:af:8b:c6:41:bd:
        9d:6f:80:79:2e:c5:7f:65:3e:dc:73:de:68:15:e6:a9:
        78:68:62:15:d7:e7:b5:cf:81:c3:28:e2:73:50:40:61:
        46:4b:f4:48:de:39:7f:e6:4b:dc:b4:7b:89:69:a8:1c:
        7d:71:b8:72:5b:fa:a2:10:3d:32:88:b6:2b:af:99:08:
        7a:12:61:d5:18:0d:6e:d5:ce:0f:8e:d2:2b:bf:9b:a5:
        c0:54:fe:1b:70:7f:71:33:02:14:2a:42:bb:a0:5d:6a:
        da:2f:f7:f9:9b:2d:0e:96:0e:6d:56:a3:59:9d:06:aa:
        6e:7e:33:22:d0:85:f0:a3:20:41:8e:7e:8d:d7:24:ff:
        2e:d2:45:af:a4:ab:a9:2d:f8:b8:20:94:dd:de:83:12:
        6c:ca:2f:5f:a8:1f:4c:d9:d8:45:48:fe:f9:e6:f4:81
    Fingerprint (SHA-256):
        31:A2:48:57:FD:E0:7B:63:22:61:F4:B9:76:77:06:99:3F:22:27:BC:1A:29:A0:7D:CD:AF:20:9E:B0:B9:8F:50
    Fingerprint (SHA1):
        6F:94:89:26:97:60:C9:66:86:B2:C0:9E:1C:B8:65:70:71:46:8B:B7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120263 (0x1e67d147)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:03:23 2017
            Not After : Tue May 10 12:03:23 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:52:6b:ba:90:9a:c4:30:31:c0:8a:01:9b:5e:80:51:
                    3a:b9:90:91:97:67:f7:95:1f:78:f8:98:dd:0e:40:66:
                    9b:5e:5e:a4:be:1d:42:a5:ba:ad:d5:b9:12:99:39:59:
                    c7:b9:6f:4b:1d:3d:99:8c:64:5c:98:45:af:50:89:00:
                    3f:54:3b:11:c4:e9:fe:fe:ee:f8:82:b5:b5:43:2a:ff:
                    65:49:cc:e5:d4:45:81:38:f9:8f:ea:62:ce:27:49:f8:
                    4d:ea:3a:44:64:14:92:81:53:1b:63:8a:b8:50:08:53:
                    5b:2f:5e:d1:e2:e8:cf:0a:3e:09:e9:b5:b7:de:47:69:
                    34:bf:6d:7a:fe:3b:24:8f:9a:9b:a2:74:35:ae:53:a0:
                    29:52:87:db:15:78:8e:61:80:d9:c5:27:c3:4c:8e:32:
                    d7:97:c0:f0:a7:f5:0d:61:f5:3c:4b:4c:22:b1:15:1d:
                    b1:bf:dd:06:ff:c2:42:40:d2:00:dc:da:22:ec:51:6a:
                    c2:8f:bc:0d:b4:53:bc:45:76:a9:52:73:be:84:17:01:
                    94:a8:2d:e6:ba:9c:5a:4f:ef:7a:13:7a:e7:b8:fd:50:
                    49:9f:d3:4e:85:a2:9e:a1:60:25:76:06:4d:d3:d2:59:
                    27:29:70:82:68:63:88:d8:79:b7:f0:fc:8c:fc:6a:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:ad:b5:f8:09:ab:c9:e4:74:22:e9:0a:7b:39:7b:78:
        7b:66:48:c6:b8:bb:ac:32:dc:91:21:e0:93:38:66:6d:
        f1:13:a9:b5:ea:d8:9f:ca:14:0c:ea:f8:c3:61:d0:c2:
        03:3f:9a:d8:c0:be:6f:df:3c:5b:c8:60:47:4f:c4:75:
        39:27:de:c4:33:0d:5f:08:65:f2:a3:a2:18:83:5b:3d:
        5b:61:18:1d:ed:8e:5a:c6:12:f0:b1:de:d9:dd:0c:e5:
        08:d2:d5:bb:16:ce:7d:df:06:5e:0c:86:b6:0b:3a:0a:
        42:ee:17:cb:e4:f3:0a:c9:f8:f2:76:85:fd:24:9f:f1:
        0e:11:f3:01:c4:88:a4:92:58:44:41:82:c6:47:0f:cc:
        3d:5f:2a:b3:10:1f:41:67:3c:29:90:db:40:b7:2d:d1:
        d7:55:15:68:af:ce:d9:e8:fc:3a:0b:5c:91:84:45:5f:
        18:fe:82:ad:9d:bc:f8:b6:9f:cd:47:f7:93:9b:d9:6b:
        c4:77:41:4a:58:2e:95:96:19:f7:f1:e2:1d:b2:07:68:
        95:2d:e0:a8:2b:ed:80:cc:cc:ba:7b:9b:c8:88:d7:e7:
        4a:7b:7a:a2:8d:a8:41:7e:b9:a1:39:38:cb:e2:57:cc:
        06:76:d8:37:72:e0:19:f5:07:78:63:bc:ce:32:5c:5c
    Fingerprint (SHA-256):
        BB:92:19:18:DB:23:05:45:C4:0F:8A:33:C8:15:57:03:81:0E:5E:4E:30:98:82:E6:0B:4F:16:1C:89:2D:01:F1
    Fingerprint (SHA1):
        7C:E7:C3:16:7A:CB:5C:CA:4B:38:5A:28:B6:B1:D5:8A:5F:30:7F:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2777: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120264 (0x1e67d148)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:03:24 2017
            Not After : Tue May 10 12:03:24 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:ad:38:8d:d6:be:52:86:25:bc:3a:c2:be:86:68:ca:
                    81:d8:cf:6c:a1:46:72:11:24:3e:97:4c:9f:31:2e:fe:
                    59:31:1e:b9:d7:ec:f1:07:5f:d3:90:f9:75:06:1b:e0:
                    6d:ee:bd:f8:8f:6a:71:02:0c:10:8c:80:21:0b:f7:bd:
                    fd:7f:eb:9e:1b:50:65:72:41:c2:08:f7:8c:8a:41:25:
                    db:57:4b:c2:4e:89:94:6c:dc:e8:b3:3f:43:4d:e8:a1:
                    25:57:01:d3:48:2a:7c:2a:08:98:ae:5b:2c:07:67:36:
                    ab:c6:92:98:17:d9:32:8b:6a:08:d1:70:1c:7a:c4:00:
                    1f:c1:41:57:6c:d1:d0:cd:18:6e:2c:fa:56:5d:8a:ea:
                    3d:b0:58:80:f1:a0:42:4e:2d:4b:70:77:52:2d:fb:2f:
                    f7:4a:80:77:a4:28:2b:71:7e:41:40:1f:cd:1a:41:f7:
                    a8:d1:63:40:4c:a8:3d:a1:6f:ee:8b:16:6c:9b:96:85:
                    ef:d2:69:85:55:aa:29:16:21:aa:0a:28:7f:92:a6:d8:
                    38:90:b3:2e:d3:09:8a:57:eb:46:0a:c3:7a:5c:c7:d5:
                    3c:56:e6:12:2e:6c:1c:83:63:c2:f0:1d:01:9e:33:13:
                    d1:10:88:62:ee:90:ee:82:64:81:9c:20:ca:92:77:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:92:fe:76:c0:cb:e9:bc:03:1c:3e:e8:fe:ae:49:47:
        25:d7:54:da:7d:5c:40:3e:5a:10:c8:97:12:07:a3:3b:
        90:11:ea:ab:71:41:49:e7:9f:bb:e8:fe:27:22:8a:d0:
        93:64:f4:09:e7:ee:46:4a:c0:86:bd:7a:ef:87:e2:42:
        a5:47:b7:32:e3:7f:cb:a9:f2:6e:0c:a3:1a:c1:97:6b:
        c5:eb:0f:7a:92:64:7b:12:61:22:fd:d9:e3:11:35:ee:
        9b:07:52:72:97:99:c4:b4:d3:a1:8b:fd:dc:38:5d:7d:
        5e:4d:66:a7:3d:d4:f3:81:28:c8:ca:45:10:de:cc:62:
        5a:c7:7b:a0:7a:01:a3:21:fe:b7:e8:55:42:4b:8b:ec:
        4e:18:f8:47:02:f0:9d:1e:f2:3b:54:90:76:66:a2:19:
        cb:49:8f:b4:3b:c5:0f:f3:72:c7:37:64:2a:7c:40:de:
        c5:d1:6d:76:ef:6c:9a:1d:36:34:ce:9c:2f:44:6a:db:
        42:be:02:03:ed:2e:9c:a1:81:7c:99:de:85:ea:dd:d0:
        1f:6d:01:00:bc:5b:fa:99:b3:ec:fa:70:fa:b2:d9:ff:
        f2:b0:38:e6:55:09:17:50:3d:81:3f:c1:5e:57:04:e7:
        19:11:52:12:9a:5e:c7:22:dd:54:b7:da:da:37:cb:69
    Fingerprint (SHA-256):
        AC:AF:5C:2B:1E:6E:F1:5E:53:3F:9A:A7:34:6F:F8:40:61:A0:77:C7:CD:BB:46:35:DB:A8:34:DF:46:D7:FB:4D
    Fingerprint (SHA1):
        4B:24:C0:42:B0:23:4C:B2:1E:BC:5C:FC:AD:B0:42:A0:C1:C9:25:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120265 (0x1e67d149)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:03:25 2017
            Not After : Tue May 10 12:03:25 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:d4:c0:cd:1f:b3:02:3b:04:9f:18:be:ba:4c:f6:80:
                    a9:69:de:02:59:ca:a0:b0:30:4d:00:a7:cc:8a:79:1b:
                    e6:9c:dc:ea:27:ae:ba:39:49:8d:3e:da:6d:05:17:ab:
                    5b:13:b6:d3:66:ab:0a:ea:ab:ae:04:65:67:07:ae:41:
                    cb:d8:c2:0f:cb:a5:fa:f8:d8:f9:0b:b0:45:b0:e4:96:
                    ac:ba:a8:93:ac:cb:ad:24:8e:a8:71:f0:78:e2:30:f5:
                    bc:b3:c5:25:43:11:ef:4a:15:12:fd:a5:bb:11:bc:d4:
                    fe:e7:a5:73:8f:12:73:a0:75:7b:0e:dd:b0:55:4e:68:
                    f4:7f:fc:84:56:e4:4b:46:08:ad:26:5a:c0:99:1f:f2:
                    43:e1:7d:36:fa:04:e9:de:f2:f6:e9:b2:06:f7:66:8e:
                    ab:e8:5e:27:68:91:bd:32:bc:49:57:ad:4c:96:87:1f:
                    ed:6b:e6:68:1b:98:b2:fe:b7:69:64:de:5f:df:df:bc:
                    50:71:56:27:cd:e7:ba:7d:65:f7:1b:5d:01:e0:7f:d3:
                    e7:59:62:1b:56:33:00:f1:49:f1:05:31:2e:43:2f:46:
                    d8:7e:a7:e8:2a:78:ec:c9:42:d3:f7:9b:75:08:df:ce:
                    43:4e:e3:11:4f:9d:17:7f:85:af:10:8c:7f:c6:f5:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:d6:4f:36:5f:e7:3b:06:aa:1a:52:31:ac:f5:cd:22:
        d2:b8:0c:19:35:28:7c:f9:d4:72:0e:34:3c:04:b3:79:
        f3:74:a4:16:7a:c2:87:a2:c9:b1:e0:9a:3a:b9:1a:b1:
        ca:56:ac:d5:c6:0d:45:8e:64:2b:d0:2d:28:6d:6d:ee:
        94:50:b5:28:4e:7d:69:19:90:8c:12:8b:43:49:2d:b3:
        37:a3:3e:37:35:a5:8e:3f:b7:61:eb:e6:3f:d1:d0:aa:
        68:14:1b:65:45:9a:3a:4f:03:f6:8b:17:5e:ec:da:bc:
        9a:9c:a9:c9:ed:76:4d:38:c5:52:47:56:8a:af:ac:bb:
        f3:9c:00:df:ba:dc:79:c4:85:ba:e2:1b:8d:1d:c1:a9:
        1c:f6:12:fc:19:88:f2:09:ba:6b:2a:a7:81:39:8b:bb:
        9d:08:32:56:ca:43:cf:51:66:0e:3b:35:a5:ab:1e:ed:
        9d:89:4f:4f:1a:ef:93:b3:2c:40:df:32:9e:e8:13:09:
        f0:d5:69:44:14:a6:07:31:e7:1a:a3:1e:d9:1e:19:4e:
        a4:ac:0b:d4:d7:e5:ec:52:7d:43:5d:e2:09:5a:dc:49:
        3b:8a:bb:c3:0f:7b:16:ae:e8:f8:62:b3:91:b1:69:6e:
        44:53:2d:57:04:bf:e2:1a:d0:0e:ec:6a:7c:0c:5d:1e
    Fingerprint (SHA-256):
        11:1D:94:D9:25:FD:33:7E:B5:DF:CE:67:DD:79:7A:0E:EC:3A:B9:D3:CF:C6:72:B5:3E:FC:A1:AE:03:EE:8A:BC
    Fingerprint (SHA1):
        67:A8:45:2F:8F:FA:D0:64:32:58:5A:E5:4C:BA:5C:52:51:84:03:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120266 (0x1e67d14a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:03:26 2017
            Not After : Tue May 10 12:03:26 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:21:93:5a:64:ce:76:5e:cf:bc:f8:21:d1:11:36:11:
                    1c:6e:c5:7f:e5:f4:68:60:d8:d9:5f:91:6e:2b:b1:12:
                    81:c2:74:8a:a6:9b:ee:26:21:4c:92:dd:13:b3:ff:e7:
                    72:00:bd:64:4e:5c:6c:71:83:6f:0c:dc:43:93:52:18:
                    f9:2b:c9:42:d7:5c:f4:ed:f7:a5:a6:a9:1d:cf:19:af:
                    c4:30:46:6b:71:dd:57:39:9d:10:50:98:59:37:e9:ed:
                    5a:52:fc:42:4f:50:fd:18:b5:b7:a1:6d:10:d6:63:2f:
                    61:d2:7c:02:6f:21:a5:a6:0e:a6:b0:5d:6e:d6:60:f5:
                    60:8e:f7:b0:7e:2e:e4:85:66:69:45:d6:2d:1b:16:ce:
                    61:11:97:d6:6e:d7:3a:47:2d:f7:ad:87:59:16:3c:bd:
                    14:49:a5:20:11:9b:a9:b5:65:9a:c3:a0:27:c9:55:e7:
                    d9:b2:1b:d0:72:fe:60:c4:7a:1a:59:53:52:3a:0b:53:
                    ff:7c:59:dd:59:03:b1:52:07:23:74:5c:a5:8a:c8:4b:
                    14:7f:0c:93:04:14:d2:41:f3:07:29:f2:3f:d3:47:80:
                    7c:33:f0:6a:75:17:d8:88:b8:d4:74:a6:e5:67:f7:b7:
                    dc:e3:5e:8d:ae:90:55:21:62:d5:63:6d:b9:6d:fe:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:5a:71:71:e6:ff:35:86:33:45:15:a3:3e:a7:12:a4:
        d1:7d:0a:1c:7c:79:74:84:32:6b:00:d6:28:a6:11:23:
        43:b0:35:e3:72:5d:41:33:57:7c:8a:50:a4:aa:76:b4:
        4b:3e:2c:9c:0d:10:14:dd:5e:61:6a:ec:cd:35:02:55:
        26:43:5d:76:59:48:04:b5:38:59:87:2c:6e:97:63:6c:
        5f:5a:1b:cc:e8:d8:7d:74:56:06:8b:04:46:c1:7b:a5:
        fc:11:3a:21:6e:18:9b:3d:d0:33:2f:6f:26:af:56:3b:
        1a:a1:ac:a5:bf:af:5c:71:01:75:bf:9b:8d:99:c3:c4:
        1a:a7:33:59:43:0c:fd:30:9f:f6:0e:dc:38:9d:d7:fa:
        01:5f:66:07:32:5b:74:a7:1d:66:fc:93:62:8e:cd:5d:
        ad:bb:fd:61:05:b7:a4:3f:66:d2:8a:9e:f3:2f:e7:e8:
        7c:06:97:ee:39:76:b1:a9:95:d4:e6:49:56:b1:c1:5c:
        c2:d0:de:80:98:31:cb:29:e7:09:32:87:83:7b:5c:25:
        a0:01:fa:1f:b9:62:dc:81:1a:65:fa:97:59:ec:9e:2a:
        69:a4:e6:48:95:bb:5c:05:50:20:55:f2:92:c3:b5:bf:
        ca:82:fb:2b:80:34:56:2c:31:9b:d4:c2:ce:64:20:e5
    Fingerprint (SHA-256):
        E1:DF:97:9D:1B:65:47:9D:FA:07:33:85:0A:DF:67:1F:00:02:83:04:DD:1E:02:04:BB:6F:35:CE:88:B1:A0:43
    Fingerprint (SHA1):
        A9:F4:FB:D1:D7:E6:31:BC:E5:92:94:61:26:35:F5:2D:58:EC:EF:49
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120267 (0x1e67d14b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:03:26 2017
            Not After : Tue May 10 12:03:26 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:58:c8:5f:60:d2:36:36:80:ea:b1:83:4c:63:72:67:
                    d5:04:b1:ff:06:24:40:2c:82:7e:6e:8d:05:a4:11:09:
                    f9:71:db:32:ff:ef:51:c1:98:d9:02:b8:3c:92:ec:bb:
                    74:21:13:71:37:b3:e9:16:44:af:44:7f:a9:db:7e:31:
                    1f:cc:9d:1d:2d:f1:c6:71:97:a7:d1:e9:67:ad:60:51:
                    52:9e:e1:61:d7:8a:25:16:c6:99:8a:9b:5d:39:6e:9e:
                    f6:53:d7:a3:df:c5:73:fd:1c:51:a7:b2:07:cd:df:45:
                    55:2c:bb:64:d7:f7:a2:5e:cd:21:0a:d1:60:56:c9:a9:
                    9f:c1:03:39:c4:62:56:67:77:0e:0e:d0:a5:e2:1f:a0:
                    d7:f7:86:c9:2a:f9:71:a3:e4:be:d9:2a:41:8e:56:9d:
                    04:f4:fb:76:4f:a7:7f:17:e4:b8:de:b7:54:d8:19:f7:
                    9b:23:e1:e8:b4:14:5d:18:89:8f:6c:00:41:89:dd:b9:
                    fa:fd:99:fb:9c:36:63:2e:4d:2e:35:ab:3c:b3:6a:b3:
                    ef:cb:f5:20:17:d7:ed:86:6d:80:73:f7:80:0e:38:28:
                    33:9a:5f:bc:c5:1f:86:86:3e:72:45:65:74:d6:93:92:
                    fb:91:ce:ec:5f:d4:8e:73:d1:ac:27:ae:7b:9a:88:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:1f:d4:9e:e5:78:12:88:f6:e7:16:ff:80:ff:40:27:
        23:51:1a:d6:99:0b:35:63:ba:3b:92:51:02:08:f3:dd:
        6b:91:e3:22:53:8c:21:87:82:5c:34:2a:9c:ba:9e:55:
        b6:8b:9f:d7:d3:9a:e5:35:1a:65:06:9b:e6:af:57:01:
        41:da:29:91:e1:20:e8:fe:b5:42:35:80:5f:0f:d8:37:
        70:9c:da:82:d9:b9:1e:28:47:c3:42:af:2b:68:ac:c6:
        e6:79:69:ea:bd:34:31:6f:a8:c2:63:f9:e0:30:88:b6:
        96:e6:68:33:10:a9:01:c4:ac:1e:2a:61:8a:56:5f:e9:
        49:da:4f:55:d7:80:34:36:32:eb:10:b2:35:a7:a4:68:
        a3:b8:d1:b5:12:0f:3a:87:ad:25:c1:79:48:71:73:49:
        60:1c:d5:2b:74:5d:92:2e:04:14:b2:51:87:fa:13:da:
        72:08:31:b6:09:cb:77:13:e1:9b:f6:82:2e:e5:41:d6:
        e2:6e:ed:89:4e:f1:53:c2:57:8d:09:21:8a:18:0d:46:
        09:74:2e:05:11:04:79:b8:c5:16:d0:90:6e:2b:90:d8:
        39:37:7e:eb:37:ce:65:99:6b:44:ed:16:32:bd:6f:b9:
        1f:85:16:a6:69:07:a3:43:2b:21:80:cb:fa:a9:c5:39
    Fingerprint (SHA-256):
        EE:58:7B:8B:8D:D6:0F:0B:71:F5:B0:69:94:E3:CC:01:B2:7C:02:8D:E3:6C:96:D2:69:4C:98:61:19:46:1D:4C
    Fingerprint (SHA1):
        CA:03:94:EB:27:9D:8F:79:5C:31:F8:02:FE:E5:67:41:49:A8:67:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120268 (0x1e67d14c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:03:28 2017
            Not After : Tue May 10 12:03:28 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:95:74:2f:f6:ba:2f:9b:67:9b:a2:aa:33:f9:1b:9e:
                    bb:43:63:bc:af:e8:60:d8:61:7f:4e:43:b9:e2:89:cb:
                    b5:d3:83:93:1a:3c:69:c6:91:49:95:b2:fe:31:ca:8a:
                    8c:7f:f2:61:da:03:40:a3:a0:c1:e9:f4:7e:f3:5a:74:
                    ba:73:f4:d6:2a:2c:df:94:26:06:7d:b6:a3:c6:f8:05:
                    bd:f1:8c:58:a7:dd:4a:ec:c0:07:e7:76:2b:f4:d0:4c:
                    58:9d:bf:df:b4:59:35:2c:7c:53:73:4d:65:9b:21:dd:
                    ae:33:63:45:0d:07:12:42:d4:78:c3:f4:8e:32:2d:2f:
                    14:5b:98:2c:99:02:1b:67:6a:94:0f:2d:5f:bf:90:11:
                    a9:0d:33:1b:e7:b8:7f:94:24:26:75:74:dc:70:fa:0e:
                    ea:b9:11:63:4a:98:09:fa:a0:f9:72:cb:1a:34:f6:51:
                    4d:bd:3e:7a:5a:56:08:50:85:41:6b:a9:c2:4b:da:61:
                    24:c3:f4:34:be:23:a7:94:d9:cf:6e:9b:5f:b8:e9:86:
                    7a:9e:9d:b4:0c:da:50:63:f3:79:9f:1f:8c:b8:44:7b:
                    13:82:8b:52:9b:fb:f3:5b:cf:c0:2b:c4:67:47:c8:89:
                    d9:f4:24:cb:1d:22:3f:92:46:7e:e3:f3:66:5a:68:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:72:a6:91:40:d2:c8:49:6b:89:ee:c0:5f:f9:e8:b2:
        83:82:f0:df:63:60:63:ca:6e:b8:cf:c1:ce:1b:90:5c:
        db:c4:41:ca:1f:61:14:ef:09:80:ff:0e:6c:35:38:8d:
        a7:70:25:52:48:18:e7:f4:bc:bf:3f:8c:87:dd:d9:15:
        81:63:ca:76:f4:4c:c1:aa:49:7b:96:6a:ed:dd:37:2b:
        92:a3:82:87:a0:1b:ea:66:76:c0:33:84:fd:e1:04:25:
        68:30:11:c5:7b:02:4c:c4:96:91:98:79:5e:1d:65:81:
        9a:de:60:58:8a:2b:2c:23:f9:17:32:56:0e:aa:37:26:
        ad:bf:d0:e8:6b:4b:a1:c2:46:10:5e:3e:30:23:45:a5:
        50:fa:d8:21:5f:e2:cf:55:43:91:aa:ec:4c:19:93:a3:
        47:e5:13:31:4f:c7:43:78:f3:7c:f3:f9:0d:94:f8:37:
        7c:04:88:c7:a8:3a:f5:d0:ae:4d:5e:96:2e:d9:8a:2b:
        39:cd:53:2e:26:b4:89:b2:69:d9:55:70:2f:2a:57:e1:
        5d:a7:7b:64:98:eb:e9:b7:a8:68:a1:8e:e2:62:16:03:
        99:92:35:b1:3f:53:5f:85:43:9d:6c:81:66:69:54:ae:
        59:af:de:ea:f3:48:ad:74:13:a3:48:94:0d:fc:52:f9
    Fingerprint (SHA-256):
        40:0D:DA:EB:F5:D1:E2:97:7A:32:6A:C7:4B:AC:A1:C1:38:03:30:15:31:90:37:A8:43:03:26:59:A0:F9:B6:27
    Fingerprint (SHA1):
        58:6E:92:EF:59:1D:FD:34:2F:2E:20:95:4D:26:EF:87:81:24:23:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120269 (0x1e67d14d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:03:28 2017
            Not After : Tue May 10 12:03:28 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:d7:be:cb:34:cd:75:fd:8a:61:6d:ce:26:9f:88:3b:
                    87:8a:69:7f:b7:3b:10:68:70:c4:be:5a:b3:c2:dc:e0:
                    f7:ae:e9:aa:ef:4f:21:4e:52:f2:03:3e:0d:04:8a:c8:
                    0d:65:32:60:7b:58:41:a0:00:c4:79:e1:e2:60:be:d8:
                    b7:b8:2a:26:03:cf:5f:24:13:83:7e:45:f1:9e:74:cb:
                    a4:1b:0d:f5:c8:af:08:e6:51:aa:70:66:5f:94:c1:f0:
                    61:8e:8f:e7:51:e1:a3:95:68:f0:08:40:5d:c1:b3:d9:
                    0c:a5:9b:55:2a:e4:dc:df:0a:0a:6a:8c:57:d3:e3:8d:
                    f4:33:b6:3d:18:76:ff:14:29:dd:89:62:c4:25:55:8f:
                    6b:45:88:92:28:2b:fd:52:4f:74:57:2a:75:63:84:61:
                    58:d5:f0:f3:45:e1:ff:14:59:75:2c:e6:60:64:ae:1c:
                    c7:fc:51:75:fe:b9:b4:b9:93:e6:85:c8:65:f6:b2:e2:
                    c6:23:06:6c:be:8a:f8:41:0b:ed:c8:46:90:10:a2:51:
                    ca:1b:3e:2b:76:12:5f:6a:bb:a3:e1:6d:f7:4c:b1:7e:
                    08:66:78:ec:67:54:42:70:c4:0b:6c:ac:64:9c:3f:6b:
                    22:be:60:1d:82:56:3d:ac:d5:f3:fd:b6:77:72:af:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:5a:16:da:b4:f8:57:43:f5:9b:7a:02:3f:ee:6e:23:
        cc:de:5d:c2:36:0b:6e:c0:2b:52:47:0d:aa:9e:50:4f:
        a2:49:a8:4a:88:a4:82:a6:44:7b:c3:54:eb:c5:56:bd:
        55:9b:b6:67:0a:a0:dc:24:7d:1c:89:c9:ad:1d:cd:69:
        c8:1a:79:57:1a:78:40:63:1d:16:b4:37:3e:fe:f5:4c:
        0c:fd:84:b2:49:b0:d7:04:b9:7b:fa:62:ad:5d:f4:85:
        11:e1:c8:91:aa:bd:a5:82:e9:7b:7a:5a:ee:6e:cf:65:
        8e:07:87:b8:6a:36:60:8d:f6:9e:6d:0e:22:b2:80:61:
        a5:d9:34:f6:ac:bd:31:22:ee:6e:dd:cd:f3:8d:3a:6a:
        64:0c:85:8a:85:19:f7:50:8f:9e:f9:50:64:c4:f8:49:
        5d:27:8a:e5:a1:36:47:a0:f8:0a:ca:c0:2b:f6:c6:ed:
        a2:f9:25:b3:e4:9c:ed:b3:a6:3b:20:23:d6:b8:7f:43:
        1d:bd:8f:4d:67:5f:fe:c3:bb:a6:78:62:56:01:3a:3f:
        93:d7:df:19:2d:9b:e8:af:2d:2c:75:af:56:57:12:c1:
        17:0a:d9:ba:5a:4b:e4:2f:0a:a2:c2:1c:37:a3:50:2c:
        d5:76:9d:4b:43:b6:c0:4b:dc:95:bb:87:97:91:93:23
    Fingerprint (SHA-256):
        E5:98:CC:78:3F:EF:8D:C8:7D:39:EE:3C:2C:23:A8:D7:F3:FC:7D:0D:A9:D1:BE:33:9C:E2:01:DA:21:72:A4:6A
    Fingerprint (SHA1):
        2C:80:4C:7D:33:57:40:88:2A:79:A9:32:0B:00:DA:DB:D4:EF:AF:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2784: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120284 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2786: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120285   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120286   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2793: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2795: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2796: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510120287   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2799: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120284 (0x1e67d15c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:35 2017
            Not After : Tue May 10 12:03:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:62:3d:2c:10:e3:a6:ef:f5:4c:1b:b8:8f:c3:dc:94:
                    55:d7:8b:43:95:d5:e1:e7:c6:8d:be:1c:a7:94:a6:1e:
                    e4:c3:1d:02:cb:ee:6d:28:0b:fa:c6:b3:9c:5d:dd:c1:
                    97:4a:1b:9c:b9:22:f6:b7:49:7d:a4:29:05:2c:c2:2a:
                    da:04:6a:7e:48:7d:e8:30:07:8d:d5:0c:d0:60:92:a9:
                    e8:63:0f:db:a5:b4:b8:de:b1:3b:4c:93:43:76:5d:c9:
                    3e:68:8c:43:82:16:6c:31:60:a1:31:4d:5e:8e:b8:1a:
                    75:3b:b6:c3:8e:51:96:5a:da:8f:9c:61:92:22:de:18:
                    76:89:63:a1:cd:dd:da:5e:bf:4d:ad:b1:55:08:d3:d6:
                    a9:cb:4c:85:6d:10:67:4c:14:2d:ee:b3:1b:34:9f:32:
                    bd:91:e4:82:15:61:e3:6c:a2:a5:e5:3f:f7:9c:a8:08:
                    dd:30:56:92:d3:c5:5c:5e:b6:f1:c4:17:6b:b5:f0:2c:
                    3d:d3:41:d0:a9:71:c9:b2:c4:8b:95:d3:31:cd:40:7d:
                    75:6d:b0:5e:09:fa:84:0c:9e:22:b7:5e:38:a0:ff:c6:
                    29:e1:5e:97:84:8e:28:39:b1:8c:d9:83:7c:1a:57:78:
                    43:e5:44:e9:9a:96:25:f9:e8:03:8f:fb:1f:da:1e:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:ad:31:80:ad:79:40:b5:a0:6a:a1:5c:c5:2c:7f:fe:
        6e:85:92:29:5b:c1:ff:37:4d:d6:ff:85:3d:40:c5:d6:
        97:48:c3:20:6b:eb:07:3d:ec:da:3c:86:05:20:8f:f2:
        2d:a6:64:e3:0e:0a:7c:f0:4c:cc:d2:30:79:5f:09:cc:
        d1:74:e9:26:32:33:00:c4:26:7c:a1:a0:23:1d:5a:37:
        93:47:b2:80:ce:2a:86:fb:ab:91:7b:14:26:3f:66:5c:
        61:50:21:a7:b2:ce:ae:f5:1f:1f:90:b7:37:a2:a3:22:
        12:8f:a3:6b:5e:8d:3d:df:18:a9:50:9c:36:5f:6c:28:
        75:6c:ad:96:3c:19:74:1f:84:ab:69:61:c0:c6:84:88:
        31:c9:97:24:a0:f6:33:6d:f8:19:9e:10:3c:00:da:7e:
        cf:a1:3c:3f:d6:ea:8a:7f:ed:c7:a2:e7:57:22:8d:a3:
        33:1e:cf:fb:ac:98:16:e7:52:cc:1b:1a:b7:bb:cd:37:
        38:c6:9c:80:1c:d3:79:8d:00:be:8a:7f:e4:c9:97:b4:
        39:ea:e5:7a:c9:5a:a2:66:13:00:37:68:3a:77:cb:30:
        f9:13:ac:98:d8:33:7f:79:53:0f:f0:01:16:c5:2f:58:
        88:d9:36:a8:46:5e:3d:af:98:d2:6a:3b:36:32:00:b0
    Fingerprint (SHA-256):
        8E:B3:21:32:D3:00:A7:7E:C2:CA:0C:C2:4F:B9:FB:30:CD:87:BD:00:98:15:CF:DC:64:B9:AF:7F:5C:4A:AD:EA
    Fingerprint (SHA1):
        44:02:67:44:E1:6D:75:D8:B5:A7:C3:FE:2D:84:04:8D:7D:6E:B2:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2800: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2801: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120285 (0x1e67d15d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:35 2017
            Not After : Tue May 10 12:03:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:f6:bd:3b:73:16:f7:6a:7a:5d:d0:4d:2b:64:0a:1f:
                    d9:67:cd:06:2e:f0:00:d1:48:11:de:9c:e4:18:65:b7:
                    d1:f6:ec:0d:5e:fa:c3:d7:72:65:44:28:f0:23:bf:9a:
                    fb:d7:43:eb:fa:81:73:8b:89:6e:6a:5d:03:32:4e:75:
                    8e:81:23:ac:8a:e9:df:52:10:2e:75:8f:3e:ab:d0:0b:
                    28:15:5a:83:a8:9f:54:6c:34:d7:c8:53:10:60:55:f8:
                    a3:ed:b3:6b:ee:64:df:2b:30:0f:0e:82:a3:cd:47:30:
                    d1:8e:fb:68:ab:8b:74:84:4d:59:8e:63:ca:f6:8e:97:
                    75:1e:ef:84:b1:3b:42:0c:4b:72:c7:8b:62:18:86:6b:
                    63:f0:73:1e:6b:f1:75:4f:92:78:00:14:ed:47:ec:17:
                    03:28:99:fc:83:c5:4a:dd:9d:0f:64:ac:9f:b7:89:e7:
                    4b:22:a1:19:57:3a:11:95:12:2f:87:95:82:32:db:50:
                    34:85:d0:38:fc:67:b3:28:88:38:6b:2a:9e:9a:79:70:
                    32:58:59:bb:4a:2c:12:11:90:96:e6:16:7d:d5:38:93:
                    9b:6b:91:7a:3f:e0:97:0b:2b:b7:3c:7e:6f:77:20:66:
                    b7:22:17:4d:c6:0c:6a:80:76:92:c5:e8:2d:4c:82:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:10:30:78:d0:07:e4:93:9a:13:03:fd:f3:93:e2:5d:
        52:2c:25:da:1b:53:ce:72:fc:29:d8:6b:bb:55:73:ef:
        e5:97:d6:a1:a1:f1:cf:13:66:5c:0a:f1:3d:0e:2a:72:
        c2:d2:2b:85:36:24:b6:c8:d5:5c:bb:93:2b:d0:c1:98:
        1a:cd:ad:60:a9:43:d1:96:9e:ea:dd:c1:2c:b5:10:1c:
        64:1c:db:25:82:2e:a1:2b:de:c2:00:ef:d7:9a:e8:49:
        67:27:39:16:f1:2c:fb:c7:44:05:c9:90:eb:50:f6:57:
        64:c2:61:82:c6:1b:e5:36:b6:b3:38:b8:9f:10:03:29:
        b6:1a:2c:52:7d:02:90:5e:bb:f2:fe:f5:d6:bc:c7:04:
        c8:11:c6:30:20:c5:26:08:22:46:4d:31:6f:5c:f1:cd:
        38:00:78:4c:35:d9:58:6e:9d:76:95:16:1d:3d:38:1e:
        82:94:c1:b4:0f:34:a0:a8:a2:ca:16:e2:64:83:be:9c:
        ac:c8:a0:96:98:62:5d:25:e6:44:d7:95:69:50:59:c4:
        cd:a9:b6:bc:18:8c:68:d4:56:37:70:72:a4:20:4e:9b:
        3b:5b:8c:f5:72:f2:5a:2d:81:fb:d1:26:9e:a4:c7:b6:
        30:d8:5f:eb:80:5c:d0:8d:98:b8:3c:55:e7:f3:9a:d6
    Fingerprint (SHA-256):
        BC:EC:C9:B1:CC:CE:0E:6B:92:A6:EF:BA:A3:10:B1:23:F5:3F:94:11:0C:52:51:E4:15:D1:23:98:A6:A2:F1:F2
    Fingerprint (SHA1):
        44:63:C3:6B:8F:16:1F:1E:47:C0:FD:73:AB:90:51:83:0E:B1:E4:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2802: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2803: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120286 (0x1e67d15e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:36 2017
            Not After : Tue May 10 12:03:36 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:bd:1f:1b:00:25:97:d9:db:14:ee:dd:5c:15:6c:72:
                    52:b1:ba:34:de:8e:ce:3c:10:c9:33:49:cc:38:a4:e2:
                    2d:92:af:b8:37:93:76:08:70:ec:2d:21:8a:b4:e4:32:
                    b0:eb:3a:f9:75:2a:d2:6c:17:de:3e:60:a3:6b:63:9e:
                    da:34:1b:ed:51:c2:ac:15:9d:36:09:35:92:74:19:ae:
                    bd:fc:e0:95:38:36:0d:68:47:20:67:fe:21:ad:6c:ba:
                    dc:5e:cb:c7:45:7b:04:d4:38:28:9c:13:bb:ae:6f:f7:
                    9f:28:18:c1:31:fb:53:ce:c6:cf:0a:a0:a4:42:48:a2:
                    97:e6:f5:cc:ef:80:b3:0f:af:b5:d2:43:66:c9:77:0e:
                    eb:d3:46:62:b0:f6:ce:ea:c8:39:16:a6:ff:62:af:a5:
                    39:f8:a2:1e:e6:17:39:42:b1:61:7f:6f:a5:7b:e6:7e:
                    0b:89:75:47:bc:ef:e1:a8:9f:e1:53:09:b2:51:cf:f9:
                    8a:0b:4f:c1:3f:aa:ce:5f:cf:fb:32:42:c4:7f:5b:47:
                    31:3b:8f:14:bc:a9:8a:7e:da:d6:7d:ce:ee:33:01:dc:
                    2a:d7:6d:da:68:69:6b:03:00:21:5c:aa:d5:90:4b:78:
                    71:cf:cf:38:21:d0:53:b9:ec:70:e5:c5:3b:ad:5b:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:ab:40:e9:a3:ec:64:74:c4:43:20:3a:1e:81:33:65:
        6d:ad:69:7f:a7:20:8b:b3:cb:f9:c6:27:77:ab:3b:4b:
        52:c9:4b:bc:1b:da:f9:13:51:59:39:44:57:e5:93:61:
        03:d6:b0:03:4f:ab:f2:82:0a:d3:78:42:df:a8:b6:00:
        5d:93:f1:b2:05:2b:ee:32:4f:a8:21:13:1f:ca:0e:dd:
        f7:a1:11:db:56:6c:f6:a6:d8:09:3e:51:ab:96:46:00:
        98:3c:1a:fa:cb:e6:35:46:4b:43:c4:3d:10:76:5e:83:
        a3:f9:ba:49:8d:29:90:64:80:0d:65:b5:88:ad:4f:45:
        a6:de:7c:78:29:12:73:ad:cf:95:45:9d:dc:f1:69:1c:
        e5:b1:53:15:2e:a8:27:c1:ac:24:93:d1:49:4a:e1:33:
        78:7c:aa:28:fb:10:aa:ff:6c:15:76:00:b7:8e:36:99:
        4f:31:b1:41:88:32:2f:e4:2c:c1:d8:7d:bb:59:95:e3:
        ef:d7:a2:c5:8d:14:cd:a9:e7:2d:fd:e3:e3:25:40:4e:
        02:d4:55:e1:ee:30:87:24:05:39:d9:aa:6e:91:03:5a:
        2d:72:63:95:b3:0b:6b:f4:47:13:5c:e6:42:49:ee:99:
        d9:91:28:a3:9e:df:8e:fa:8c:f1:25:14:42:c9:cf:cc
    Fingerprint (SHA-256):
        89:9C:24:DB:0E:F8:45:4B:91:6C:2C:56:A3:55:54:A1:FC:E0:7A:FC:FD:B9:10:1F:04:B7:9F:72:57:7D:FE:ED
    Fingerprint (SHA1):
        C6:FD:9F:18:7B:C9:5D:37:FF:94:A6:1C:A2:D5:79:6D:9A:46:4E:38
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2804: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2805: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2806: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2807: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2808: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120284 (0x1e67d15c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:35 2017
            Not After : Tue May 10 12:03:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:62:3d:2c:10:e3:a6:ef:f5:4c:1b:b8:8f:c3:dc:94:
                    55:d7:8b:43:95:d5:e1:e7:c6:8d:be:1c:a7:94:a6:1e:
                    e4:c3:1d:02:cb:ee:6d:28:0b:fa:c6:b3:9c:5d:dd:c1:
                    97:4a:1b:9c:b9:22:f6:b7:49:7d:a4:29:05:2c:c2:2a:
                    da:04:6a:7e:48:7d:e8:30:07:8d:d5:0c:d0:60:92:a9:
                    e8:63:0f:db:a5:b4:b8:de:b1:3b:4c:93:43:76:5d:c9:
                    3e:68:8c:43:82:16:6c:31:60:a1:31:4d:5e:8e:b8:1a:
                    75:3b:b6:c3:8e:51:96:5a:da:8f:9c:61:92:22:de:18:
                    76:89:63:a1:cd:dd:da:5e:bf:4d:ad:b1:55:08:d3:d6:
                    a9:cb:4c:85:6d:10:67:4c:14:2d:ee:b3:1b:34:9f:32:
                    bd:91:e4:82:15:61:e3:6c:a2:a5:e5:3f:f7:9c:a8:08:
                    dd:30:56:92:d3:c5:5c:5e:b6:f1:c4:17:6b:b5:f0:2c:
                    3d:d3:41:d0:a9:71:c9:b2:c4:8b:95:d3:31:cd:40:7d:
                    75:6d:b0:5e:09:fa:84:0c:9e:22:b7:5e:38:a0:ff:c6:
                    29:e1:5e:97:84:8e:28:39:b1:8c:d9:83:7c:1a:57:78:
                    43:e5:44:e9:9a:96:25:f9:e8:03:8f:fb:1f:da:1e:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:ad:31:80:ad:79:40:b5:a0:6a:a1:5c:c5:2c:7f:fe:
        6e:85:92:29:5b:c1:ff:37:4d:d6:ff:85:3d:40:c5:d6:
        97:48:c3:20:6b:eb:07:3d:ec:da:3c:86:05:20:8f:f2:
        2d:a6:64:e3:0e:0a:7c:f0:4c:cc:d2:30:79:5f:09:cc:
        d1:74:e9:26:32:33:00:c4:26:7c:a1:a0:23:1d:5a:37:
        93:47:b2:80:ce:2a:86:fb:ab:91:7b:14:26:3f:66:5c:
        61:50:21:a7:b2:ce:ae:f5:1f:1f:90:b7:37:a2:a3:22:
        12:8f:a3:6b:5e:8d:3d:df:18:a9:50:9c:36:5f:6c:28:
        75:6c:ad:96:3c:19:74:1f:84:ab:69:61:c0:c6:84:88:
        31:c9:97:24:a0:f6:33:6d:f8:19:9e:10:3c:00:da:7e:
        cf:a1:3c:3f:d6:ea:8a:7f:ed:c7:a2:e7:57:22:8d:a3:
        33:1e:cf:fb:ac:98:16:e7:52:cc:1b:1a:b7:bb:cd:37:
        38:c6:9c:80:1c:d3:79:8d:00:be:8a:7f:e4:c9:97:b4:
        39:ea:e5:7a:c9:5a:a2:66:13:00:37:68:3a:77:cb:30:
        f9:13:ac:98:d8:33:7f:79:53:0f:f0:01:16:c5:2f:58:
        88:d9:36:a8:46:5e:3d:af:98:d2:6a:3b:36:32:00:b0
    Fingerprint (SHA-256):
        8E:B3:21:32:D3:00:A7:7E:C2:CA:0C:C2:4F:B9:FB:30:CD:87:BD:00:98:15:CF:DC:64:B9:AF:7F:5C:4A:AD:EA
    Fingerprint (SHA1):
        44:02:67:44:E1:6D:75:D8:B5:A7:C3:FE:2D:84:04:8D:7D:6E:B2:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2809: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2810: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120285 (0x1e67d15d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:35 2017
            Not After : Tue May 10 12:03:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:f6:bd:3b:73:16:f7:6a:7a:5d:d0:4d:2b:64:0a:1f:
                    d9:67:cd:06:2e:f0:00:d1:48:11:de:9c:e4:18:65:b7:
                    d1:f6:ec:0d:5e:fa:c3:d7:72:65:44:28:f0:23:bf:9a:
                    fb:d7:43:eb:fa:81:73:8b:89:6e:6a:5d:03:32:4e:75:
                    8e:81:23:ac:8a:e9:df:52:10:2e:75:8f:3e:ab:d0:0b:
                    28:15:5a:83:a8:9f:54:6c:34:d7:c8:53:10:60:55:f8:
                    a3:ed:b3:6b:ee:64:df:2b:30:0f:0e:82:a3:cd:47:30:
                    d1:8e:fb:68:ab:8b:74:84:4d:59:8e:63:ca:f6:8e:97:
                    75:1e:ef:84:b1:3b:42:0c:4b:72:c7:8b:62:18:86:6b:
                    63:f0:73:1e:6b:f1:75:4f:92:78:00:14:ed:47:ec:17:
                    03:28:99:fc:83:c5:4a:dd:9d:0f:64:ac:9f:b7:89:e7:
                    4b:22:a1:19:57:3a:11:95:12:2f:87:95:82:32:db:50:
                    34:85:d0:38:fc:67:b3:28:88:38:6b:2a:9e:9a:79:70:
                    32:58:59:bb:4a:2c:12:11:90:96:e6:16:7d:d5:38:93:
                    9b:6b:91:7a:3f:e0:97:0b:2b:b7:3c:7e:6f:77:20:66:
                    b7:22:17:4d:c6:0c:6a:80:76:92:c5:e8:2d:4c:82:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:10:30:78:d0:07:e4:93:9a:13:03:fd:f3:93:e2:5d:
        52:2c:25:da:1b:53:ce:72:fc:29:d8:6b:bb:55:73:ef:
        e5:97:d6:a1:a1:f1:cf:13:66:5c:0a:f1:3d:0e:2a:72:
        c2:d2:2b:85:36:24:b6:c8:d5:5c:bb:93:2b:d0:c1:98:
        1a:cd:ad:60:a9:43:d1:96:9e:ea:dd:c1:2c:b5:10:1c:
        64:1c:db:25:82:2e:a1:2b:de:c2:00:ef:d7:9a:e8:49:
        67:27:39:16:f1:2c:fb:c7:44:05:c9:90:eb:50:f6:57:
        64:c2:61:82:c6:1b:e5:36:b6:b3:38:b8:9f:10:03:29:
        b6:1a:2c:52:7d:02:90:5e:bb:f2:fe:f5:d6:bc:c7:04:
        c8:11:c6:30:20:c5:26:08:22:46:4d:31:6f:5c:f1:cd:
        38:00:78:4c:35:d9:58:6e:9d:76:95:16:1d:3d:38:1e:
        82:94:c1:b4:0f:34:a0:a8:a2:ca:16:e2:64:83:be:9c:
        ac:c8:a0:96:98:62:5d:25:e6:44:d7:95:69:50:59:c4:
        cd:a9:b6:bc:18:8c:68:d4:56:37:70:72:a4:20:4e:9b:
        3b:5b:8c:f5:72:f2:5a:2d:81:fb:d1:26:9e:a4:c7:b6:
        30:d8:5f:eb:80:5c:d0:8d:98:b8:3c:55:e7:f3:9a:d6
    Fingerprint (SHA-256):
        BC:EC:C9:B1:CC:CE:0E:6B:92:A6:EF:BA:A3:10:B1:23:F5:3F:94:11:0C:52:51:E4:15:D1:23:98:A6:A2:F1:F2
    Fingerprint (SHA1):
        44:63:C3:6B:8F:16:1F:1E:47:C0:FD:73:AB:90:51:83:0E:B1:E4:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2811: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2812: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120286 (0x1e67d15e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:36 2017
            Not After : Tue May 10 12:03:36 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:bd:1f:1b:00:25:97:d9:db:14:ee:dd:5c:15:6c:72:
                    52:b1:ba:34:de:8e:ce:3c:10:c9:33:49:cc:38:a4:e2:
                    2d:92:af:b8:37:93:76:08:70:ec:2d:21:8a:b4:e4:32:
                    b0:eb:3a:f9:75:2a:d2:6c:17:de:3e:60:a3:6b:63:9e:
                    da:34:1b:ed:51:c2:ac:15:9d:36:09:35:92:74:19:ae:
                    bd:fc:e0:95:38:36:0d:68:47:20:67:fe:21:ad:6c:ba:
                    dc:5e:cb:c7:45:7b:04:d4:38:28:9c:13:bb:ae:6f:f7:
                    9f:28:18:c1:31:fb:53:ce:c6:cf:0a:a0:a4:42:48:a2:
                    97:e6:f5:cc:ef:80:b3:0f:af:b5:d2:43:66:c9:77:0e:
                    eb:d3:46:62:b0:f6:ce:ea:c8:39:16:a6:ff:62:af:a5:
                    39:f8:a2:1e:e6:17:39:42:b1:61:7f:6f:a5:7b:e6:7e:
                    0b:89:75:47:bc:ef:e1:a8:9f:e1:53:09:b2:51:cf:f9:
                    8a:0b:4f:c1:3f:aa:ce:5f:cf:fb:32:42:c4:7f:5b:47:
                    31:3b:8f:14:bc:a9:8a:7e:da:d6:7d:ce:ee:33:01:dc:
                    2a:d7:6d:da:68:69:6b:03:00:21:5c:aa:d5:90:4b:78:
                    71:cf:cf:38:21:d0:53:b9:ec:70:e5:c5:3b:ad:5b:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:ab:40:e9:a3:ec:64:74:c4:43:20:3a:1e:81:33:65:
        6d:ad:69:7f:a7:20:8b:b3:cb:f9:c6:27:77:ab:3b:4b:
        52:c9:4b:bc:1b:da:f9:13:51:59:39:44:57:e5:93:61:
        03:d6:b0:03:4f:ab:f2:82:0a:d3:78:42:df:a8:b6:00:
        5d:93:f1:b2:05:2b:ee:32:4f:a8:21:13:1f:ca:0e:dd:
        f7:a1:11:db:56:6c:f6:a6:d8:09:3e:51:ab:96:46:00:
        98:3c:1a:fa:cb:e6:35:46:4b:43:c4:3d:10:76:5e:83:
        a3:f9:ba:49:8d:29:90:64:80:0d:65:b5:88:ad:4f:45:
        a6:de:7c:78:29:12:73:ad:cf:95:45:9d:dc:f1:69:1c:
        e5:b1:53:15:2e:a8:27:c1:ac:24:93:d1:49:4a:e1:33:
        78:7c:aa:28:fb:10:aa:ff:6c:15:76:00:b7:8e:36:99:
        4f:31:b1:41:88:32:2f:e4:2c:c1:d8:7d:bb:59:95:e3:
        ef:d7:a2:c5:8d:14:cd:a9:e7:2d:fd:e3:e3:25:40:4e:
        02:d4:55:e1:ee:30:87:24:05:39:d9:aa:6e:91:03:5a:
        2d:72:63:95:b3:0b:6b:f4:47:13:5c:e6:42:49:ee:99:
        d9:91:28:a3:9e:df:8e:fa:8c:f1:25:14:42:c9:cf:cc
    Fingerprint (SHA-256):
        89:9C:24:DB:0E:F8:45:4B:91:6C:2C:56:A3:55:54:A1:FC:E0:7A:FC:FD:B9:10:1F:04:B7:9F:72:57:7D:FE:ED
    Fingerprint (SHA1):
        C6:FD:9F:18:7B:C9:5D:37:FF:94:A6:1C:A2:D5:79:6D:9A:46:4E:38
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2813: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2814: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2815: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120288 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2816: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2817: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2818: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2819: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120289   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2820: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2821: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2822: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2823: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120290   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2824: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2825: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2826: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2827: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510120291   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2828: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2829: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2830: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2831: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510120292   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2832: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2833: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2834: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120288 (0x1e67d160)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:39 2017
            Not After : Tue May 10 12:03:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:39:61:73:e5:1d:cf:75:86:f4:f7:a9:eb:1c:c3:f7:
                    c2:f6:b1:1f:34:5e:d2:76:7f:be:03:00:36:04:69:58:
                    bb:85:4a:24:d4:ec:1b:38:05:8c:64:ba:c7:5e:b2:85:
                    3c:1c:f8:e8:e2:64:9e:59:d1:bd:b2:30:75:e8:bd:f3:
                    63:4d:1c:ab:88:be:f6:a3:a3:4c:53:05:61:b6:44:29:
                    89:4d:8c:f0:c2:6d:2c:0e:3c:22:32:b2:bf:62:1b:59:
                    33:ae:60:0b:8b:aa:d7:de:b4:a4:71:db:39:f8:76:8e:
                    cd:db:06:f2:67:4f:7c:80:88:02:f5:f6:9f:32:fc:ec:
                    10:3c:01:65:ff:cf:4f:16:db:5b:d8:c3:71:d0:0f:f0:
                    07:b1:22:62:89:d6:fc:65:28:06:8d:38:35:f0:97:5d:
                    eb:4a:3d:98:85:5e:13:19:bc:f0:2d:a3:27:ca:00:e5:
                    d6:63:2b:0e:07:f5:af:4c:b9:56:83:e0:aa:b2:44:16:
                    7b:8a:7d:a4:07:2a:42:5b:f8:8b:7c:af:72:82:36:5d:
                    a5:c8:54:28:36:c5:89:47:21:25:71:2e:f6:09:34:cb:
                    82:d9:3b:5d:0d:6b:17:be:8c:8c:e0:c8:28:ff:34:88:
                    ed:e8:6a:1a:4f:55:7d:6b:04:5f:40:87:7c:42:8d:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:08:1b:60:3d:f0:58:04:c7:15:23:d3:dd:c3:4c:7b:
        f7:67:e7:17:3d:55:ff:85:b7:12:44:22:7d:2a:7f:17:
        77:57:d6:18:5f:6f:83:88:1e:2f:4a:5b:cc:ce:10:55:
        6c:dd:a2:4b:5f:46:e5:63:7f:57:f3:81:1b:7f:8d:ff:
        aa:36:c8:0b:5a:fb:73:ec:4a:77:3a:19:41:82:78:a4:
        21:f8:cf:99:a8:72:85:f9:37:6e:d4:9a:65:e8:1a:a1:
        e1:b6:20:f2:06:57:d0:a3:95:17:0c:f9:a8:c2:66:d6:
        ef:b0:2e:0c:87:52:9d:17:77:8f:1a:6f:23:a7:8f:d0:
        64:b5:e6:66:de:74:8c:5b:81:51:c2:bb:0f:cd:84:58:
        65:b7:75:db:88:ed:a0:34:44:46:1b:c8:21:26:62:91:
        90:9a:5f:0d:c6:1d:ca:14:71:b1:ec:85:79:ac:60:ae:
        c3:c5:d7:0d:db:74:13:b0:90:f4:e5:cd:fc:98:85:b6:
        a6:cc:f9:04:d4:25:5d:64:8c:ed:5f:47:0c:7f:03:b7:
        12:d8:4c:e7:cd:1b:43:31:b8:b2:3f:0a:8d:80:8e:ef:
        d3:ca:6f:63:f5:83:25:51:30:70:23:62:64:e7:ce:be:
        72:78:6c:38:90:97:08:b2:73:64:60:ac:cb:4d:8b:8c
    Fingerprint (SHA-256):
        32:97:B4:45:0E:FF:13:E2:5C:DD:A7:A4:59:09:BF:5A:92:3B:37:C4:BD:C9:55:46:5F:A5:13:09:4F:D9:15:A2
    Fingerprint (SHA1):
        EE:46:C9:7E:B3:37:25:A6:F0:42:43:17:D9:EC:88:D2:96:7F:B4:66
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2835: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2836: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120289 (0x1e67d161)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:40 2017
            Not After : Tue May 10 12:03:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:2c:f0:d9:b9:73:84:3b:0e:0b:a9:ef:0c:4e:71:5a:
                    da:a2:3e:7b:20:27:6a:f0:59:5a:81:d0:0d:2e:fe:a1:
                    40:dc:a7:1f:a7:5d:4d:c4:82:fb:27:77:9c:ce:09:38:
                    e3:c7:ec:24:45:40:0d:6d:e2:5a:2e:c5:93:a0:68:19:
                    78:37:32:54:4b:17:3d:e4:e3:9e:ab:08:f4:bb:9f:ca:
                    80:94:19:40:b2:26:0a:4d:7b:76:92:de:8e:8d:d6:e3:
                    23:2a:b9:bb:8e:9e:6b:ed:3b:bb:6d:24:5c:bb:e0:f7:
                    d2:bb:39:0a:b4:3e:b6:09:dd:5b:e5:14:d9:2d:b0:57:
                    d9:25:3c:54:2b:e2:0c:9a:8e:1b:05:0f:38:d1:ad:9e:
                    13:76:be:91:ae:88:a8:e0:47:c1:67:72:41:af:23:c3:
                    8a:a4:70:4d:92:6e:cf:3c:5b:bb:db:44:42:45:c6:e2:
                    85:bf:4a:60:97:e1:51:86:99:76:3b:9b:2b:ea:e2:21:
                    9d:1d:23:4d:0f:b1:bc:2d:c0:5f:b6:34:41:7f:f5:3b:
                    43:92:c7:82:ad:b5:1c:79:b0:42:6b:5e:1c:3c:a1:8f:
                    b6:40:d3:b8:cb:33:bc:9a:9d:c6:a5:4c:7d:93:d0:c8:
                    6f:06:04:51:18:04:02:64:46:2d:22:92:db:c4:5e:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:a6:46:7b:71:6a:50:a7:f8:6e:2c:87:26:3f:04:6e:
        68:c2:f2:f0:cd:f8:5a:4f:0d:14:b4:fb:89:19:0c:44:
        14:cb:7c:e1:a0:6d:77:23:54:f7:6a:c9:b9:34:d4:07:
        4e:60:1e:8a:c6:ec:c3:b3:37:90:4a:db:c0:b4:13:69:
        de:ae:dc:35:dd:fc:a0:8f:9c:3e:b9:ed:0c:6b:84:0d:
        20:6e:cb:94:b2:8c:5a:ab:a3:9c:d3:84:1d:0b:f9:44:
        c3:52:52:6c:ce:88:19:b5:d9:0f:c1:5b:53:75:c9:d5:
        25:67:ef:c1:19:36:c6:6e:e8:cd:b6:f0:3f:38:ae:0e:
        b2:68:ca:08:2c:c1:ed:23:6b:dd:31:09:04:7e:f7:12:
        db:e8:1c:51:de:fb:87:1c:de:f6:63:d9:31:32:64:5f:
        cd:2c:77:8e:17:d7:89:32:91:e9:2a:a3:d5:f2:58:e9:
        6b:fa:a0:5d:b8:4c:da:bb:85:4d:38:ad:29:89:66:bc:
        85:f4:99:b8:70:07:94:f2:26:10:d6:51:6a:68:5c:e6:
        bb:73:69:7d:e4:ab:4e:1f:ac:87:c2:d1:92:8a:94:6e:
        d0:06:2b:9b:b7:03:ea:c5:86:e5:c5:96:ed:1f:1d:2c:
        b0:af:11:6b:39:b3:5c:6c:10:ce:88:d2:60:40:5d:4c
    Fingerprint (SHA-256):
        80:41:45:BE:C4:A8:1B:C0:0E:2E:38:87:9A:64:BB:83:9D:44:25:F0:71:66:7E:4B:3F:36:C2:7E:37:D0:7F:64
    Fingerprint (SHA1):
        77:B5:68:9E:28:EB:C1:ED:0B:34:37:38:6F:D1:E8:58:C0:39:B6:FF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2837: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2838: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120290 (0x1e67d162)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:41 2017
            Not After : Tue May 10 12:03:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:04:a7:f0:b0:2c:86:cb:e6:96:15:10:d0:bb:ab:a5:
                    e3:4c:25:14:29:02:6d:5f:10:94:f0:2a:fc:d0:76:5a:
                    5e:f8:55:ba:b7:45:fe:68:66:86:15:bd:ca:9b:57:fe:
                    c1:cc:7b:06:1e:63:71:27:e4:c5:da:6f:f4:89:5e:8b:
                    5a:f5:83:e0:88:a7:85:ff:45:7a:3f:99:71:ee:35:64:
                    4c:60:54:b9:aa:c8:ce:b6:d7:9b:cb:c1:fa:04:68:e6:
                    63:9d:7c:a2:ec:84:a7:d8:68:63:3c:00:88:b6:20:e1:
                    94:de:48:90:de:6d:33:79:6e:fd:fe:06:c4:d9:c9:e3:
                    30:d6:35:88:c7:d3:ad:30:48:d3:3e:92:a3:1d:d1:d0:
                    a1:fd:e4:fb:35:37:1a:5c:6a:6e:a1:4a:ff:38:cd:c5:
                    8c:7e:f0:37:79:aa:8f:b6:0f:26:3e:01:13:e9:81:04:
                    26:0a:95:12:f3:48:d9:8c:9d:8d:f8:55:aa:d0:38:f4:
                    43:84:46:82:b0:3c:65:0e:71:60:14:49:98:80:05:e9:
                    69:dc:1c:6f:81:a3:b1:5c:c0:27:4c:71:db:3c:e4:91:
                    6d:37:7d:7d:76:79:a6:25:62:bb:6e:ae:17:aa:fa:8f:
                    a4:b3:1c:ef:62:51:73:cf:35:e3:8f:70:54:f2:b9:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:fd:e0:6a:a0:e0:4c:f0:da:ab:e3:61:28:8a:2c:21:
        97:e7:34:81:12:8a:8b:31:7a:9f:c9:6e:cd:63:bf:76:
        d0:bc:9e:b1:df:86:16:8a:47:8c:e3:10:71:d2:b6:29:
        24:9b:ca:a7:e0:e0:25:60:57:eb:99:cf:d6:50:62:1f:
        44:df:c9:c9:85:97:15:d2:4a:68:d2:6e:82:32:59:e2:
        f8:cb:3e:97:44:25:ba:a3:fd:16:50:02:a1:51:73:06:
        32:61:25:98:f1:29:13:a4:40:90:b5:90:6d:ac:bf:26:
        86:75:55:dc:25:cc:59:aa:3d:5a:fa:d7:ea:3c:b0:bd:
        3b:21:ea:e5:4e:3e:d6:58:ca:c7:32:42:6e:80:d1:b0:
        25:9b:3a:97:7e:99:80:3e:1d:a4:63:3a:c2:0a:99:d2:
        a8:e8:05:d8:b1:63:39:72:9f:72:03:03:8a:84:e4:8b:
        17:2a:85:d0:00:b3:0b:57:5a:5b:45:12:db:e1:dc:8b:
        79:4d:c0:57:f8:85:2f:e4:2a:23:39:c9:88:b8:5e:5f:
        e1:91:e6:3f:4a:3d:d5:12:da:09:af:c1:a1:31:14:44:
        17:7b:a5:b8:63:f2:48:24:02:bf:f7:4b:b2:27:7f:f6:
        87:95:9c:b3:3e:49:84:cd:51:cc:a0:8f:73:ae:6a:de
    Fingerprint (SHA-256):
        C2:DA:EC:CD:B2:E6:2D:03:31:12:16:B2:07:BB:BB:B8:F6:BB:34:BE:C6:7B:E4:9B:17:7B:E7:BB:CF:2B:2B:70
    Fingerprint (SHA1):
        FA:A0:06:A0:02:77:6E:A9:91:E2:6B:15:6C:DD:CC:D8:F9:32:54:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2839: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2840: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2841: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2842: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2843: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120288 (0x1e67d160)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:39 2017
            Not After : Tue May 10 12:03:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:39:61:73:e5:1d:cf:75:86:f4:f7:a9:eb:1c:c3:f7:
                    c2:f6:b1:1f:34:5e:d2:76:7f:be:03:00:36:04:69:58:
                    bb:85:4a:24:d4:ec:1b:38:05:8c:64:ba:c7:5e:b2:85:
                    3c:1c:f8:e8:e2:64:9e:59:d1:bd:b2:30:75:e8:bd:f3:
                    63:4d:1c:ab:88:be:f6:a3:a3:4c:53:05:61:b6:44:29:
                    89:4d:8c:f0:c2:6d:2c:0e:3c:22:32:b2:bf:62:1b:59:
                    33:ae:60:0b:8b:aa:d7:de:b4:a4:71:db:39:f8:76:8e:
                    cd:db:06:f2:67:4f:7c:80:88:02:f5:f6:9f:32:fc:ec:
                    10:3c:01:65:ff:cf:4f:16:db:5b:d8:c3:71:d0:0f:f0:
                    07:b1:22:62:89:d6:fc:65:28:06:8d:38:35:f0:97:5d:
                    eb:4a:3d:98:85:5e:13:19:bc:f0:2d:a3:27:ca:00:e5:
                    d6:63:2b:0e:07:f5:af:4c:b9:56:83:e0:aa:b2:44:16:
                    7b:8a:7d:a4:07:2a:42:5b:f8:8b:7c:af:72:82:36:5d:
                    a5:c8:54:28:36:c5:89:47:21:25:71:2e:f6:09:34:cb:
                    82:d9:3b:5d:0d:6b:17:be:8c:8c:e0:c8:28:ff:34:88:
                    ed:e8:6a:1a:4f:55:7d:6b:04:5f:40:87:7c:42:8d:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:08:1b:60:3d:f0:58:04:c7:15:23:d3:dd:c3:4c:7b:
        f7:67:e7:17:3d:55:ff:85:b7:12:44:22:7d:2a:7f:17:
        77:57:d6:18:5f:6f:83:88:1e:2f:4a:5b:cc:ce:10:55:
        6c:dd:a2:4b:5f:46:e5:63:7f:57:f3:81:1b:7f:8d:ff:
        aa:36:c8:0b:5a:fb:73:ec:4a:77:3a:19:41:82:78:a4:
        21:f8:cf:99:a8:72:85:f9:37:6e:d4:9a:65:e8:1a:a1:
        e1:b6:20:f2:06:57:d0:a3:95:17:0c:f9:a8:c2:66:d6:
        ef:b0:2e:0c:87:52:9d:17:77:8f:1a:6f:23:a7:8f:d0:
        64:b5:e6:66:de:74:8c:5b:81:51:c2:bb:0f:cd:84:58:
        65:b7:75:db:88:ed:a0:34:44:46:1b:c8:21:26:62:91:
        90:9a:5f:0d:c6:1d:ca:14:71:b1:ec:85:79:ac:60:ae:
        c3:c5:d7:0d:db:74:13:b0:90:f4:e5:cd:fc:98:85:b6:
        a6:cc:f9:04:d4:25:5d:64:8c:ed:5f:47:0c:7f:03:b7:
        12:d8:4c:e7:cd:1b:43:31:b8:b2:3f:0a:8d:80:8e:ef:
        d3:ca:6f:63:f5:83:25:51:30:70:23:62:64:e7:ce:be:
        72:78:6c:38:90:97:08:b2:73:64:60:ac:cb:4d:8b:8c
    Fingerprint (SHA-256):
        32:97:B4:45:0E:FF:13:E2:5C:DD:A7:A4:59:09:BF:5A:92:3B:37:C4:BD:C9:55:46:5F:A5:13:09:4F:D9:15:A2
    Fingerprint (SHA1):
        EE:46:C9:7E:B3:37:25:A6:F0:42:43:17:D9:EC:88:D2:96:7F:B4:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2844: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2845: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120289 (0x1e67d161)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:40 2017
            Not After : Tue May 10 12:03:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:2c:f0:d9:b9:73:84:3b:0e:0b:a9:ef:0c:4e:71:5a:
                    da:a2:3e:7b:20:27:6a:f0:59:5a:81:d0:0d:2e:fe:a1:
                    40:dc:a7:1f:a7:5d:4d:c4:82:fb:27:77:9c:ce:09:38:
                    e3:c7:ec:24:45:40:0d:6d:e2:5a:2e:c5:93:a0:68:19:
                    78:37:32:54:4b:17:3d:e4:e3:9e:ab:08:f4:bb:9f:ca:
                    80:94:19:40:b2:26:0a:4d:7b:76:92:de:8e:8d:d6:e3:
                    23:2a:b9:bb:8e:9e:6b:ed:3b:bb:6d:24:5c:bb:e0:f7:
                    d2:bb:39:0a:b4:3e:b6:09:dd:5b:e5:14:d9:2d:b0:57:
                    d9:25:3c:54:2b:e2:0c:9a:8e:1b:05:0f:38:d1:ad:9e:
                    13:76:be:91:ae:88:a8:e0:47:c1:67:72:41:af:23:c3:
                    8a:a4:70:4d:92:6e:cf:3c:5b:bb:db:44:42:45:c6:e2:
                    85:bf:4a:60:97:e1:51:86:99:76:3b:9b:2b:ea:e2:21:
                    9d:1d:23:4d:0f:b1:bc:2d:c0:5f:b6:34:41:7f:f5:3b:
                    43:92:c7:82:ad:b5:1c:79:b0:42:6b:5e:1c:3c:a1:8f:
                    b6:40:d3:b8:cb:33:bc:9a:9d:c6:a5:4c:7d:93:d0:c8:
                    6f:06:04:51:18:04:02:64:46:2d:22:92:db:c4:5e:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:a6:46:7b:71:6a:50:a7:f8:6e:2c:87:26:3f:04:6e:
        68:c2:f2:f0:cd:f8:5a:4f:0d:14:b4:fb:89:19:0c:44:
        14:cb:7c:e1:a0:6d:77:23:54:f7:6a:c9:b9:34:d4:07:
        4e:60:1e:8a:c6:ec:c3:b3:37:90:4a:db:c0:b4:13:69:
        de:ae:dc:35:dd:fc:a0:8f:9c:3e:b9:ed:0c:6b:84:0d:
        20:6e:cb:94:b2:8c:5a:ab:a3:9c:d3:84:1d:0b:f9:44:
        c3:52:52:6c:ce:88:19:b5:d9:0f:c1:5b:53:75:c9:d5:
        25:67:ef:c1:19:36:c6:6e:e8:cd:b6:f0:3f:38:ae:0e:
        b2:68:ca:08:2c:c1:ed:23:6b:dd:31:09:04:7e:f7:12:
        db:e8:1c:51:de:fb:87:1c:de:f6:63:d9:31:32:64:5f:
        cd:2c:77:8e:17:d7:89:32:91:e9:2a:a3:d5:f2:58:e9:
        6b:fa:a0:5d:b8:4c:da:bb:85:4d:38:ad:29:89:66:bc:
        85:f4:99:b8:70:07:94:f2:26:10:d6:51:6a:68:5c:e6:
        bb:73:69:7d:e4:ab:4e:1f:ac:87:c2:d1:92:8a:94:6e:
        d0:06:2b:9b:b7:03:ea:c5:86:e5:c5:96:ed:1f:1d:2c:
        b0:af:11:6b:39:b3:5c:6c:10:ce:88:d2:60:40:5d:4c
    Fingerprint (SHA-256):
        80:41:45:BE:C4:A8:1B:C0:0E:2E:38:87:9A:64:BB:83:9D:44:25:F0:71:66:7E:4B:3F:36:C2:7E:37:D0:7F:64
    Fingerprint (SHA1):
        77:B5:68:9E:28:EB:C1:ED:0B:34:37:38:6F:D1:E8:58:C0:39:B6:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2846: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2847: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120290 (0x1e67d162)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:41 2017
            Not After : Tue May 10 12:03:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:04:a7:f0:b0:2c:86:cb:e6:96:15:10:d0:bb:ab:a5:
                    e3:4c:25:14:29:02:6d:5f:10:94:f0:2a:fc:d0:76:5a:
                    5e:f8:55:ba:b7:45:fe:68:66:86:15:bd:ca:9b:57:fe:
                    c1:cc:7b:06:1e:63:71:27:e4:c5:da:6f:f4:89:5e:8b:
                    5a:f5:83:e0:88:a7:85:ff:45:7a:3f:99:71:ee:35:64:
                    4c:60:54:b9:aa:c8:ce:b6:d7:9b:cb:c1:fa:04:68:e6:
                    63:9d:7c:a2:ec:84:a7:d8:68:63:3c:00:88:b6:20:e1:
                    94:de:48:90:de:6d:33:79:6e:fd:fe:06:c4:d9:c9:e3:
                    30:d6:35:88:c7:d3:ad:30:48:d3:3e:92:a3:1d:d1:d0:
                    a1:fd:e4:fb:35:37:1a:5c:6a:6e:a1:4a:ff:38:cd:c5:
                    8c:7e:f0:37:79:aa:8f:b6:0f:26:3e:01:13:e9:81:04:
                    26:0a:95:12:f3:48:d9:8c:9d:8d:f8:55:aa:d0:38:f4:
                    43:84:46:82:b0:3c:65:0e:71:60:14:49:98:80:05:e9:
                    69:dc:1c:6f:81:a3:b1:5c:c0:27:4c:71:db:3c:e4:91:
                    6d:37:7d:7d:76:79:a6:25:62:bb:6e:ae:17:aa:fa:8f:
                    a4:b3:1c:ef:62:51:73:cf:35:e3:8f:70:54:f2:b9:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:fd:e0:6a:a0:e0:4c:f0:da:ab:e3:61:28:8a:2c:21:
        97:e7:34:81:12:8a:8b:31:7a:9f:c9:6e:cd:63:bf:76:
        d0:bc:9e:b1:df:86:16:8a:47:8c:e3:10:71:d2:b6:29:
        24:9b:ca:a7:e0:e0:25:60:57:eb:99:cf:d6:50:62:1f:
        44:df:c9:c9:85:97:15:d2:4a:68:d2:6e:82:32:59:e2:
        f8:cb:3e:97:44:25:ba:a3:fd:16:50:02:a1:51:73:06:
        32:61:25:98:f1:29:13:a4:40:90:b5:90:6d:ac:bf:26:
        86:75:55:dc:25:cc:59:aa:3d:5a:fa:d7:ea:3c:b0:bd:
        3b:21:ea:e5:4e:3e:d6:58:ca:c7:32:42:6e:80:d1:b0:
        25:9b:3a:97:7e:99:80:3e:1d:a4:63:3a:c2:0a:99:d2:
        a8:e8:05:d8:b1:63:39:72:9f:72:03:03:8a:84:e4:8b:
        17:2a:85:d0:00:b3:0b:57:5a:5b:45:12:db:e1:dc:8b:
        79:4d:c0:57:f8:85:2f:e4:2a:23:39:c9:88:b8:5e:5f:
        e1:91:e6:3f:4a:3d:d5:12:da:09:af:c1:a1:31:14:44:
        17:7b:a5:b8:63:f2:48:24:02:bf:f7:4b:b2:27:7f:f6:
        87:95:9c:b3:3e:49:84:cd:51:cc:a0:8f:73:ae:6a:de
    Fingerprint (SHA-256):
        C2:DA:EC:CD:B2:E6:2D:03:31:12:16:B2:07:BB:BB:B8:F6:BB:34:BE:C6:7B:E4:9B:17:7B:E7:BB:CF:2B:2B:70
    Fingerprint (SHA1):
        FA:A0:06:A0:02:77:6E:A9:91:E2:6B:15:6C:DD:CC:D8:F9:32:54:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2848: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2849: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120288 (0x1e67d160)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:39 2017
            Not After : Tue May 10 12:03:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:39:61:73:e5:1d:cf:75:86:f4:f7:a9:eb:1c:c3:f7:
                    c2:f6:b1:1f:34:5e:d2:76:7f:be:03:00:36:04:69:58:
                    bb:85:4a:24:d4:ec:1b:38:05:8c:64:ba:c7:5e:b2:85:
                    3c:1c:f8:e8:e2:64:9e:59:d1:bd:b2:30:75:e8:bd:f3:
                    63:4d:1c:ab:88:be:f6:a3:a3:4c:53:05:61:b6:44:29:
                    89:4d:8c:f0:c2:6d:2c:0e:3c:22:32:b2:bf:62:1b:59:
                    33:ae:60:0b:8b:aa:d7:de:b4:a4:71:db:39:f8:76:8e:
                    cd:db:06:f2:67:4f:7c:80:88:02:f5:f6:9f:32:fc:ec:
                    10:3c:01:65:ff:cf:4f:16:db:5b:d8:c3:71:d0:0f:f0:
                    07:b1:22:62:89:d6:fc:65:28:06:8d:38:35:f0:97:5d:
                    eb:4a:3d:98:85:5e:13:19:bc:f0:2d:a3:27:ca:00:e5:
                    d6:63:2b:0e:07:f5:af:4c:b9:56:83:e0:aa:b2:44:16:
                    7b:8a:7d:a4:07:2a:42:5b:f8:8b:7c:af:72:82:36:5d:
                    a5:c8:54:28:36:c5:89:47:21:25:71:2e:f6:09:34:cb:
                    82:d9:3b:5d:0d:6b:17:be:8c:8c:e0:c8:28:ff:34:88:
                    ed:e8:6a:1a:4f:55:7d:6b:04:5f:40:87:7c:42:8d:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:08:1b:60:3d:f0:58:04:c7:15:23:d3:dd:c3:4c:7b:
        f7:67:e7:17:3d:55:ff:85:b7:12:44:22:7d:2a:7f:17:
        77:57:d6:18:5f:6f:83:88:1e:2f:4a:5b:cc:ce:10:55:
        6c:dd:a2:4b:5f:46:e5:63:7f:57:f3:81:1b:7f:8d:ff:
        aa:36:c8:0b:5a:fb:73:ec:4a:77:3a:19:41:82:78:a4:
        21:f8:cf:99:a8:72:85:f9:37:6e:d4:9a:65:e8:1a:a1:
        e1:b6:20:f2:06:57:d0:a3:95:17:0c:f9:a8:c2:66:d6:
        ef:b0:2e:0c:87:52:9d:17:77:8f:1a:6f:23:a7:8f:d0:
        64:b5:e6:66:de:74:8c:5b:81:51:c2:bb:0f:cd:84:58:
        65:b7:75:db:88:ed:a0:34:44:46:1b:c8:21:26:62:91:
        90:9a:5f:0d:c6:1d:ca:14:71:b1:ec:85:79:ac:60:ae:
        c3:c5:d7:0d:db:74:13:b0:90:f4:e5:cd:fc:98:85:b6:
        a6:cc:f9:04:d4:25:5d:64:8c:ed:5f:47:0c:7f:03:b7:
        12:d8:4c:e7:cd:1b:43:31:b8:b2:3f:0a:8d:80:8e:ef:
        d3:ca:6f:63:f5:83:25:51:30:70:23:62:64:e7:ce:be:
        72:78:6c:38:90:97:08:b2:73:64:60:ac:cb:4d:8b:8c
    Fingerprint (SHA-256):
        32:97:B4:45:0E:FF:13:E2:5C:DD:A7:A4:59:09:BF:5A:92:3B:37:C4:BD:C9:55:46:5F:A5:13:09:4F:D9:15:A2
    Fingerprint (SHA1):
        EE:46:C9:7E:B3:37:25:A6:F0:42:43:17:D9:EC:88:D2:96:7F:B4:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2850: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120288 (0x1e67d160)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:39 2017
            Not After : Tue May 10 12:03:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:39:61:73:e5:1d:cf:75:86:f4:f7:a9:eb:1c:c3:f7:
                    c2:f6:b1:1f:34:5e:d2:76:7f:be:03:00:36:04:69:58:
                    bb:85:4a:24:d4:ec:1b:38:05:8c:64:ba:c7:5e:b2:85:
                    3c:1c:f8:e8:e2:64:9e:59:d1:bd:b2:30:75:e8:bd:f3:
                    63:4d:1c:ab:88:be:f6:a3:a3:4c:53:05:61:b6:44:29:
                    89:4d:8c:f0:c2:6d:2c:0e:3c:22:32:b2:bf:62:1b:59:
                    33:ae:60:0b:8b:aa:d7:de:b4:a4:71:db:39:f8:76:8e:
                    cd:db:06:f2:67:4f:7c:80:88:02:f5:f6:9f:32:fc:ec:
                    10:3c:01:65:ff:cf:4f:16:db:5b:d8:c3:71:d0:0f:f0:
                    07:b1:22:62:89:d6:fc:65:28:06:8d:38:35:f0:97:5d:
                    eb:4a:3d:98:85:5e:13:19:bc:f0:2d:a3:27:ca:00:e5:
                    d6:63:2b:0e:07:f5:af:4c:b9:56:83:e0:aa:b2:44:16:
                    7b:8a:7d:a4:07:2a:42:5b:f8:8b:7c:af:72:82:36:5d:
                    a5:c8:54:28:36:c5:89:47:21:25:71:2e:f6:09:34:cb:
                    82:d9:3b:5d:0d:6b:17:be:8c:8c:e0:c8:28:ff:34:88:
                    ed:e8:6a:1a:4f:55:7d:6b:04:5f:40:87:7c:42:8d:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        35:08:1b:60:3d:f0:58:04:c7:15:23:d3:dd:c3:4c:7b:
        f7:67:e7:17:3d:55:ff:85:b7:12:44:22:7d:2a:7f:17:
        77:57:d6:18:5f:6f:83:88:1e:2f:4a:5b:cc:ce:10:55:
        6c:dd:a2:4b:5f:46:e5:63:7f:57:f3:81:1b:7f:8d:ff:
        aa:36:c8:0b:5a:fb:73:ec:4a:77:3a:19:41:82:78:a4:
        21:f8:cf:99:a8:72:85:f9:37:6e:d4:9a:65:e8:1a:a1:
        e1:b6:20:f2:06:57:d0:a3:95:17:0c:f9:a8:c2:66:d6:
        ef:b0:2e:0c:87:52:9d:17:77:8f:1a:6f:23:a7:8f:d0:
        64:b5:e6:66:de:74:8c:5b:81:51:c2:bb:0f:cd:84:58:
        65:b7:75:db:88:ed:a0:34:44:46:1b:c8:21:26:62:91:
        90:9a:5f:0d:c6:1d:ca:14:71:b1:ec:85:79:ac:60:ae:
        c3:c5:d7:0d:db:74:13:b0:90:f4:e5:cd:fc:98:85:b6:
        a6:cc:f9:04:d4:25:5d:64:8c:ed:5f:47:0c:7f:03:b7:
        12:d8:4c:e7:cd:1b:43:31:b8:b2:3f:0a:8d:80:8e:ef:
        d3:ca:6f:63:f5:83:25:51:30:70:23:62:64:e7:ce:be:
        72:78:6c:38:90:97:08:b2:73:64:60:ac:cb:4d:8b:8c
    Fingerprint (SHA-256):
        32:97:B4:45:0E:FF:13:E2:5C:DD:A7:A4:59:09:BF:5A:92:3B:37:C4:BD:C9:55:46:5F:A5:13:09:4F:D9:15:A2
    Fingerprint (SHA1):
        EE:46:C9:7E:B3:37:25:A6:F0:42:43:17:D9:EC:88:D2:96:7F:B4:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2851: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120289 (0x1e67d161)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:40 2017
            Not After : Tue May 10 12:03:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:2c:f0:d9:b9:73:84:3b:0e:0b:a9:ef:0c:4e:71:5a:
                    da:a2:3e:7b:20:27:6a:f0:59:5a:81:d0:0d:2e:fe:a1:
                    40:dc:a7:1f:a7:5d:4d:c4:82:fb:27:77:9c:ce:09:38:
                    e3:c7:ec:24:45:40:0d:6d:e2:5a:2e:c5:93:a0:68:19:
                    78:37:32:54:4b:17:3d:e4:e3:9e:ab:08:f4:bb:9f:ca:
                    80:94:19:40:b2:26:0a:4d:7b:76:92:de:8e:8d:d6:e3:
                    23:2a:b9:bb:8e:9e:6b:ed:3b:bb:6d:24:5c:bb:e0:f7:
                    d2:bb:39:0a:b4:3e:b6:09:dd:5b:e5:14:d9:2d:b0:57:
                    d9:25:3c:54:2b:e2:0c:9a:8e:1b:05:0f:38:d1:ad:9e:
                    13:76:be:91:ae:88:a8:e0:47:c1:67:72:41:af:23:c3:
                    8a:a4:70:4d:92:6e:cf:3c:5b:bb:db:44:42:45:c6:e2:
                    85:bf:4a:60:97:e1:51:86:99:76:3b:9b:2b:ea:e2:21:
                    9d:1d:23:4d:0f:b1:bc:2d:c0:5f:b6:34:41:7f:f5:3b:
                    43:92:c7:82:ad:b5:1c:79:b0:42:6b:5e:1c:3c:a1:8f:
                    b6:40:d3:b8:cb:33:bc:9a:9d:c6:a5:4c:7d:93:d0:c8:
                    6f:06:04:51:18:04:02:64:46:2d:22:92:db:c4:5e:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:a6:46:7b:71:6a:50:a7:f8:6e:2c:87:26:3f:04:6e:
        68:c2:f2:f0:cd:f8:5a:4f:0d:14:b4:fb:89:19:0c:44:
        14:cb:7c:e1:a0:6d:77:23:54:f7:6a:c9:b9:34:d4:07:
        4e:60:1e:8a:c6:ec:c3:b3:37:90:4a:db:c0:b4:13:69:
        de:ae:dc:35:dd:fc:a0:8f:9c:3e:b9:ed:0c:6b:84:0d:
        20:6e:cb:94:b2:8c:5a:ab:a3:9c:d3:84:1d:0b:f9:44:
        c3:52:52:6c:ce:88:19:b5:d9:0f:c1:5b:53:75:c9:d5:
        25:67:ef:c1:19:36:c6:6e:e8:cd:b6:f0:3f:38:ae:0e:
        b2:68:ca:08:2c:c1:ed:23:6b:dd:31:09:04:7e:f7:12:
        db:e8:1c:51:de:fb:87:1c:de:f6:63:d9:31:32:64:5f:
        cd:2c:77:8e:17:d7:89:32:91:e9:2a:a3:d5:f2:58:e9:
        6b:fa:a0:5d:b8:4c:da:bb:85:4d:38:ad:29:89:66:bc:
        85:f4:99:b8:70:07:94:f2:26:10:d6:51:6a:68:5c:e6:
        bb:73:69:7d:e4:ab:4e:1f:ac:87:c2:d1:92:8a:94:6e:
        d0:06:2b:9b:b7:03:ea:c5:86:e5:c5:96:ed:1f:1d:2c:
        b0:af:11:6b:39:b3:5c:6c:10:ce:88:d2:60:40:5d:4c
    Fingerprint (SHA-256):
        80:41:45:BE:C4:A8:1B:C0:0E:2E:38:87:9A:64:BB:83:9D:44:25:F0:71:66:7E:4B:3F:36:C2:7E:37:D0:7F:64
    Fingerprint (SHA1):
        77:B5:68:9E:28:EB:C1:ED:0B:34:37:38:6F:D1:E8:58:C0:39:B6:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2852: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120289 (0x1e67d161)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:03:40 2017
            Not After : Tue May 10 12:03:40 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:2c:f0:d9:b9:73:84:3b:0e:0b:a9:ef:0c:4e:71:5a:
                    da:a2:3e:7b:20:27:6a:f0:59:5a:81:d0:0d:2e:fe:a1:
                    40:dc:a7:1f:a7:5d:4d:c4:82:fb:27:77:9c:ce:09:38:
                    e3:c7:ec:24:45:40:0d:6d:e2:5a:2e:c5:93:a0:68:19:
                    78:37:32:54:4b:17:3d:e4:e3:9e:ab:08:f4:bb:9f:ca:
                    80:94:19:40:b2:26:0a:4d:7b:76:92:de:8e:8d:d6:e3:
                    23:2a:b9:bb:8e:9e:6b:ed:3b:bb:6d:24:5c:bb:e0:f7:
                    d2:bb:39:0a:b4:3e:b6:09:dd:5b:e5:14:d9:2d:b0:57:
                    d9:25:3c:54:2b:e2:0c:9a:8e:1b:05:0f:38:d1:ad:9e:
                    13:76:be:91:ae:88:a8:e0:47:c1:67:72:41:af:23:c3:
                    8a:a4:70:4d:92:6e:cf:3c:5b:bb:db:44:42:45:c6:e2:
                    85:bf:4a:60:97:e1:51:86:99:76:3b:9b:2b:ea:e2:21:
                    9d:1d:23:4d:0f:b1:bc:2d:c0:5f:b6:34:41:7f:f5:3b:
                    43:92:c7:82:ad:b5:1c:79:b0:42:6b:5e:1c:3c:a1:8f:
                    b6:40:d3:b8:cb:33:bc:9a:9d:c6:a5:4c:7d:93:d0:c8:
                    6f:06:04:51:18:04:02:64:46:2d:22:92:db:c4:5e:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:a6:46:7b:71:6a:50:a7:f8:6e:2c:87:26:3f:04:6e:
        68:c2:f2:f0:cd:f8:5a:4f:0d:14:b4:fb:89:19:0c:44:
        14:cb:7c:e1:a0:6d:77:23:54:f7:6a:c9:b9:34:d4:07:
        4e:60:1e:8a:c6:ec:c3:b3:37:90:4a:db:c0:b4:13:69:
        de:ae:dc:35:dd:fc:a0:8f:9c:3e:b9:ed:0c:6b:84:0d:
        20:6e:cb:94:b2:8c:5a:ab:a3:9c:d3:84:1d:0b:f9:44:
        c3:52:52:6c:ce:88:19:b5:d9:0f:c1:5b:53:75:c9:d5:
        25:67:ef:c1:19:36:c6:6e:e8:cd:b6:f0:3f:38:ae:0e:
        b2:68:ca:08:2c:c1:ed:23:6b:dd:31:09:04:7e:f7:12:
        db:e8:1c:51:de:fb:87:1c:de:f6:63:d9:31:32:64:5f:
        cd:2c:77:8e:17:d7:89:32:91:e9:2a:a3:d5:f2:58:e9:
        6b:fa:a0:5d:b8:4c:da:bb:85:4d:38:ad:29:89:66:bc:
        85:f4:99:b8:70:07:94:f2:26:10:d6:51:6a:68:5c:e6:
        bb:73:69:7d:e4:ab:4e:1f:ac:87:c2:d1:92:8a:94:6e:
        d0:06:2b:9b:b7:03:ea:c5:86:e5:c5:96:ed:1f:1d:2c:
        b0:af:11:6b:39:b3:5c:6c:10:ce:88:d2:60:40:5d:4c
    Fingerprint (SHA-256):
        80:41:45:BE:C4:A8:1B:C0:0E:2E:38:87:9A:64:BB:83:9D:44:25:F0:71:66:7E:4B:3F:36:C2:7E:37:D0:7F:64
    Fingerprint (SHA1):
        77:B5:68:9E:28:EB:C1:ED:0B:34:37:38:6F:D1:E8:58:C0:39:B6:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2853: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120290 (0x1e67d162)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:41 2017
            Not After : Tue May 10 12:03:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:04:a7:f0:b0:2c:86:cb:e6:96:15:10:d0:bb:ab:a5:
                    e3:4c:25:14:29:02:6d:5f:10:94:f0:2a:fc:d0:76:5a:
                    5e:f8:55:ba:b7:45:fe:68:66:86:15:bd:ca:9b:57:fe:
                    c1:cc:7b:06:1e:63:71:27:e4:c5:da:6f:f4:89:5e:8b:
                    5a:f5:83:e0:88:a7:85:ff:45:7a:3f:99:71:ee:35:64:
                    4c:60:54:b9:aa:c8:ce:b6:d7:9b:cb:c1:fa:04:68:e6:
                    63:9d:7c:a2:ec:84:a7:d8:68:63:3c:00:88:b6:20:e1:
                    94:de:48:90:de:6d:33:79:6e:fd:fe:06:c4:d9:c9:e3:
                    30:d6:35:88:c7:d3:ad:30:48:d3:3e:92:a3:1d:d1:d0:
                    a1:fd:e4:fb:35:37:1a:5c:6a:6e:a1:4a:ff:38:cd:c5:
                    8c:7e:f0:37:79:aa:8f:b6:0f:26:3e:01:13:e9:81:04:
                    26:0a:95:12:f3:48:d9:8c:9d:8d:f8:55:aa:d0:38:f4:
                    43:84:46:82:b0:3c:65:0e:71:60:14:49:98:80:05:e9:
                    69:dc:1c:6f:81:a3:b1:5c:c0:27:4c:71:db:3c:e4:91:
                    6d:37:7d:7d:76:79:a6:25:62:bb:6e:ae:17:aa:fa:8f:
                    a4:b3:1c:ef:62:51:73:cf:35:e3:8f:70:54:f2:b9:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:fd:e0:6a:a0:e0:4c:f0:da:ab:e3:61:28:8a:2c:21:
        97:e7:34:81:12:8a:8b:31:7a:9f:c9:6e:cd:63:bf:76:
        d0:bc:9e:b1:df:86:16:8a:47:8c:e3:10:71:d2:b6:29:
        24:9b:ca:a7:e0:e0:25:60:57:eb:99:cf:d6:50:62:1f:
        44:df:c9:c9:85:97:15:d2:4a:68:d2:6e:82:32:59:e2:
        f8:cb:3e:97:44:25:ba:a3:fd:16:50:02:a1:51:73:06:
        32:61:25:98:f1:29:13:a4:40:90:b5:90:6d:ac:bf:26:
        86:75:55:dc:25:cc:59:aa:3d:5a:fa:d7:ea:3c:b0:bd:
        3b:21:ea:e5:4e:3e:d6:58:ca:c7:32:42:6e:80:d1:b0:
        25:9b:3a:97:7e:99:80:3e:1d:a4:63:3a:c2:0a:99:d2:
        a8:e8:05:d8:b1:63:39:72:9f:72:03:03:8a:84:e4:8b:
        17:2a:85:d0:00:b3:0b:57:5a:5b:45:12:db:e1:dc:8b:
        79:4d:c0:57:f8:85:2f:e4:2a:23:39:c9:88:b8:5e:5f:
        e1:91:e6:3f:4a:3d:d5:12:da:09:af:c1:a1:31:14:44:
        17:7b:a5:b8:63:f2:48:24:02:bf:f7:4b:b2:27:7f:f6:
        87:95:9c:b3:3e:49:84:cd:51:cc:a0:8f:73:ae:6a:de
    Fingerprint (SHA-256):
        C2:DA:EC:CD:B2:E6:2D:03:31:12:16:B2:07:BB:BB:B8:F6:BB:34:BE:C6:7B:E4:9B:17:7B:E7:BB:CF:2B:2B:70
    Fingerprint (SHA1):
        FA:A0:06:A0:02:77:6E:A9:91:E2:6B:15:6C:DD:CC:D8:F9:32:54:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2854: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120290 (0x1e67d162)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:03:41 2017
            Not After : Tue May 10 12:03:41 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:04:a7:f0:b0:2c:86:cb:e6:96:15:10:d0:bb:ab:a5:
                    e3:4c:25:14:29:02:6d:5f:10:94:f0:2a:fc:d0:76:5a:
                    5e:f8:55:ba:b7:45:fe:68:66:86:15:bd:ca:9b:57:fe:
                    c1:cc:7b:06:1e:63:71:27:e4:c5:da:6f:f4:89:5e:8b:
                    5a:f5:83:e0:88:a7:85:ff:45:7a:3f:99:71:ee:35:64:
                    4c:60:54:b9:aa:c8:ce:b6:d7:9b:cb:c1:fa:04:68:e6:
                    63:9d:7c:a2:ec:84:a7:d8:68:63:3c:00:88:b6:20:e1:
                    94:de:48:90:de:6d:33:79:6e:fd:fe:06:c4:d9:c9:e3:
                    30:d6:35:88:c7:d3:ad:30:48:d3:3e:92:a3:1d:d1:d0:
                    a1:fd:e4:fb:35:37:1a:5c:6a:6e:a1:4a:ff:38:cd:c5:
                    8c:7e:f0:37:79:aa:8f:b6:0f:26:3e:01:13:e9:81:04:
                    26:0a:95:12:f3:48:d9:8c:9d:8d:f8:55:aa:d0:38:f4:
                    43:84:46:82:b0:3c:65:0e:71:60:14:49:98:80:05:e9:
                    69:dc:1c:6f:81:a3:b1:5c:c0:27:4c:71:db:3c:e4:91:
                    6d:37:7d:7d:76:79:a6:25:62:bb:6e:ae:17:aa:fa:8f:
                    a4:b3:1c:ef:62:51:73:cf:35:e3:8f:70:54:f2:b9:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d0:fd:e0:6a:a0:e0:4c:f0:da:ab:e3:61:28:8a:2c:21:
        97:e7:34:81:12:8a:8b:31:7a:9f:c9:6e:cd:63:bf:76:
        d0:bc:9e:b1:df:86:16:8a:47:8c:e3:10:71:d2:b6:29:
        24:9b:ca:a7:e0:e0:25:60:57:eb:99:cf:d6:50:62:1f:
        44:df:c9:c9:85:97:15:d2:4a:68:d2:6e:82:32:59:e2:
        f8:cb:3e:97:44:25:ba:a3:fd:16:50:02:a1:51:73:06:
        32:61:25:98:f1:29:13:a4:40:90:b5:90:6d:ac:bf:26:
        86:75:55:dc:25:cc:59:aa:3d:5a:fa:d7:ea:3c:b0:bd:
        3b:21:ea:e5:4e:3e:d6:58:ca:c7:32:42:6e:80:d1:b0:
        25:9b:3a:97:7e:99:80:3e:1d:a4:63:3a:c2:0a:99:d2:
        a8:e8:05:d8:b1:63:39:72:9f:72:03:03:8a:84:e4:8b:
        17:2a:85:d0:00:b3:0b:57:5a:5b:45:12:db:e1:dc:8b:
        79:4d:c0:57:f8:85:2f:e4:2a:23:39:c9:88:b8:5e:5f:
        e1:91:e6:3f:4a:3d:d5:12:da:09:af:c1:a1:31:14:44:
        17:7b:a5:b8:63:f2:48:24:02:bf:f7:4b:b2:27:7f:f6:
        87:95:9c:b3:3e:49:84:cd:51:cc:a0:8f:73:ae:6a:de
    Fingerprint (SHA-256):
        C2:DA:EC:CD:B2:E6:2D:03:31:12:16:B2:07:BB:BB:B8:F6:BB:34:BE:C6:7B:E4:9B:17:7B:E7:BB:CF:2B:2B:70
    Fingerprint (SHA1):
        FA:A0:06:A0:02:77:6E:A9:91:E2:6B:15:6C:DD:CC:D8:F9:32:54:9E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2855: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2856: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120293 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2857: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2858: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2859: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2860: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510120294   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2861: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2862: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2863: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2864: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120295   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2865: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2866: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2867: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2868: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510120296   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2869: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2870: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2871: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2872: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510120297   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2873: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2874: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2875: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2876: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510120298   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2877: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2878: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2879: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2880: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510120299   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2881: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2882: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2883: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2884: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2885: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2886: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2887: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120293 (0x1e67d165)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:44 2017
            Not After : Tue May 10 12:03:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:15:bc:24:b5:02:9f:bf:fd:72:e3:15:a4:a9:46:cd:
                    dd:a5:e2:4b:e2:2e:da:07:8a:44:59:de:a0:76:e8:89:
                    72:ab:52:bf:4d:58:14:80:39:c0:85:27:8f:c2:fd:70:
                    7f:8a:40:06:bd:e8:97:01:4e:06:2d:0c:c6:d4:07:93:
                    56:9f:87:5e:6b:5c:1f:25:3b:28:1f:40:b7:6e:0c:72:
                    7f:ac:4a:b9:86:34:7b:ee:b6:b5:48:f6:45:ca:7e:86:
                    4e:7e:66:e4:45:ad:d8:24:33:78:a4:c2:e8:76:83:92:
                    71:ef:19:0e:42:b3:f1:81:fd:ee:04:25:d5:0e:f3:75:
                    07:be:4b:8d:8d:ca:45:5c:bb:67:6c:40:35:d0:8f:ac:
                    0c:54:fd:a0:b9:04:5b:32:99:c3:16:a0:a2:d7:b6:0f:
                    42:75:35:28:2f:77:b8:6c:b2:51:fa:42:5f:2a:89:4d:
                    5d:08:b8:3f:de:ba:f1:e9:df:74:da:6b:37:60:8a:89:
                    57:4e:33:f7:a7:44:60:0d:c2:a0:47:a5:b4:28:ca:0f:
                    7b:8f:2b:30:81:41:d6:04:a7:85:df:e2:6e:c5:a3:4c:
                    00:43:5f:2d:92:1a:93:1b:2f:53:e7:0a:00:f7:c2:25:
                    92:ff:b8:39:43:27:73:da:26:a7:90:4d:5f:e5:d0:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:72:b0:8d:5d:05:96:00:f7:10:45:bb:26:ba:ce:19:
        63:14:66:7c:bb:a5:93:07:20:30:8b:6f:b8:72:31:15:
        cd:88:0d:c0:e4:b4:21:bf:a0:4a:42:14:44:b6:86:f8:
        5b:ee:b5:ee:fb:18:4f:8c:18:c4:ce:54:53:de:e8:1b:
        46:a8:9a:dd:a5:90:30:32:90:db:7b:0f:d2:9b:35:2f:
        4b:95:ee:85:cd:83:e0:eb:18:79:e8:e6:57:77:8a:60:
        ef:84:69:d3:f6:96:92:78:33:43:77:20:32:5e:a5:63:
        07:9a:c1:73:33:d6:99:d5:f1:ff:e5:b7:43:62:33:36:
        e0:b5:f0:33:03:45:30:7e:41:83:39:16:cc:3d:6e:fd:
        d4:28:06:26:59:19:74:9d:78:f3:9a:89:68:55:cf:0a:
        84:db:5b:bd:d1:e5:78:a0:b0:94:44:9a:a6:a9:46:53:
        dd:4d:33:09:36:b9:a5:e6:cb:1e:95:a1:a5:3e:09:9e:
        cf:24:26:90:a6:cc:3b:ad:cf:56:94:ae:d5:26:26:c1:
        5a:33:7c:bd:73:a2:3c:ef:8c:ea:a7:dd:b6:6d:28:2d:
        0e:88:54:c1:4a:86:fb:8a:21:e1:57:ab:cd:5f:82:60:
        39:4b:f0:31:85:5b:7b:91:ef:b2:d4:85:8d:19:26:94
    Fingerprint (SHA-256):
        2F:A8:8D:B7:88:9E:FC:88:5C:67:EB:09:CE:1C:7E:A3:FD:79:51:FD:27:CD:30:93:A7:07:6B:71:72:33:6F:73
    Fingerprint (SHA1):
        62:71:22:B7:AA:F7:EA:25:AB:C3:6D:59:3F:23:8E:72:75:F4:A6:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2888: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2889: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2890: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2891: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120293 (0x1e67d165)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:44 2017
            Not After : Tue May 10 12:03:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:15:bc:24:b5:02:9f:bf:fd:72:e3:15:a4:a9:46:cd:
                    dd:a5:e2:4b:e2:2e:da:07:8a:44:59:de:a0:76:e8:89:
                    72:ab:52:bf:4d:58:14:80:39:c0:85:27:8f:c2:fd:70:
                    7f:8a:40:06:bd:e8:97:01:4e:06:2d:0c:c6:d4:07:93:
                    56:9f:87:5e:6b:5c:1f:25:3b:28:1f:40:b7:6e:0c:72:
                    7f:ac:4a:b9:86:34:7b:ee:b6:b5:48:f6:45:ca:7e:86:
                    4e:7e:66:e4:45:ad:d8:24:33:78:a4:c2:e8:76:83:92:
                    71:ef:19:0e:42:b3:f1:81:fd:ee:04:25:d5:0e:f3:75:
                    07:be:4b:8d:8d:ca:45:5c:bb:67:6c:40:35:d0:8f:ac:
                    0c:54:fd:a0:b9:04:5b:32:99:c3:16:a0:a2:d7:b6:0f:
                    42:75:35:28:2f:77:b8:6c:b2:51:fa:42:5f:2a:89:4d:
                    5d:08:b8:3f:de:ba:f1:e9:df:74:da:6b:37:60:8a:89:
                    57:4e:33:f7:a7:44:60:0d:c2:a0:47:a5:b4:28:ca:0f:
                    7b:8f:2b:30:81:41:d6:04:a7:85:df:e2:6e:c5:a3:4c:
                    00:43:5f:2d:92:1a:93:1b:2f:53:e7:0a:00:f7:c2:25:
                    92:ff:b8:39:43:27:73:da:26:a7:90:4d:5f:e5:d0:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:72:b0:8d:5d:05:96:00:f7:10:45:bb:26:ba:ce:19:
        63:14:66:7c:bb:a5:93:07:20:30:8b:6f:b8:72:31:15:
        cd:88:0d:c0:e4:b4:21:bf:a0:4a:42:14:44:b6:86:f8:
        5b:ee:b5:ee:fb:18:4f:8c:18:c4:ce:54:53:de:e8:1b:
        46:a8:9a:dd:a5:90:30:32:90:db:7b:0f:d2:9b:35:2f:
        4b:95:ee:85:cd:83:e0:eb:18:79:e8:e6:57:77:8a:60:
        ef:84:69:d3:f6:96:92:78:33:43:77:20:32:5e:a5:63:
        07:9a:c1:73:33:d6:99:d5:f1:ff:e5:b7:43:62:33:36:
        e0:b5:f0:33:03:45:30:7e:41:83:39:16:cc:3d:6e:fd:
        d4:28:06:26:59:19:74:9d:78:f3:9a:89:68:55:cf:0a:
        84:db:5b:bd:d1:e5:78:a0:b0:94:44:9a:a6:a9:46:53:
        dd:4d:33:09:36:b9:a5:e6:cb:1e:95:a1:a5:3e:09:9e:
        cf:24:26:90:a6:cc:3b:ad:cf:56:94:ae:d5:26:26:c1:
        5a:33:7c:bd:73:a2:3c:ef:8c:ea:a7:dd:b6:6d:28:2d:
        0e:88:54:c1:4a:86:fb:8a:21:e1:57:ab:cd:5f:82:60:
        39:4b:f0:31:85:5b:7b:91:ef:b2:d4:85:8d:19:26:94
    Fingerprint (SHA-256):
        2F:A8:8D:B7:88:9E:FC:88:5C:67:EB:09:CE:1C:7E:A3:FD:79:51:FD:27:CD:30:93:A7:07:6B:71:72:33:6F:73
    Fingerprint (SHA1):
        62:71:22:B7:AA:F7:EA:25:AB:C3:6D:59:3F:23:8E:72:75:F4:A6:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2892: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2893: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2894: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120300 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2896: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2898: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510120301   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510120302   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2906: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510120303   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2910: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510120304   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2914: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510120305   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510120306   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510120307   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510120308   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2930: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510120309   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2934: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510120310   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2938: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510120311   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2942: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510120312   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2943: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2944: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2945: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2946: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510120313   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2947: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2948: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2949: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2950: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510120314   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2951: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2952: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2953: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2954: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510120315   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2955: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2956: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2957: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2958: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510120316   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2959: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2960: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2961: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2962: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510120317   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2963: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2964: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2965: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2966: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510120318   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2967: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2968: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2969: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2970: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510120319   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2971: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2973: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510120320   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2977: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2978: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510120321   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2981: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2982: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510120322   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2985: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510120323   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2989: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2990: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510120324   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2993: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2994: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510120325   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2995: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2996: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2997: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2998: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510120326   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2999: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3000: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3001: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3002: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510120327   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3003: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3004: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3005: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3006: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510120328   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3007: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3008: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3009: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3010: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510120329   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3011: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3012: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3013: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3014: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3015: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3016: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3017: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3018: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3019: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3023: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3024: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3026: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3027: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3028: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3029: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3030: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3031: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3032: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3033: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3034: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3035: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120300 (0x1e67d16c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:03:51 2017
            Not After : Tue May 10 12:03:51 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:70:53:ea:ea:52:eb:83:41:e3:d5:06:2f:c6:fd:d0:
                    a6:1c:2d:5a:fe:f4:69:f5:bc:31:60:26:00:a1:16:47:
                    06:8f:38:08:62:3c:3a:8a:e2:0b:28:68:95:79:17:31:
                    8a:bd:80:e0:c0:67:d7:0c:18:12:2a:c2:1b:62:ea:d0:
                    6f:b5:33:04:e0:ef:00:cf:a4:c2:3f:2f:d8:37:9a:5a:
                    14:f7:7a:21:f2:4c:e9:df:00:e1:3f:c0:fd:a7:e7:86:
                    82:21:55:a7:02:a1:be:42:d4:a5:3e:ad:d8:21:c7:4e:
                    c8:f2:9f:c9:65:67:4e:50:42:8d:3e:15:89:66:54:4a:
                    0f:6b:07:0e:56:9a:c3:60:74:f7:75:0e:3f:13:31:aa:
                    4c:36:fb:11:e1:4b:b7:26:38:de:c9:b3:b6:c1:9b:c3:
                    63:d7:b5:8e:bd:b8:70:2f:c1:3a:bf:0e:a3:ba:1a:81:
                    ab:fd:3a:a6:1a:69:bc:1d:16:4b:31:d7:7e:3b:de:f7:
                    62:fe:29:3e:fd:9c:b0:81:58:23:02:4d:11:e3:bc:2f:
                    75:4a:4c:f1:dc:d7:bc:c7:e4:8b:91:a0:10:51:ab:4b:
                    6a:78:10:bb:59:6d:6c:d0:21:1d:d4:7a:52:61:4c:91:
                    4f:29:e0:67:98:38:d7:22:b5:a4:c2:fb:ef:2a:ba:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:a4:6a:a0:51:e2:39:7c:31:d4:89:2d:c2:8a:84:b7:
        0a:88:a0:6d:19:27:d5:3b:c4:45:21:40:18:0b:ad:f3:
        c4:c4:5d:2c:d6:96:ce:92:da:56:c7:67:1f:45:73:e0:
        25:12:8d:a6:2c:8f:28:dd:7b:02:1a:be:9d:a6:4b:16:
        32:a4:bf:cf:2b:fc:dd:f3:b5:1b:f3:80:a2:66:5f:0f:
        0d:23:e1:6c:6b:00:96:7e:56:82:0c:0a:5c:38:20:6c:
        20:2a:46:1a:84:34:1e:1b:8d:f7:a8:76:1b:18:49:c8:
        1b:b9:d2:1f:be:6b:64:73:18:78:9b:e7:38:1a:93:fc:
        d8:55:e9:b0:13:73:bf:56:4a:38:88:88:2a:ab:09:24:
        f4:0f:d1:c2:be:b4:18:74:6a:d4:97:9e:8c:6d:85:8b:
        45:3a:7c:90:7d:bd:0d:a7:bb:24:28:56:87:4a:7c:11:
        3e:fd:74:9a:94:ac:79:22:24:3a:30:30:fd:aa:24:7b:
        bb:2d:31:96:ca:a2:bf:67:26:d4:6c:ba:40:66:d7:9c:
        fa:34:da:11:d1:6b:c5:4a:a9:56:e3:cd:96:ef:16:3c:
        5c:77:b0:3d:b8:89:d8:da:e4:ef:2f:22:e5:9e:5d:4b:
        38:c5:fd:da:49:3e:b7:d2:b1:ac:90:5c:fb:e3:ce:68
    Fingerprint (SHA-256):
        8D:BF:D2:75:CE:4A:74:8B:C4:38:45:90:FE:62:6B:42:82:8D:27:2A:78:AE:18:E2:3C:09:A9:19:E9:6E:D2:6B
    Fingerprint (SHA1):
        D1:2B:57:1C:62:65:0F:2A:75:C1:10:AE:BE:3A:D0:E4:05:E7:B3:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3036: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3037: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3038: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120330 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3039: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3040: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3041: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3042: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510120331   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3043: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3045: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3046: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510120332   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3047: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3048: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3049: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3050: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510120333   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3051: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3052: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3053: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3054: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510120334   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3055: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3056: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3057: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3058: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510120335   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3059: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3060: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3061: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3062: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510120336   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3063: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3064: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3065: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120330 (0x1e67d18a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:19 2017
            Not After : Tue May 10 12:04:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:58:ec:36:20:8a:25:a3:36:17:45:19:98:7c:fd:be:
                    95:9f:56:fe:f5:f3:21:fa:f4:17:3b:40:ff:c1:dc:07:
                    b4:9f:f5:58:01:3b:1f:8c:ba:b6:a9:ef:cc:63:56:a3:
                    49:78:d9:f0:ca:d7:3e:59:11:a8:57:68:22:a6:02:fd:
                    b5:4e:73:46:11:8a:6e:47:3f:13:f9:c4:28:2c:e1:80:
                    dd:bd:16:b0:5e:29:d8:e4:68:73:79:d5:98:df:fa:d0:
                    21:fc:e8:3a:50:d3:18:8e:81:8d:a4:05:ee:76:d5:5c:
                    7e:60:68:60:f7:48:56:ae:a4:c0:b5:3f:dd:7c:56:6c:
                    83:bc:93:90:d0:29:c1:20:49:fe:37:f0:0c:84:19:58:
                    bc:fc:ca:6c:59:4b:fb:05:df:cd:b1:5b:9e:b9:a6:fb:
                    53:37:64:4d:45:d1:3f:e5:e1:2b:1e:f8:68:ae:08:21:
                    81:be:27:42:c8:73:20:17:f4:23:60:2a:31:2b:ae:37:
                    d0:1e:dd:b6:62:82:18:7f:6c:14:64:1b:60:c3:cf:70:
                    3f:5f:2e:a1:37:d6:67:a9:dd:04:5e:bf:16:78:d5:ce:
                    f4:24:cb:85:f5:3a:c5:b5:88:0c:09:51:55:ed:dd:e5:
                    56:f8:e9:f9:9c:a7:5b:35:0a:ed:07:e3:cf:27:dd:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:22:f0:8e:1c:df:bb:f7:a1:fd:c8:86:57:d7:27:91:
        38:db:9b:32:38:9c:01:5a:f3:fb:d7:f4:a4:74:22:7d:
        55:84:7c:ba:54:9c:86:cf:f1:38:95:26:fd:67:60:5d:
        0f:8d:c2:d5:6f:36:09:07:86:f8:30:97:05:cc:80:13:
        d8:3c:b2:86:98:48:37:0d:23:09:f1:da:16:52:14:87:
        da:3e:1b:5b:1a:6d:c8:c2:54:9f:7e:a0:53:b7:4b:0a:
        9c:c5:a9:f6:d4:49:51:dd:61:ea:fe:30:16:16:32:1a:
        fc:68:bd:0b:b9:89:7f:3c:3e:8b:ee:07:99:32:5f:99:
        10:7e:d3:c8:53:d5:4f:13:5e:23:31:52:8f:3c:de:6d:
        84:c8:30:25:94:fa:02:d5:3b:bd:c9:0c:6e:e9:47:a8:
        66:d9:12:69:22:c3:31:69:6b:a3:a9:98:24:c6:6a:51:
        65:85:3d:e8:fd:c2:40:0d:9b:26:96:2f:76:b3:5c:8b:
        f1:50:64:f6:8b:6e:47:0c:06:45:47:2d:9b:2b:a6:31:
        da:a8:56:db:4b:88:5e:c4:f8:be:5a:7b:da:9d:5e:28:
        8b:dd:d1:f5:eb:c1:27:06:cb:7c:b4:12:ad:ef:c3:95:
        75:24:e0:4d:2c:e4:69:f0:59:a1:31:03:81:89:7b:92
    Fingerprint (SHA-256):
        FC:DF:74:8D:43:D9:6C:66:C3:68:57:E1:55:AB:EA:71:56:DB:9E:FD:49:7A:C0:01:DB:3A:99:0E:F3:38:5B:51
    Fingerprint (SHA1):
        24:C5:6E:A5:58:DD:FB:CC:13:BA:23:CB:29:D8:F2:DB:D6:85:3F:7F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3066: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3067: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3068: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3069: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120330 (0x1e67d18a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:19 2017
            Not After : Tue May 10 12:04:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:58:ec:36:20:8a:25:a3:36:17:45:19:98:7c:fd:be:
                    95:9f:56:fe:f5:f3:21:fa:f4:17:3b:40:ff:c1:dc:07:
                    b4:9f:f5:58:01:3b:1f:8c:ba:b6:a9:ef:cc:63:56:a3:
                    49:78:d9:f0:ca:d7:3e:59:11:a8:57:68:22:a6:02:fd:
                    b5:4e:73:46:11:8a:6e:47:3f:13:f9:c4:28:2c:e1:80:
                    dd:bd:16:b0:5e:29:d8:e4:68:73:79:d5:98:df:fa:d0:
                    21:fc:e8:3a:50:d3:18:8e:81:8d:a4:05:ee:76:d5:5c:
                    7e:60:68:60:f7:48:56:ae:a4:c0:b5:3f:dd:7c:56:6c:
                    83:bc:93:90:d0:29:c1:20:49:fe:37:f0:0c:84:19:58:
                    bc:fc:ca:6c:59:4b:fb:05:df:cd:b1:5b:9e:b9:a6:fb:
                    53:37:64:4d:45:d1:3f:e5:e1:2b:1e:f8:68:ae:08:21:
                    81:be:27:42:c8:73:20:17:f4:23:60:2a:31:2b:ae:37:
                    d0:1e:dd:b6:62:82:18:7f:6c:14:64:1b:60:c3:cf:70:
                    3f:5f:2e:a1:37:d6:67:a9:dd:04:5e:bf:16:78:d5:ce:
                    f4:24:cb:85:f5:3a:c5:b5:88:0c:09:51:55:ed:dd:e5:
                    56:f8:e9:f9:9c:a7:5b:35:0a:ed:07:e3:cf:27:dd:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:22:f0:8e:1c:df:bb:f7:a1:fd:c8:86:57:d7:27:91:
        38:db:9b:32:38:9c:01:5a:f3:fb:d7:f4:a4:74:22:7d:
        55:84:7c:ba:54:9c:86:cf:f1:38:95:26:fd:67:60:5d:
        0f:8d:c2:d5:6f:36:09:07:86:f8:30:97:05:cc:80:13:
        d8:3c:b2:86:98:48:37:0d:23:09:f1:da:16:52:14:87:
        da:3e:1b:5b:1a:6d:c8:c2:54:9f:7e:a0:53:b7:4b:0a:
        9c:c5:a9:f6:d4:49:51:dd:61:ea:fe:30:16:16:32:1a:
        fc:68:bd:0b:b9:89:7f:3c:3e:8b:ee:07:99:32:5f:99:
        10:7e:d3:c8:53:d5:4f:13:5e:23:31:52:8f:3c:de:6d:
        84:c8:30:25:94:fa:02:d5:3b:bd:c9:0c:6e:e9:47:a8:
        66:d9:12:69:22:c3:31:69:6b:a3:a9:98:24:c6:6a:51:
        65:85:3d:e8:fd:c2:40:0d:9b:26:96:2f:76:b3:5c:8b:
        f1:50:64:f6:8b:6e:47:0c:06:45:47:2d:9b:2b:a6:31:
        da:a8:56:db:4b:88:5e:c4:f8:be:5a:7b:da:9d:5e:28:
        8b:dd:d1:f5:eb:c1:27:06:cb:7c:b4:12:ad:ef:c3:95:
        75:24:e0:4d:2c:e4:69:f0:59:a1:31:03:81:89:7b:92
    Fingerprint (SHA-256):
        FC:DF:74:8D:43:D9:6C:66:C3:68:57:E1:55:AB:EA:71:56:DB:9E:FD:49:7A:C0:01:DB:3A:99:0E:F3:38:5B:51
    Fingerprint (SHA1):
        24:C5:6E:A5:58:DD:FB:CC:13:BA:23:CB:29:D8:F2:DB:D6:85:3F:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3070: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3071: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3072: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3073: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120337 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3075: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3076: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3077: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120338   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3078: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3079: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3080: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3081: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120339   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3082: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3083: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3084: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3085: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510120340   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3086: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3087: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3088: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3089: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3090: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3091: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120337 (0x1e67d191)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:23 2017
            Not After : Tue May 10 12:04:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:f1:f9:19:44:3d:87:ee:b7:72:e6:f1:4d:e3:b3:a5:
                    2a:ab:e2:a4:b0:4a:7e:64:f7:8d:de:b0:be:4f:a5:29:
                    a2:a3:2c:fb:e1:6f:a1:fc:e6:86:7c:19:20:98:b4:b3:
                    1d:07:d7:dc:5a:da:81:e4:23:7d:a8:0d:18:57:e1:46:
                    7d:53:9b:60:2a:58:87:54:b9:07:e0:23:6d:d6:69:9d:
                    05:5f:d6:31:7d:fc:2a:23:29:29:8d:65:40:39:e3:fc:
                    db:10:6d:ea:fa:7d:29:51:da:15:2f:50:e7:e8:32:45:
                    87:05:5d:a3:be:54:55:e2:16:a6:29:3d:78:a6:1a:fe:
                    ba:d5:4e:80:82:19:b9:ba:a7:f0:a2:cc:94:cc:8b:8d:
                    ce:76:56:94:2f:ef:5c:0a:73:41:14:c3:2a:94:3c:5b:
                    e0:56:20:0f:81:7a:bd:c7:6e:0e:64:7d:7e:34:03:72:
                    ff:f0:bb:32:9f:a3:da:99:2d:41:eb:25:85:1d:ae:cc:
                    d6:ac:1c:2f:07:38:b5:44:ed:c4:6b:68:5c:17:22:8c:
                    2f:3a:e9:3d:01:dd:38:0f:5a:bb:96:fe:c6:cd:17:c8:
                    87:8a:ef:a5:fe:c4:44:4a:a8:33:0c:11:56:fd:4b:4b:
                    65:5c:bc:79:9a:ec:83:3e:cc:e0:4c:87:31:db:59:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:ca:d4:8f:95:7a:4f:34:36:fd:ce:5e:e3:3a:07:16:
        a9:b8:94:b1:8a:bc:26:ba:81:2d:56:18:86:c0:6c:ec:
        79:25:11:e8:4d:c6:ae:a8:a5:f6:d6:58:09:5a:84:a5:
        be:bb:05:29:50:42:de:c7:28:cb:25:f7:4a:11:9c:4a:
        96:94:d2:a8:43:e5:01:dd:43:22:cb:7d:65:fc:97:9a:
        f4:d6:87:5d:aa:c7:5d:38:10:fe:ea:2a:c1:17:b7:17:
        80:8e:12:d5:b6:10:29:47:64:3f:eb:e8:20:1c:89:17:
        30:c7:88:c9:2b:47:b2:48:08:74:a9:ed:63:c0:2d:72:
        96:8a:4c:65:4c:51:22:b9:1f:eb:9c:68:a6:4e:d4:d6:
        70:b1:e6:7a:e6:8b:4e:6b:2e:8d:fc:57:2c:23:c3:98:
        af:02:30:ac:22:1a:b7:31:2e:e4:db:69:0b:64:3b:1b:
        16:b4:1b:ec:c0:56:03:7d:87:10:74:b3:b5:17:de:e2:
        94:c2:b3:3a:ba:d2:1a:bd:dd:72:b2:b7:bb:0d:a6:b1:
        96:9d:a2:79:99:27:c2:7d:8f:1b:f1:27:b3:cb:8e:3d:
        76:9a:39:0d:a8:68:f9:3e:f2:67:90:3c:e4:60:0d:bb:
        7d:83:0e:58:5a:d6:6b:eb:9c:f1:a2:34:29:74:25:72
    Fingerprint (SHA-256):
        DC:60:70:E6:67:AA:7B:99:78:4A:C0:6B:02:E6:C5:30:5A:CC:91:AE:62:0F:53:6B:DC:61:BB:4C:78:38:4D:5E
    Fingerprint (SHA1):
        B0:87:B4:CD:04:59:BC:B4:26:0D:D1:B2:BE:21:06:6E:C4:AD:EA:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3092: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3093: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3094: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120338 (0x1e67d192)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:25 2017
            Not After : Tue May 10 12:04:25 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:61:eb:d8:57:5f:e0:6f:60:0b:eb:2a:93:0d:53:4c:
                    06:b1:00:d5:5c:29:32:4c:70:f6:bf:88:d3:80:2d:87:
                    60:67:86:08:8f:59:b7:c2:c6:ca:ed:f3:96:3f:bd:c2:
                    62:c9:ee:1a:8d:b5:1e:d6:5d:ab:49:03:4f:75:97:a4:
                    12:44:86:57:ba:fb:6e:3f:7a:89:eb:c7:f6:2a:9e:c3:
                    30:09:2a:61:a9:33:7c:e9:ca:37:09:64:e7:08:8b:c0:
                    31:24:d5:44:09:5a:46:c3:a6:8d:05:6c:99:31:c5:14:
                    e6:31:e6:c7:48:0a:7b:dc:75:6b:68:9a:40:a5:51:4f:
                    08:13:59:21:ce:02:37:65:fb:a7:49:f8:bb:ec:e8:c0:
                    6c:8a:69:d1:c4:77:31:92:e7:f1:e6:d6:3a:a8:22:39:
                    56:8c:72:a1:14:d1:0d:53:ae:bb:25:08:88:7f:23:7e:
                    80:33:2b:c3:56:a6:9e:1c:32:5b:7e:2f:3d:7a:d2:70:
                    d7:b8:da:4d:6c:42:1d:9f:9d:ac:e1:6a:65:2c:83:b4:
                    55:5f:88:4a:7a:0e:3a:86:59:16:fa:d4:32:a5:6b:b6:
                    ff:f2:b5:07:33:c1:84:52:34:89:be:f9:6c:23:04:9c:
                    d4:ce:81:a0:5e:5a:e5:1d:b1:43:3c:7d:b2:7d:f3:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:39:18:91:19:60:f5:03:20:4f:a3:bc:7d:b9:da:a3:
        93:52:9f:73:7f:3d:b5:05:ff:65:54:88:e1:43:19:b0:
        a6:fa:2b:3e:35:34:dc:ec:92:49:01:0a:ca:1c:7b:80:
        9a:30:c3:5b:f8:87:e5:c8:72:84:f2:6b:8d:51:ee:89:
        08:41:51:49:f9:8a:0a:77:b8:8d:c2:06:54:59:e4:2c:
        ea:3d:d0:86:81:26:01:ba:90:6c:65:7c:5c:c1:60:c0:
        d1:54:e2:c7:c7:12:f8:85:d8:8b:73:24:44:33:c8:18:
        b2:1d:a0:57:42:e3:86:cf:5e:00:84:47:70:33:c5:f7:
        ba:4e:08:b9:af:cf:24:58:0d:e9:a6:20:70:36:cd:ad:
        62:60:d4:03:3a:4c:7d:9b:a0:48:6b:4c:20:ca:56:43:
        37:09:59:35:c2:a9:c6:ed:78:7a:fb:b0:15:70:64:6f:
        b2:a3:fa:49:db:b8:31:62:3d:9a:a0:2e:e4:e7:28:a3:
        e6:99:8b:1f:5d:86:f5:20:08:85:cf:ca:3c:2f:36:d8:
        a6:83:f7:a3:1c:6c:90:07:3f:09:ca:0d:68:9b:f5:f6:
        c9:e5:ec:b7:b5:9e:29:65:f0:b1:b3:cf:64:1d:2c:7c:
        32:ef:67:05:94:be:24:13:59:75:08:30:1d:4f:6f:11
    Fingerprint (SHA-256):
        CF:8F:4A:E0:67:6E:02:E0:A4:8C:C5:AC:53:0E:F8:B5:49:E5:A5:01:CB:C3:E8:7C:33:E9:EB:E7:E7:B9:32:7A
    Fingerprint (SHA1):
        9D:76:48:3D:22:43:40:F2:3B:14:A0:8B:C8:10:F9:E8:BD:99:C8:D6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3095: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3096: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120339 (0x1e67d193)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:04:25 2017
            Not After : Tue May 10 12:04:25 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:41:f5:71:b8:20:7f:f2:00:bf:3e:a8:79:f2:a1:c4:
                    7f:3f:ca:1a:d0:ae:bd:49:ef:ad:44:26:89:75:6e:4e:
                    b9:d4:7c:23:2c:9a:c1:af:a1:d6:93:c8:45:01:9a:7b:
                    2d:1d:a6:3e:bf:7c:6a:db:64:24:5f:5c:31:1b:e9:66:
                    f7:e8:8a:e4:93:5c:b5:ab:05:b0:71:8e:0c:1b:ef:47:
                    23:1f:d6:9e:c4:94:1b:61:6e:20:df:8f:b4:2b:19:e7:
                    27:a2:8d:44:7c:85:5e:0d:6c:27:d1:a2:77:be:fa:81:
                    8c:b6:a3:ae:f5:92:f1:6a:0d:93:05:ca:88:b7:07:b6:
                    a6:c9:f9:ad:f5:f4:7f:ff:18:f9:48:9d:eb:5f:b2:de:
                    5a:f9:a0:8e:4e:7f:c5:75:2b:f6:c2:33:f0:7d:cf:54:
                    ca:1f:bb:79:43:0f:3e:d5:5b:cb:95:43:9a:d7:15:eb:
                    a4:f8:94:7e:c4:7d:11:f9:4d:59:50:a3:19:b1:1c:d3:
                    fe:2a:a0:ee:bd:67:f2:a3:0a:03:9b:d1:3c:8d:49:ec:
                    9a:8e:d0:50:64:66:88:30:0f:1e:66:08:04:48:6f:d1:
                    6d:c4:6b:c0:0a:ff:e9:45:d0:c9:cc:4b:92:20:aa:8f:
                    b3:b8:19:8e:21:2a:29:ce:fa:02:5c:e0:59:a6:8d:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:a2:f2:aa:32:51:ee:86:73:94:d7:a2:6a:49:ce:24:
        ab:03:9f:56:ab:fa:a7:49:53:74:4c:44:f7:c8:b4:74:
        b9:ec:bd:ec:2c:5c:e9:fb:e5:72:f2:d7:08:54:83:3b:
        e5:5b:c9:9c:9d:13:bd:da:25:53:3a:a9:56:c5:ed:83:
        e3:57:b4:01:92:85:7a:53:66:65:44:7e:87:1e:41:98:
        d9:5d:9d:f7:b1:75:7a:3d:b7:eb:75:fc:52:28:01:61:
        7e:bb:25:67:34:a9:cb:b2:26:b6:2b:0a:65:6d:68:9b:
        77:3c:de:f6:01:99:7a:e8:99:e0:c7:2b:24:36:29:02:
        1c:10:38:d9:ba:09:03:0c:73:fc:aa:3d:13:0c:c7:d0:
        78:c7:88:97:0f:39:1c:15:cd:8e:3c:e6:4d:0b:54:b7:
        27:fb:dd:bb:01:cf:e4:60:81:f8:a1:b0:fa:5c:fd:09:
        ea:29:79:5f:6c:d4:23:ef:e6:06:f5:c4:eb:9c:1e:eb:
        43:17:a8:2d:f7:3b:80:d9:4c:8c:17:38:91:da:5a:d2:
        fc:56:06:ce:8b:80:ed:70:33:3d:e8:4f:7b:51:6a:c6:
        69:17:e4:d1:a2:6a:39:1b:ec:be:0b:1d:92:9c:54:41:
        e7:76:7f:9a:36:a6:de:d7:e6:74:af:db:d8:67:14:b3
    Fingerprint (SHA-256):
        3B:47:82:1F:7D:15:B0:45:EE:D6:72:53:87:45:DC:80:2F:5A:28:9C:86:46:5C:25:F4:86:85:4F:14:88:99:70
    Fingerprint (SHA1):
        47:57:A6:E6:1C:33:28:4E:45:74:B7:0E:8B:E3:2B:DE:C7:AE:DF:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3098: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120341 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3100: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3101: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3102: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120342   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3103: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3104: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3105: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3106: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120343   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3107: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3108: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3109: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3110: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510120344   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3111: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3112: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3113: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3114: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510120345   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3115: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3116: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3117: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3118: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3119: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3120: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3121: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120341 (0x1e67d195)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:27 2017
            Not After : Tue May 10 12:04:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:68:bb:16:c5:99:c1:34:af:13:40:0c:bd:ba:eb:a4:
                    74:e1:8f:bb:af:d2:a7:83:2c:c7:57:cd:e4:56:b7:e4:
                    73:c4:22:9d:0b:c5:c5:07:dc:f2:49:eb:52:17:20:19:
                    e2:ff:87:6f:f1:d6:8a:91:0a:0c:59:f5:d4:3c:96:15:
                    7a:67:78:4f:bf:72:9e:70:c6:5b:56:dc:a4:b1:9d:d3:
                    1e:e2:fa:27:12:dd:dc:0d:2e:a8:ba:a4:d0:a9:99:5f:
                    eb:54:f4:02:b5:b8:b6:b4:fc:9e:d2:75:92:b7:fd:b1:
                    f6:11:1d:b2:43:d4:75:a3:9e:14:e2:9a:f5:bb:0d:a5:
                    a0:37:f3:ec:74:53:60:e9:7a:67:13:4a:f8:6f:46:84:
                    f1:da:98:8d:af:c9:a0:9f:ca:e0:3b:84:36:ad:5f:71:
                    58:cf:67:9a:90:fc:89:88:c6:81:dd:72:fa:1a:a9:5a:
                    79:bf:f6:5d:8b:f8:2b:c0:e3:db:83:14:6c:17:20:6a:
                    ba:66:ae:70:4c:b8:f6:a7:5a:d5:a2:06:f0:66:a8:fd:
                    46:49:b0:9e:b1:44:1d:91:fc:26:2b:f6:b8:5f:b7:13:
                    95:f8:ee:96:11:87:6f:de:21:f8:69:62:3a:41:44:4c:
                    f0:95:d0:de:02:c9:65:0c:91:e2:49:99:6b:ff:17:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:9c:b0:b4:db:f9:8b:b5:fd:46:2b:fe:22:1f:7d:c0:
        26:87:3c:7c:1d:bc:66:60:18:b7:80:99:1c:24:5c:21:
        b8:03:e6:bc:a7:eb:fb:14:91:66:41:1d:dd:74:74:11:
        b7:ad:3f:dc:47:b2:2a:31:ea:e9:2d:0e:43:24:5a:e5:
        e5:30:72:ac:0d:04:29:b0:84:43:ab:0e:c0:6a:37:11:
        ca:b6:e0:a6:64:d2:0c:f6:2c:3a:f9:ab:55:26:f3:f0:
        00:14:31:51:7e:7d:5c:87:6f:57:7f:c2:98:56:99:df:
        ca:0f:b5:aa:93:a2:11:28:69:b3:d7:4f:65:ee:49:53:
        ae:09:28:21:0a:96:6f:83:89:36:a8:fc:fb:12:fe:b0:
        e5:f5:f2:70:7a:59:30:49:30:12:b1:d5:5e:78:e4:d7:
        8e:f6:e0:b8:ff:31:a1:16:4a:4a:c7:b0:d8:71:5d:f2:
        4f:0c:ef:a0:cd:fc:16:15:2e:19:4f:09:5f:8e:35:99:
        df:c1:6d:8a:97:43:99:16:6e:e9:15:49:0c:19:4f:1e:
        93:85:c0:9f:18:14:07:87:2f:65:cc:e3:fd:a7:4b:8f:
        00:52:e6:b6:5a:1a:d8:06:f5:3f:47:08:e8:2c:02:e1:
        b3:fb:d5:82:f0:df:d4:64:c9:01:71:b5:be:d7:09:15
    Fingerprint (SHA-256):
        C3:82:CE:7D:FB:40:6E:F3:F1:EE:05:1D:CA:D5:88:41:54:70:3C:BF:B6:FF:AC:99:76:AF:98:BD:4E:E7:5D:37
    Fingerprint (SHA1):
        9E:EC:C7:A0:D8:2B:DE:F6:88:8D:C8:F1:5D:96:16:16:81:42:C6:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3122: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3123: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120342 (0x1e67d196)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:27 2017
            Not After : Tue May 10 12:04:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:71:fe:29:4c:23:c2:44:48:3c:91:21:e0:8c:e2:2c:
                    26:92:28:89:e5:24:7a:8f:6e:ba:d4:57:ca:76:d1:17:
                    ba:ea:79:c3:1a:94:da:e2:66:d3:eb:d0:c4:12:74:65:
                    e1:3c:32:e9:3f:f6:8f:e7:40:06:90:6f:57:8b:1b:d9:
                    8e:05:ef:6c:69:25:75:8c:46:ad:60:d7:29:ca:29:ec:
                    94:ee:3b:b9:92:71:c5:bb:f3:86:fc:ba:a3:16:5d:31:
                    2c:38:15:e9:a6:96:bc:47:12:4e:65:d9:bc:ef:37:ea:
                    22:24:70:c2:9f:88:bb:bb:76:2b:b3:7a:85:a8:25:9b:
                    fa:34:1f:77:78:ba:30:12:45:9d:52:a0:58:ce:24:c4:
                    90:4f:b3:03:d6:0f:83:b5:09:2f:3c:a8:00:29:68:6c:
                    27:26:3f:aa:0d:0b:42:20:f1:91:cb:cd:31:50:5c:9c:
                    94:0a:f5:41:65:37:75:08:d8:12:c5:3d:54:65:45:cb:
                    7e:ff:33:64:b0:65:cd:6b:1f:15:c5:c5:4e:0c:82:03:
                    24:65:6c:08:b4:56:cc:3e:31:d8:18:2e:8c:10:c2:46:
                    59:12:2b:20:05:48:d7:37:c5:08:53:a1:22:3f:86:1a:
                    d3:f6:02:59:c0:7d:bb:b4:0d:46:e6:83:09:0d:6f:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:23:6a:7e:e0:b1:1d:fa:83:ae:4e:16:7c:05:7f:7b:
        f1:87:29:9a:61:eb:f7:2c:87:a9:27:33:56:31:7d:5a:
        9a:fe:15:78:52:52:f9:80:0b:7b:a0:91:67:bf:b5:78:
        f6:1d:40:72:d5:cc:b8:a1:66:62:a1:00:c0:7d:be:45:
        14:f7:02:1e:af:5c:05:00:32:6e:35:fc:f1:34:c1:51:
        54:41:d8:1d:e5:a5:b2:75:c2:62:c4:ff:2f:f1:42:0a:
        c4:fa:00:9d:cc:5d:b3:74:45:33:41:94:73:9a:11:fc:
        2e:a6:85:6d:54:84:e4:97:93:4b:2f:c5:5e:0d:7c:4c:
        26:bf:41:19:17:79:8a:e0:3d:37:07:a2:c7:e6:bb:13:
        24:7c:28:b4:10:26:74:2f:db:13:bd:e6:f4:8b:58:55:
        d1:eb:a9:04:60:1a:09:ce:77:fe:c7:11:5d:b4:07:da:
        cc:ed:4c:b2:8a:1b:82:9c:c9:a9:ff:fd:4c:36:2b:2c:
        da:1e:99:c1:70:a5:47:76:c0:94:2a:87:1c:22:94:09:
        02:3b:f1:d9:58:6f:15:3e:2d:20:ee:cf:de:64:8e:03:
        51:5e:1f:43:79:7b:01:e0:32:be:46:01:61:9f:10:de:
        99:7e:b5:42:27:cb:db:98:b0:32:ea:1b:ee:29:ea:dc
    Fingerprint (SHA-256):
        BC:5B:E7:C4:9E:5D:A6:B6:5B:83:DC:FD:69:30:59:11:43:96:A2:C0:98:1A:5D:23:8A:F4:14:05:B9:AA:FA:AF
    Fingerprint (SHA1):
        73:5B:EA:90:23:44:F6:3D:A9:AC:93:E4:4F:7F:BF:17:DF:EA:35:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3124: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3125: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3126: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120343 (0x1e67d197)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:04:28 2017
            Not After : Tue May 10 12:04:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:09:39:ce:97:39:4b:66:19:52:5c:1d:a4:90:02:ac:
                    78:fd:73:c1:5d:c7:05:58:f8:1b:1b:4c:ae:e5:67:8f:
                    b5:45:be:b2:8c:9c:80:f3:42:d5:94:cb:4e:51:84:f2:
                    4e:65:48:80:33:1c:f4:d7:a8:82:69:40:2f:63:5e:45:
                    8c:dc:ad:fe:55:21:4f:15:f2:64:03:c2:a7:ad:ef:9e:
                    6d:c0:e7:6e:0d:e2:c0:fd:85:5b:25:da:09:80:2d:64:
                    8a:33:dc:97:15:ef:7c:82:0e:1a:40:35:b2:e2:63:46:
                    f4:c2:55:9e:78:34:7a:f7:59:f4:df:cd:51:dd:2f:b4:
                    ae:34:bd:d9:73:3e:ff:de:15:eb:90:d2:a4:2b:5f:d8:
                    6d:5d:38:f5:44:96:c1:f4:80:27:6f:6b:6b:e3:03:eb:
                    77:f1:cc:f0:ad:50:b1:76:44:d4:84:1c:70:94:39:a3:
                    35:92:d4:25:78:15:98:24:03:a8:41:4d:e4:1e:a1:32:
                    33:e6:7b:18:d2:61:d0:42:d1:50:81:98:f7:03:0b:8d:
                    8f:db:0e:4d:af:d6:e2:8d:ca:90:3e:40:9d:0c:0d:54:
                    d5:91:c0:31:40:e8:06:39:16:90:32:2f:74:43:72:ce:
                    fa:a2:de:ef:41:d8:b5:c5:17:5d:1b:44:6c:0c:84:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:43:ec:7d:d4:76:a2:42:d2:49:cf:0c:e7:f7:a5:c2:
        7d:c2:66:c8:25:d5:0a:73:ca:cc:36:6f:4a:46:5b:f1:
        91:4c:c1:fc:31:b2:0a:4b:67:7d:37:dc:de:50:34:75:
        03:76:dc:e3:d6:bc:0d:33:6c:9e:fe:8a:b6:a5:a0:31:
        a2:7f:20:2f:87:ce:da:9e:80:4c:bd:53:8c:dd:bc:23:
        c7:9d:2d:64:ee:ae:c7:21:8c:d9:41:f7:3b:50:9e:b1:
        e9:be:88:4f:79:58:40:0b:e8:e3:d3:02:ff:58:cc:bb:
        82:f7:47:b7:b0:11:89:17:70:f0:07:f6:43:d5:4b:f7:
        9f:c8:77:b6:16:a2:aa:10:17:0b:4a:ca:e8:92:b4:61:
        a1:d8:9e:2a:f2:a3:84:eb:bf:df:79:e5:14:31:a5:88:
        89:0d:96:bc:f0:da:49:3e:13:ec:2b:32:9b:a0:46:b9:
        80:8e:c5:4c:dc:05:5f:34:9a:e6:fb:d9:2c:87:f3:ad:
        68:9f:39:b6:0c:13:97:87:84:ef:5a:4f:52:2a:d2:50:
        09:28:65:f0:72:63:5e:9c:c1:5d:a1:f4:dc:43:6e:90:
        5c:aa:8b:c2:23:3e:7a:50:fd:d0:9b:97:83:39:12:61:
        c0:0a:47:6f:0b:fd:f3:87:2b:34:0e:3e:38:e7:d2:4c
    Fingerprint (SHA-256):
        BA:47:AB:06:E5:4E:A0:11:36:BA:24:FD:0F:31:FE:9A:E3:B1:0A:B5:31:5F:E8:3C:1A:89:AD:F3:24:B3:B2:78
    Fingerprint (SHA1):
        87:33:C1:39:0F:B8:87:4F:1E:71:9D:2D:BF:9C:92:EB:31:CC:8A:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3127: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3128: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120346 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3129: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3130: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3131: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3132: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120347   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3133: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3134: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3135: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3136: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120348   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA1Root-510120255.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3137: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3138: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3139: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3140: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510120349   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3141: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3142: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3143: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120346 (0x1e67d19a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:31 2017
            Not After : Tue May 10 12:04:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:cd:f9:61:71:1e:0a:38:8e:92:38:0c:10:21:9c:d2:
                    7f:d3:94:24:38:c2:ab:3b:ec:f1:a5:fe:e3:a7:b3:19:
                    c3:55:c5:ab:f1:3a:55:ca:07:b7:c6:fe:ee:a3:ef:60:
                    36:58:3e:db:8a:a6:74:22:3f:81:1c:a1:50:5b:a4:35:
                    20:b1:ff:66:b6:62:fa:fc:04:86:88:f1:e8:c1:53:23:
                    5a:57:ea:c3:7e:78:be:81:1b:95:1a:04:99:5f:fe:30:
                    e7:a9:4e:cd:4d:a0:8f:93:d2:75:13:c0:2b:f9:9b:c1:
                    8c:9c:3a:94:a9:34:0d:50:5b:03:08:27:82:8d:d1:26:
                    ca:a4:15:2a:74:9a:7b:86:df:1d:c2:35:8b:d0:97:da:
                    42:e1:fa:f3:a8:23:09:70:46:b0:be:70:9e:8b:38:19:
                    4c:e0:af:e2:0e:eb:fe:d8:2c:df:1b:49:28:a3:88:ae:
                    ce:c2:8a:d7:21:6f:e8:e0:58:01:ef:47:7e:f6:b8:b3:
                    72:8d:08:31:a1:ac:16:c6:2f:e5:6c:b9:62:9e:cc:eb:
                    ec:2e:4b:75:c1:f4:04:12:df:a7:7f:4d:c2:07:0b:bf:
                    5a:2a:0f:69:7e:f9:02:e6:75:18:d3:55:1e:3e:92:fc:
                    0b:61:7d:e3:9d:3a:1a:d9:ab:8b:3d:48:00:51:eb:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:dc:b0:a4:5d:a6:07:fe:29:b4:48:11:52:e9:0a:27:
        3d:98:e7:66:93:df:c2:68:fc:ad:6c:a1:51:d5:c7:c2:
        21:f8:7c:21:0c:66:a4:a2:3c:33:0d:4a:44:ae:e0:af:
        54:03:9c:65:c2:e0:ab:0d:f9:a5:51:0d:6a:2c:53:6e:
        07:31:84:ed:25:cc:cd:d4:67:45:ff:b4:06:11:cf:f2:
        fd:50:55:92:de:27:58:e5:62:e9:41:a4:d0:75:a3:5f:
        85:af:2c:c7:ad:eb:41:0b:17:64:0f:2f:ab:a9:2d:11:
        64:73:ed:7d:9b:a4:a6:f2:97:65:7b:bc:9f:04:28:3a:
        bb:bc:1d:60:a8:1a:d9:10:98:1c:ba:9d:33:f4:2f:ba:
        18:ff:32:9d:96:67:a7:fc:8b:8e:14:a0:1e:67:9c:7b:
        76:97:ca:38:31:4a:02:6c:37:c3:fc:07:4f:90:79:99:
        be:24:cb:76:54:e5:6a:c3:f0:e3:43:89:e9:65:18:83:
        9f:3b:a9:80:50:5e:a8:08:ba:c0:2c:df:5c:2e:65:91:
        7e:07:d3:78:f9:50:c8:a9:ab:51:1b:9c:8b:39:5a:fa:
        f9:9b:68:11:9e:6d:fd:ff:21:ed:82:6e:63:11:e0:15:
        a9:90:ed:98:1d:d1:0c:e5:aa:b4:b0:7a:59:22:81:2b
    Fingerprint (SHA-256):
        10:5C:A6:D7:B0:6F:41:93:09:AD:F5:10:54:94:21:96:74:D1:EA:FA:FB:D8:12:0B:0D:2D:5E:AA:6F:2D:70:C2
    Fingerprint (SHA1):
        B9:E1:77:3E:15:A0:A0:99:C7:5B:9D:3C:A2:5F:7E:09:AC:B7:D9:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3144: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3145: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120350 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3147: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3148: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120351 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3149: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3150: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3151: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3152: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510120352 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3153: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510120353 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3155: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3156: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3157: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3158: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3159: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510120354   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510120256.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3160: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3161: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3162: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3163: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120355   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3164: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3165: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3166: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3167: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120351 (0x1e67d19f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:35 2017
            Not After : Tue May 10 12:04:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:ab:ce:1c:ce:58:ca:49:c5:66:48:61:a5:07:a1:5d:
                    e3:ba:b2:0d:d9:32:46:90:d1:e3:c8:c4:d7:b0:73:ce:
                    d6:7f:55:10:67:7b:85:df:4e:67:ff:a8:fa:51:9d:a0:
                    2d:31:33:83:ce:4a:ac:6d:ac:5e:7c:c2:9e:92:8e:1d:
                    f3:44:02:3f:01:1c:69:e6:d6:9a:ab:ca:9d:5b:1d:f2:
                    91:cd:12:91:76:f3:5a:b1:47:df:41:36:2f:6a:9f:69:
                    1f:2d:b1:9c:b6:31:ce:9b:18:45:3d:40:6e:61:07:8a:
                    f7:3d:b0:80:b2:60:5c:78:86:83:8d:0e:f0:43:10:0f:
                    da:e2:71:7d:44:13:a9:1c:a2:05:19:db:89:1e:8d:79:
                    51:b7:dd:a9:9d:9a:94:6d:11:05:3a:8e:8b:7a:4b:1d:
                    d8:39:9f:c2:15:0b:1e:0d:82:84:53:1d:0f:d1:dd:df:
                    6c:7d:26:22:22:52:4f:47:8d:49:d6:7b:50:83:ad:cd:
                    86:52:f6:02:e6:7b:e2:a9:11:34:1a:72:ba:61:ae:57:
                    26:c5:0d:9d:1d:53:fa:0a:0d:4f:c3:08:e2:56:69:50:
                    8c:e8:a1:be:23:c7:d4:0b:e1:c3:d4:cc:2c:c6:af:5c:
                    4b:b1:a0:03:74:a1:95:f9:7c:ce:c5:2e:73:4a:5b:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:73:a2:23:5f:cd:ad:34:d3:7b:32:46:2d:f4:49:2b:
        6e:96:66:23:c0:bd:1b:14:95:14:59:4e:f4:8d:01:35:
        fd:a5:8f:65:16:dc:0a:a8:3c:5d:47:89:f4:d6:d2:59:
        46:22:2e:e9:a6:39:05:ed:d1:6e:64:a7:5e:84:62:5f:
        07:06:eb:4a:69:30:34:49:fd:87:c6:38:bc:4a:9a:81:
        ac:bd:80:2c:bf:09:79:d0:26:a7:98:ce:a2:53:11:35:
        d2:90:cb:85:7a:c7:c9:c3:84:6b:c3:56:87:04:c2:61:
        3d:bd:49:84:71:5b:99:7c:ae:42:77:23:e2:7f:b8:0f:
        5c:ba:98:f7:70:0c:74:76:5f:f8:a9:9c:4c:c2:4b:4a:
        c2:e1:11:36:60:cc:f6:4b:29:84:b2:20:08:af:c2:fc:
        82:cd:df:0d:37:53:11:31:9b:04:7b:27:b0:6c:72:da:
        b8:6c:56:b0:bd:99:cd:56:ef:16:07:78:44:80:b8:09:
        4f:10:e3:c4:7a:6d:6f:7f:d1:35:f7:d4:bf:01:eb:f5:
        ca:75:eb:bd:2b:ec:9d:db:7f:40:00:96:83:2a:d2:37:
        0b:7f:aa:25:1b:4d:03:77:39:af:75:7a:af:fa:5c:82:
        1a:a1:65:4a:cc:20:fd:8d:af:14:b5:8d:7e:b8:59:ac
    Fingerprint (SHA-256):
        BC:51:1E:0B:1A:AD:42:67:51:AD:0C:8E:9A:73:FB:2B:DC:0A:D4:5C:02:88:B1:33:C7:60:8E:97:E9:13:93:20
    Fingerprint (SHA1):
        C7:B9:BD:4A:66:07:36:D0:89:F0:5D:A3:B6:14:98:2D:C2:07:7F:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3168: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120351 (0x1e67d19f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:35 2017
            Not After : Tue May 10 12:04:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:ab:ce:1c:ce:58:ca:49:c5:66:48:61:a5:07:a1:5d:
                    e3:ba:b2:0d:d9:32:46:90:d1:e3:c8:c4:d7:b0:73:ce:
                    d6:7f:55:10:67:7b:85:df:4e:67:ff:a8:fa:51:9d:a0:
                    2d:31:33:83:ce:4a:ac:6d:ac:5e:7c:c2:9e:92:8e:1d:
                    f3:44:02:3f:01:1c:69:e6:d6:9a:ab:ca:9d:5b:1d:f2:
                    91:cd:12:91:76:f3:5a:b1:47:df:41:36:2f:6a:9f:69:
                    1f:2d:b1:9c:b6:31:ce:9b:18:45:3d:40:6e:61:07:8a:
                    f7:3d:b0:80:b2:60:5c:78:86:83:8d:0e:f0:43:10:0f:
                    da:e2:71:7d:44:13:a9:1c:a2:05:19:db:89:1e:8d:79:
                    51:b7:dd:a9:9d:9a:94:6d:11:05:3a:8e:8b:7a:4b:1d:
                    d8:39:9f:c2:15:0b:1e:0d:82:84:53:1d:0f:d1:dd:df:
                    6c:7d:26:22:22:52:4f:47:8d:49:d6:7b:50:83:ad:cd:
                    86:52:f6:02:e6:7b:e2:a9:11:34:1a:72:ba:61:ae:57:
                    26:c5:0d:9d:1d:53:fa:0a:0d:4f:c3:08:e2:56:69:50:
                    8c:e8:a1:be:23:c7:d4:0b:e1:c3:d4:cc:2c:c6:af:5c:
                    4b:b1:a0:03:74:a1:95:f9:7c:ce:c5:2e:73:4a:5b:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:73:a2:23:5f:cd:ad:34:d3:7b:32:46:2d:f4:49:2b:
        6e:96:66:23:c0:bd:1b:14:95:14:59:4e:f4:8d:01:35:
        fd:a5:8f:65:16:dc:0a:a8:3c:5d:47:89:f4:d6:d2:59:
        46:22:2e:e9:a6:39:05:ed:d1:6e:64:a7:5e:84:62:5f:
        07:06:eb:4a:69:30:34:49:fd:87:c6:38:bc:4a:9a:81:
        ac:bd:80:2c:bf:09:79:d0:26:a7:98:ce:a2:53:11:35:
        d2:90:cb:85:7a:c7:c9:c3:84:6b:c3:56:87:04:c2:61:
        3d:bd:49:84:71:5b:99:7c:ae:42:77:23:e2:7f:b8:0f:
        5c:ba:98:f7:70:0c:74:76:5f:f8:a9:9c:4c:c2:4b:4a:
        c2:e1:11:36:60:cc:f6:4b:29:84:b2:20:08:af:c2:fc:
        82:cd:df:0d:37:53:11:31:9b:04:7b:27:b0:6c:72:da:
        b8:6c:56:b0:bd:99:cd:56:ef:16:07:78:44:80:b8:09:
        4f:10:e3:c4:7a:6d:6f:7f:d1:35:f7:d4:bf:01:eb:f5:
        ca:75:eb:bd:2b:ec:9d:db:7f:40:00:96:83:2a:d2:37:
        0b:7f:aa:25:1b:4d:03:77:39:af:75:7a:af:fa:5c:82:
        1a:a1:65:4a:cc:20:fd:8d:af:14:b5:8d:7e:b8:59:ac
    Fingerprint (SHA-256):
        BC:51:1E:0B:1A:AD:42:67:51:AD:0C:8E:9A:73:FB:2B:DC:0A:D4:5C:02:88:B1:33:C7:60:8E:97:E9:13:93:20
    Fingerprint (SHA1):
        C7:B9:BD:4A:66:07:36:D0:89:F0:5D:A3:B6:14:98:2D:C2:07:7F:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3169: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3170: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120356 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3171: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3172: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3173: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120357 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3174: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3175: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3176: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3177: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510120358 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3178: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3179: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510120359 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3180: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3181: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3182: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3183: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3184: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510120360   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510120257.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3185: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3186: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3187: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3188: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120361   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3189: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3190: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3191: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3192: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510120362   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-BridgeNavy-510120258.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3193: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3194: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3195: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3196: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510120363   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3197: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3198: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3199: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3200: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120357 (0x1e67d1a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:39 2017
            Not After : Tue May 10 12:04:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:71:20:d8:27:6e:18:c0:34:70:9b:ae:c2:40:3c:53:
                    61:3f:f9:d2:f5:4f:7b:82:fc:07:b8:67:c9:f0:92:14:
                    af:3d:74:a0:b5:9f:35:f5:98:87:0b:c8:d2:cc:8c:13:
                    47:38:e9:f4:cc:8f:32:b2:aa:a4:d8:6b:f8:ed:a5:f1:
                    ed:75:d3:95:5f:cd:42:11:f2:73:7f:82:ac:01:c9:49:
                    82:11:f8:e7:d4:14:39:ce:68:82:c1:1b:1f:2a:bb:d2:
                    05:4d:d2:4e:4a:32:b4:f1:a1:51:26:ed:41:8b:e0:c3:
                    81:1a:f1:33:42:4a:94:e5:56:26:67:2a:93:be:f2:3a:
                    00:95:79:77:99:f6:dd:17:5a:2a:55:d9:bd:e6:bd:ca:
                    c2:a7:e6:cf:54:9c:64:f3:b9:2e:bc:37:e6:e8:dc:93:
                    a0:ed:0e:d3:bb:18:87:55:1d:c6:c5:0b:00:11:2f:ed:
                    11:42:39:4a:45:ae:61:68:7e:d1:8e:15:b7:d9:dd:ef:
                    30:72:f2:6d:4b:7e:1b:7a:34:a7:28:4d:a6:02:86:63:
                    a2:ee:76:32:1c:20:af:1b:02:d9:ac:3a:ac:85:22:94:
                    47:89:c1:ef:3c:a4:04:84:ba:3d:5f:06:2e:f4:e9:e3:
                    4a:76:cb:03:b9:2d:26:68:71:19:4a:59:86:cd:c3:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:bc:b0:67:9c:5a:5f:72:db:95:91:87:44:79:cd:bd:
        65:7c:d5:1f:2b:88:34:db:cf:0d:f4:c0:31:a7:f8:05:
        80:dd:49:5c:71:b2:cc:b4:a6:84:66:9c:77:17:5c:c7:
        96:9b:0e:15:b3:94:ee:b6:5b:57:90:e8:ae:2a:90:5a:
        46:36:80:83:b2:6a:28:1d:5c:ec:8b:bd:4f:31:eb:b0:
        40:e6:80:0c:2d:47:f8:6a:67:a2:b7:30:8e:11:73:dc:
        ea:ae:8a:4c:6f:8f:1f:52:8d:f0:e1:78:9a:f5:75:c9:
        ec:1f:db:31:6d:76:9f:d9:de:40:41:62:04:8b:93:41:
        1b:33:b5:f9:fb:b6:92:39:46:4d:a5:7d:22:03:02:31:
        29:bc:c9:aa:cb:ea:4f:cc:eb:95:2b:21:2f:bc:cb:b9:
        ac:d5:22:40:5a:1a:04:6d:49:16:38:6b:35:27:e0:a0:
        35:f3:37:2b:b4:72:e0:96:59:e9:6f:05:0a:fe:e4:52:
        53:bd:12:75:2f:7a:fa:75:b8:be:dd:f2:49:d9:0a:93:
        3b:22:5d:81:89:d8:8b:af:50:f8:d0:33:04:5a:2d:a4:
        4e:05:ba:2a:75:40:d8:aa:e2:15:f4:f6:af:9a:bf:3d:
        fe:ca:4d:02:47:bf:53:8c:b5:d1:63:0c:9b:fd:ca:f6
    Fingerprint (SHA-256):
        20:AE:B6:62:D6:F7:BB:E2:4D:4D:B7:F6:F2:3E:7F:14:AE:C7:C0:57:41:7C:7C:18:87:52:2F:44:B9:16:F5:16
    Fingerprint (SHA1):
        32:E4:C0:D2:E3:AF:E9:F4:10:38:A0:1C:04:DF:9C:6C:23:5F:5E:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3201: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120357 (0x1e67d1a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:39 2017
            Not After : Tue May 10 12:04:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:71:20:d8:27:6e:18:c0:34:70:9b:ae:c2:40:3c:53:
                    61:3f:f9:d2:f5:4f:7b:82:fc:07:b8:67:c9:f0:92:14:
                    af:3d:74:a0:b5:9f:35:f5:98:87:0b:c8:d2:cc:8c:13:
                    47:38:e9:f4:cc:8f:32:b2:aa:a4:d8:6b:f8:ed:a5:f1:
                    ed:75:d3:95:5f:cd:42:11:f2:73:7f:82:ac:01:c9:49:
                    82:11:f8:e7:d4:14:39:ce:68:82:c1:1b:1f:2a:bb:d2:
                    05:4d:d2:4e:4a:32:b4:f1:a1:51:26:ed:41:8b:e0:c3:
                    81:1a:f1:33:42:4a:94:e5:56:26:67:2a:93:be:f2:3a:
                    00:95:79:77:99:f6:dd:17:5a:2a:55:d9:bd:e6:bd:ca:
                    c2:a7:e6:cf:54:9c:64:f3:b9:2e:bc:37:e6:e8:dc:93:
                    a0:ed:0e:d3:bb:18:87:55:1d:c6:c5:0b:00:11:2f:ed:
                    11:42:39:4a:45:ae:61:68:7e:d1:8e:15:b7:d9:dd:ef:
                    30:72:f2:6d:4b:7e:1b:7a:34:a7:28:4d:a6:02:86:63:
                    a2:ee:76:32:1c:20:af:1b:02:d9:ac:3a:ac:85:22:94:
                    47:89:c1:ef:3c:a4:04:84:ba:3d:5f:06:2e:f4:e9:e3:
                    4a:76:cb:03:b9:2d:26:68:71:19:4a:59:86:cd:c3:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:bc:b0:67:9c:5a:5f:72:db:95:91:87:44:79:cd:bd:
        65:7c:d5:1f:2b:88:34:db:cf:0d:f4:c0:31:a7:f8:05:
        80:dd:49:5c:71:b2:cc:b4:a6:84:66:9c:77:17:5c:c7:
        96:9b:0e:15:b3:94:ee:b6:5b:57:90:e8:ae:2a:90:5a:
        46:36:80:83:b2:6a:28:1d:5c:ec:8b:bd:4f:31:eb:b0:
        40:e6:80:0c:2d:47:f8:6a:67:a2:b7:30:8e:11:73:dc:
        ea:ae:8a:4c:6f:8f:1f:52:8d:f0:e1:78:9a:f5:75:c9:
        ec:1f:db:31:6d:76:9f:d9:de:40:41:62:04:8b:93:41:
        1b:33:b5:f9:fb:b6:92:39:46:4d:a5:7d:22:03:02:31:
        29:bc:c9:aa:cb:ea:4f:cc:eb:95:2b:21:2f:bc:cb:b9:
        ac:d5:22:40:5a:1a:04:6d:49:16:38:6b:35:27:e0:a0:
        35:f3:37:2b:b4:72:e0:96:59:e9:6f:05:0a:fe:e4:52:
        53:bd:12:75:2f:7a:fa:75:b8:be:dd:f2:49:d9:0a:93:
        3b:22:5d:81:89:d8:8b:af:50:f8:d0:33:04:5a:2d:a4:
        4e:05:ba:2a:75:40:d8:aa:e2:15:f4:f6:af:9a:bf:3d:
        fe:ca:4d:02:47:bf:53:8c:b5:d1:63:0c:9b:fd:ca:f6
    Fingerprint (SHA-256):
        20:AE:B6:62:D6:F7:BB:E2:4D:4D:B7:F6:F2:3E:7F:14:AE:C7:C0:57:41:7C:7C:18:87:52:2F:44:B9:16:F5:16
    Fingerprint (SHA1):
        32:E4:C0:D2:E3:AF:E9:F4:10:38:A0:1C:04:DF:9C:6C:23:5F:5E:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3202: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3203: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120356 (0x1e67d1a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:04:38 2017
            Not After : Tue May 10 12:04:38 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:55:bb:db:23:dc:5b:5c:62:73:ad:4f:18:ba:6b:59:
                    d0:22:b5:6a:8c:02:ba:38:51:38:40:bc:8b:5f:91:bf:
                    d3:63:be:5a:3e:ca:76:53:c8:1f:03:25:b2:8f:bc:ce:
                    9a:6f:de:4d:2e:6b:59:da:ea:6c:61:14:a6:9e:d3:a2:
                    48:9d:7c:1c:47:1d:1d:19:6b:fd:6b:f2:cb:89:e1:b1:
                    34:6b:7f:98:e5:c3:36:64:e0:10:4a:83:51:46:4b:60:
                    df:38:23:3c:9a:b8:75:0a:41:51:25:91:04:7b:a0:1d:
                    6e:91:5f:40:aa:d8:a4:9a:72:e6:08:b4:e6:89:c0:44:
                    c7:bd:cc:5f:1b:2a:56:d7:28:d1:29:cf:39:3b:ce:5c:
                    b4:63:33:47:3f:7a:8c:b8:50:b0:49:35:5c:ee:1f:dc:
                    d0:5e:bf:16:d5:3e:4e:2c:18:30:ca:f5:59:f1:26:5e:
                    d0:d2:5e:03:d0:55:40:81:77:c0:3f:d3:6b:3c:b0:c2:
                    8b:c4:d3:a7:3d:09:81:0e:4b:3b:70:b2:7c:8b:4a:f9:
                    e5:33:51:69:b9:69:ad:1e:1e:24:aa:4f:af:73:aa:33:
                    bc:eb:da:65:42:bc:07:64:e5:25:91:37:4c:31:a3:a4:
                    18:e3:a1:0e:4d:a4:29:0e:79:48:32:20:98:81:b9:81
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:63:f4:f8:2b:8e:da:a1:0f:80:97:6f:46:06:95:a7:
        3b:78:20:ca:fa:0d:6b:48:97:81:9f:de:4d:b8:92:3e:
        7b:bc:f1:f1:47:14:d1:19:43:7d:9e:7c:69:a1:ae:15:
        6e:3b:80:76:52:06:16:82:a1:07:6c:a3:6c:5c:40:c5:
        18:e0:f9:5c:6a:74:d1:da:32:d9:fe:38:f3:a0:c9:a8:
        91:49:c7:ac:bb:84:7f:88:14:12:03:aa:83:dd:0a:93:
        89:6d:68:70:79:24:45:b7:f5:36:09:ee:90:99:d7:4f:
        6f:a6:c2:00:e3:3f:56:9a:31:7b:23:b7:23:4f:cf:d8:
        5d:19:c2:2a:2f:3b:ac:a9:a7:5c:91:f1:36:e7:6c:e9:
        d4:10:99:55:0f:c9:df:a5:62:21:eb:ca:0f:fd:9b:76:
        1a:01:c1:a4:c7:44:5b:d9:8c:d7:45:6b:45:49:7d:0b:
        26:a7:89:f8:cd:fb:46:b4:db:3e:49:03:97:14:da:f2:
        b6:7a:c0:46:c9:de:42:8e:0f:7e:39:a1:09:c1:b6:a3:
        70:e2:56:41:44:2f:e6:4a:ad:3e:cc:19:72:0a:26:b3:
        b0:db:72:00:58:fb:d6:e7:90:be:c8:69:42:62:2c:77:
        e6:de:d5:fa:59:0e:d1:90:bd:e1:e9:80:ae:fd:d1:c1
    Fingerprint (SHA-256):
        9C:FE:EE:DE:99:6A:A9:1D:3A:41:A3:D3:DD:9A:3B:80:5E:C9:67:86:F6:41:99:AF:3A:4B:07:6E:96:CD:1D:CA
    Fingerprint (SHA1):
        67:CF:18:D8:53:F1:72:94:77:28:91:99:EB:52:21:75:61:EF:FE:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3204: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120357 (0x1e67d1a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:39 2017
            Not After : Tue May 10 12:04:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:71:20:d8:27:6e:18:c0:34:70:9b:ae:c2:40:3c:53:
                    61:3f:f9:d2:f5:4f:7b:82:fc:07:b8:67:c9:f0:92:14:
                    af:3d:74:a0:b5:9f:35:f5:98:87:0b:c8:d2:cc:8c:13:
                    47:38:e9:f4:cc:8f:32:b2:aa:a4:d8:6b:f8:ed:a5:f1:
                    ed:75:d3:95:5f:cd:42:11:f2:73:7f:82:ac:01:c9:49:
                    82:11:f8:e7:d4:14:39:ce:68:82:c1:1b:1f:2a:bb:d2:
                    05:4d:d2:4e:4a:32:b4:f1:a1:51:26:ed:41:8b:e0:c3:
                    81:1a:f1:33:42:4a:94:e5:56:26:67:2a:93:be:f2:3a:
                    00:95:79:77:99:f6:dd:17:5a:2a:55:d9:bd:e6:bd:ca:
                    c2:a7:e6:cf:54:9c:64:f3:b9:2e:bc:37:e6:e8:dc:93:
                    a0:ed:0e:d3:bb:18:87:55:1d:c6:c5:0b:00:11:2f:ed:
                    11:42:39:4a:45:ae:61:68:7e:d1:8e:15:b7:d9:dd:ef:
                    30:72:f2:6d:4b:7e:1b:7a:34:a7:28:4d:a6:02:86:63:
                    a2:ee:76:32:1c:20:af:1b:02:d9:ac:3a:ac:85:22:94:
                    47:89:c1:ef:3c:a4:04:84:ba:3d:5f:06:2e:f4:e9:e3:
                    4a:76:cb:03:b9:2d:26:68:71:19:4a:59:86:cd:c3:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:bc:b0:67:9c:5a:5f:72:db:95:91:87:44:79:cd:bd:
        65:7c:d5:1f:2b:88:34:db:cf:0d:f4:c0:31:a7:f8:05:
        80:dd:49:5c:71:b2:cc:b4:a6:84:66:9c:77:17:5c:c7:
        96:9b:0e:15:b3:94:ee:b6:5b:57:90:e8:ae:2a:90:5a:
        46:36:80:83:b2:6a:28:1d:5c:ec:8b:bd:4f:31:eb:b0:
        40:e6:80:0c:2d:47:f8:6a:67:a2:b7:30:8e:11:73:dc:
        ea:ae:8a:4c:6f:8f:1f:52:8d:f0:e1:78:9a:f5:75:c9:
        ec:1f:db:31:6d:76:9f:d9:de:40:41:62:04:8b:93:41:
        1b:33:b5:f9:fb:b6:92:39:46:4d:a5:7d:22:03:02:31:
        29:bc:c9:aa:cb:ea:4f:cc:eb:95:2b:21:2f:bc:cb:b9:
        ac:d5:22:40:5a:1a:04:6d:49:16:38:6b:35:27:e0:a0:
        35:f3:37:2b:b4:72:e0:96:59:e9:6f:05:0a:fe:e4:52:
        53:bd:12:75:2f:7a:fa:75:b8:be:dd:f2:49:d9:0a:93:
        3b:22:5d:81:89:d8:8b:af:50:f8:d0:33:04:5a:2d:a4:
        4e:05:ba:2a:75:40:d8:aa:e2:15:f4:f6:af:9a:bf:3d:
        fe:ca:4d:02:47:bf:53:8c:b5:d1:63:0c:9b:fd:ca:f6
    Fingerprint (SHA-256):
        20:AE:B6:62:D6:F7:BB:E2:4D:4D:B7:F6:F2:3E:7F:14:AE:C7:C0:57:41:7C:7C:18:87:52:2F:44:B9:16:F5:16
    Fingerprint (SHA1):
        32:E4:C0:D2:E3:AF:E9:F4:10:38:A0:1C:04:DF:9C:6C:23:5F:5E:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3205: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120357 (0x1e67d1a5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:39 2017
            Not After : Tue May 10 12:04:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:71:20:d8:27:6e:18:c0:34:70:9b:ae:c2:40:3c:53:
                    61:3f:f9:d2:f5:4f:7b:82:fc:07:b8:67:c9:f0:92:14:
                    af:3d:74:a0:b5:9f:35:f5:98:87:0b:c8:d2:cc:8c:13:
                    47:38:e9:f4:cc:8f:32:b2:aa:a4:d8:6b:f8:ed:a5:f1:
                    ed:75:d3:95:5f:cd:42:11:f2:73:7f:82:ac:01:c9:49:
                    82:11:f8:e7:d4:14:39:ce:68:82:c1:1b:1f:2a:bb:d2:
                    05:4d:d2:4e:4a:32:b4:f1:a1:51:26:ed:41:8b:e0:c3:
                    81:1a:f1:33:42:4a:94:e5:56:26:67:2a:93:be:f2:3a:
                    00:95:79:77:99:f6:dd:17:5a:2a:55:d9:bd:e6:bd:ca:
                    c2:a7:e6:cf:54:9c:64:f3:b9:2e:bc:37:e6:e8:dc:93:
                    a0:ed:0e:d3:bb:18:87:55:1d:c6:c5:0b:00:11:2f:ed:
                    11:42:39:4a:45:ae:61:68:7e:d1:8e:15:b7:d9:dd:ef:
                    30:72:f2:6d:4b:7e:1b:7a:34:a7:28:4d:a6:02:86:63:
                    a2:ee:76:32:1c:20:af:1b:02:d9:ac:3a:ac:85:22:94:
                    47:89:c1:ef:3c:a4:04:84:ba:3d:5f:06:2e:f4:e9:e3:
                    4a:76:cb:03:b9:2d:26:68:71:19:4a:59:86:cd:c3:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2a:bc:b0:67:9c:5a:5f:72:db:95:91:87:44:79:cd:bd:
        65:7c:d5:1f:2b:88:34:db:cf:0d:f4:c0:31:a7:f8:05:
        80:dd:49:5c:71:b2:cc:b4:a6:84:66:9c:77:17:5c:c7:
        96:9b:0e:15:b3:94:ee:b6:5b:57:90:e8:ae:2a:90:5a:
        46:36:80:83:b2:6a:28:1d:5c:ec:8b:bd:4f:31:eb:b0:
        40:e6:80:0c:2d:47:f8:6a:67:a2:b7:30:8e:11:73:dc:
        ea:ae:8a:4c:6f:8f:1f:52:8d:f0:e1:78:9a:f5:75:c9:
        ec:1f:db:31:6d:76:9f:d9:de:40:41:62:04:8b:93:41:
        1b:33:b5:f9:fb:b6:92:39:46:4d:a5:7d:22:03:02:31:
        29:bc:c9:aa:cb:ea:4f:cc:eb:95:2b:21:2f:bc:cb:b9:
        ac:d5:22:40:5a:1a:04:6d:49:16:38:6b:35:27:e0:a0:
        35:f3:37:2b:b4:72:e0:96:59:e9:6f:05:0a:fe:e4:52:
        53:bd:12:75:2f:7a:fa:75:b8:be:dd:f2:49:d9:0a:93:
        3b:22:5d:81:89:d8:8b:af:50:f8:d0:33:04:5a:2d:a4:
        4e:05:ba:2a:75:40:d8:aa:e2:15:f4:f6:af:9a:bf:3d:
        fe:ca:4d:02:47:bf:53:8c:b5:d1:63:0c:9b:fd:ca:f6
    Fingerprint (SHA-256):
        20:AE:B6:62:D6:F7:BB:E2:4D:4D:B7:F6:F2:3E:7F:14:AE:C7:C0:57:41:7C:7C:18:87:52:2F:44:B9:16:F5:16
    Fingerprint (SHA1):
        32:E4:C0:D2:E3:AF:E9:F4:10:38:A0:1C:04:DF:9C:6C:23:5F:5E:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3206: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3207: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120364 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3208: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3209: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3210: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120365 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3211: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3212: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3213: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3214: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510120366   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3215: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3216: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3217: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3218: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510120367   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3219: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3220: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3221: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3222: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510120368 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3223: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3224: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510120369 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3225: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3227: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3228: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3229: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510120370   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3230: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3231: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3232: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3233: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510120371   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3234: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3235: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3236: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3237: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120372   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3238: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3239: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3240: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3241: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510120373   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3242: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3243: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3244: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120364 (0x1e67d1ac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:04:45 2017
            Not After : Tue May 10 12:04:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:be:df:92:6e:87:96:90:67:20:02:36:1c:53:57:8b:
                    6a:97:29:6b:06:63:9a:f0:01:bd:25:b7:c5:ea:0a:ef:
                    77:f3:d2:3c:23:63:84:5b:cd:2a:2a:a7:d5:fe:72:a3:
                    50:52:03:36:75:2f:97:8a:2b:b6:47:e5:13:0e:3c:82:
                    8e:22:35:71:b0:76:4a:fd:80:05:67:4c:ce:cb:43:9d:
                    a4:97:8b:71:40:ba:71:bf:fb:2a:4c:4b:32:b0:fd:97:
                    a0:48:a3:e5:2c:8d:17:73:70:0c:2a:3d:8c:07:84:a1:
                    38:73:51:79:84:ca:fe:f7:88:90:45:52:09:cf:54:19:
                    fa:ad:2d:fb:d1:d0:d4:1a:44:c3:17:2c:b3:99:df:85:
                    e5:83:02:30:ac:b5:c9:ab:e7:7d:1b:63:54:7a:5f:be:
                    07:d3:b1:6c:33:e7:03:b0:c2:c2:4b:fb:05:7e:5f:58:
                    3d:ed:55:35:c7:35:71:71:a8:5c:84:73:78:7e:18:d2:
                    1c:26:18:bf:88:d1:93:cf:4e:c9:fb:3c:4e:e3:46:45:
                    74:6e:22:1a:70:4d:7c:58:b3:0b:06:05:92:9b:5a:cd:
                    06:fa:62:cd:6f:12:43:c6:08:92:c9:e2:aa:bc:24:99:
                    2b:93:d5:7e:3c:f4:38:59:85:29:c7:36:d7:36:66:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:e9:86:8d:68:50:75:cd:e8:d5:f9:56:17:b2:00:cc:
        47:32:b9:16:06:28:ae:33:cd:2e:c2:5e:0a:63:9b:86:
        0d:34:d4:12:7f:bb:12:de:92:12:3e:93:a0:39:74:5a:
        af:14:d7:39:98:4e:94:c6:ad:c5:a7:1d:29:77:7f:d0:
        d3:cd:35:62:25:e8:ee:a7:e0:11:7a:f2:36:8e:b6:e1:
        dc:f4:5c:ae:9b:a0:30:04:c7:20:10:78:c2:ec:74:13:
        58:92:24:3d:90:ee:c6:0e:36:6e:b4:44:62:98:ad:76:
        dc:1e:84:cd:de:2d:4e:3b:ea:ed:cf:2c:e0:3c:f8:be:
        fb:4d:4f:43:7b:ee:e9:06:6d:f2:0b:dc:a9:22:b5:73:
        d0:ff:2f:24:17:c7:77:d1:b2:49:c4:cf:a0:f9:91:70:
        1e:33:65:87:de:ba:f9:66:d0:5c:db:0c:1f:fc:64:b6:
        62:75:0e:d7:cc:98:ec:a7:23:44:c4:05:db:cb:dc:de:
        df:f5:d4:39:92:35:65:36:12:9a:a5:42:b7:c3:7b:06:
        cc:7d:ff:ac:87:e3:b0:bd:ce:02:6d:28:23:5c:ed:4b:
        3b:cd:a0:d5:e2:66:8f:28:5f:78:92:f9:c8:eb:a7:72:
        17:84:3c:d6:b3:65:54:f5:32:e6:71:5a:ed:f7:94:a9
    Fingerprint (SHA-256):
        40:27:04:A5:B3:97:49:D3:67:5B:0A:89:3F:6A:16:BB:D9:40:F3:76:73:2D:8B:7F:09:0F:C7:29:C1:F8:5A:E0
    Fingerprint (SHA1):
        DD:97:48:A1:EC:B8:AB:D2:89:7C:84:37:E5:37:87:CF:E3:4B:58:71
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3245: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3246: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3247: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3248: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3249: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3250: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3251: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3252: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3253: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120365 (0x1e67d1ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:04:46 2017
            Not After : Tue May 10 12:04:46 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:17:a4:bc:d5:6e:7b:51:bb:ef:81:d5:4f:a9:fc:5b:
                    c8:ad:b5:1a:7d:31:fc:08:52:94:db:ee:56:e1:32:db:
                    8f:73:9e:9b:9e:71:c1:9c:7f:ac:ed:dd:9b:85:0d:c8:
                    dc:b5:c5:03:7a:10:bb:ad:28:8b:8e:05:b3:99:df:2f:
                    d9:ab:7f:19:77:6a:2e:c2:c5:b4:6f:85:25:61:6a:9c:
                    34:b8:a0:25:86:3c:e5:25:40:d1:f3:b9:59:89:1b:bc:
                    58:dc:1d:b2:3b:74:9f:43:ff:f9:6d:dd:de:b9:7b:60:
                    30:79:3a:e0:92:d8:72:ec:ab:47:f4:c0:f8:3c:88:88:
                    cb:04:33:c7:48:2a:09:32:48:af:19:1c:3b:d9:b8:df:
                    74:68:c2:12:9a:25:1e:84:2c:f7:fc:ff:51:66:c7:c2:
                    98:f2:25:9f:ed:e9:1f:c8:f2:1c:75:18:3c:a7:86:ea:
                    97:d2:57:21:b8:3e:b7:ef:43:29:e2:69:22:44:f8:d4:
                    0d:96:c0:07:31:ce:6b:80:bd:3b:13:47:e4:81:d7:42:
                    e4:73:e7:4e:61:7d:ec:19:8e:65:1d:c7:7e:47:34:13:
                    4c:a4:7f:17:64:96:88:20:6e:59:33:55:cf:18:47:c3:
                    2e:ec:77:31:e1:21:b4:94:18:b7:fd:98:6d:95:88:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:6f:43:b0:c0:29:5d:a4:0a:24:d6:1f:98:59:bf:b4:
        1a:27:9e:37:1a:31:74:0d:51:21:17:9a:72:69:f0:40:
        5d:68:74:88:23:85:a4:a3:78:b9:5e:8d:0c:da:42:74:
        22:22:f4:03:b9:42:fe:c8:eb:2a:b1:b6:6d:a6:c3:c6:
        d9:57:b8:7d:9e:e6:dc:cd:cf:4a:de:31:85:31:27:54:
        d8:2c:f9:87:8f:69:d1:e0:2b:22:7b:a0:9c:13:97:b3:
        ef:cb:49:a3:d9:62:95:46:72:04:43:90:73:7c:93:eb:
        3d:b2:8b:3c:a0:f1:35:14:fd:56:d4:03:f5:fc:36:bf:
        ea:33:10:7a:5b:c9:e2:f0:5e:e3:bd:a9:7b:25:a1:68:
        bc:9a:3f:f0:e4:6d:91:fb:32:9e:f8:d6:1f:50:24:f4:
        1b:66:85:3b:94:d1:fa:8b:0f:4c:a0:32:b0:fa:cc:70:
        97:49:e8:2a:cc:b0:1f:8c:29:4b:58:45:69:be:07:be:
        35:12:86:47:ef:ac:5f:dc:a7:cf:9e:b7:00:7c:7e:c7:
        16:46:c2:3e:16:2c:02:43:33:f7:4c:2b:d1:a9:75:2d:
        84:94:c8:bc:aa:cd:1e:22:34:6d:29:b9:3d:b4:3a:81:
        cb:59:82:90:36:97:aa:3d:7c:2b:26:28:c1:71:a9:67
    Fingerprint (SHA-256):
        41:94:16:03:D7:DF:5D:98:1C:62:41:5F:97:BD:29:2D:06:51:00:31:C9:2F:CB:DF:D7:25:B1:DA:B3:4A:B0:BA
    Fingerprint (SHA1):
        D0:0F:BA:EE:21:A8:85:5E:A9:87:0E:39:33:C5:28:A1:E3:DD:82:D5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3254: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3255: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3256: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3257: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3258: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3259: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3260: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3261: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3262: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3263: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3264: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3265: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3266: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3267: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3268: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3269: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3270: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3271: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3272: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120374 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3273: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3274: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3275: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3276: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120375   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3277: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3278: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3279: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3280: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120376   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3281: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3282: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3283: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3284: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510120377   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3285: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3286: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3287: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3288: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510120378   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3289: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3290: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3291: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3292: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510120379   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3293: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3294: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3295: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3296: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510120380   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3297: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3298: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3299: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3300: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510120381   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3301: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3302: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3303: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3304: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510120382   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3305: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3306: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3307: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120374 (0x1e67d1b6)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:54 2017
            Not After : Tue May 10 12:04:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    43:61:77:24:25:1f:9f:8f:05:67:7d:55:77:04:f0:00:
                    e3:21:a4:df:a3:1e:27:ae:42:69:cc:c5:64:06:53:b5:
                    15:82:74:4b:a1:e1:0e:91:e2:cd:58:ce:fd:78:ec:2d:
                    ca:4a:be:d5:51:89:be:b2:e3:24:b9:a2:fa:a1:44:a3:
                    98:16:7c:f3:14:53:10:21:5e:a4:eb:d0:b8:e8:05:44:
                    88:7b:88:21:d6:25:16:95:e3:27:b8:6e:9f:96:ae:85:
                    ec:9b:5a:4d:6b:63:fa:2c:26:64:bc:55:2c:1d:d7:4b:
                    e6:fb:01:fc:dc:4b:b5:51:4f:42:8f:06:4f:94:12:ca:
                    ec:8e:50:dd:0a:55:01:a1:c7:f5:b6:8f:66:a3:e5:0d:
                    fb:b9:47:ad:c1:fd:93:e0:6d:03:e9:70:f8:6a:61:f8:
                    18:72:c7:e3:0d:d9:2b:f0:c2:8b:8f:4d:05:1f:f6:6f:
                    35:96:67:ed:de:04:8b:0f:82:b2:e0:98:a5:21:34:d7:
                    86:d0:02:3a:6e:53:09:7d:9c:64:06:ea:20:f5:24:e8:
                    84:17:49:67:e4:eb:92:a2:2b:6c:bd:f3:ed:f4:f1:a9:
                    9d:b7:bf:79:dc:fc:67:16:9e:f9:12:d0:78:c9:06:fe:
                    73:e8:56:c8:34:88:03:27:ec:aa:87:bc:7f:8d:c9:4a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:59:50:b3:3a:26:35:5d:4e:49:da:7c:33:
        01:24:ee:86:21:b0:d6:65:ee:36:5c:bb:64:62:91:df:
        02:1c:07:d6:4c:46:95:83:45:69:25:0c:30:47:1e:cb:
        00:4d:40:3a:26:a8:ca:af:ed:2e:d3:15:98:7a
    Fingerprint (SHA-256):
        C8:8C:6D:A2:14:8F:00:36:05:F4:8E:DE:A3:14:DA:F4:A2:FB:52:86:83:F4:A6:39:F4:D6:54:B5:EF:42:37:89
    Fingerprint (SHA1):
        A0:22:D1:F0:9B:8A:4B:1D:99:42:B2:76:12:C6:00:B5:34:68:20:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3308: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120374 (0x1e67d1b6)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:54 2017
            Not After : Tue May 10 12:04:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    43:61:77:24:25:1f:9f:8f:05:67:7d:55:77:04:f0:00:
                    e3:21:a4:df:a3:1e:27:ae:42:69:cc:c5:64:06:53:b5:
                    15:82:74:4b:a1:e1:0e:91:e2:cd:58:ce:fd:78:ec:2d:
                    ca:4a:be:d5:51:89:be:b2:e3:24:b9:a2:fa:a1:44:a3:
                    98:16:7c:f3:14:53:10:21:5e:a4:eb:d0:b8:e8:05:44:
                    88:7b:88:21:d6:25:16:95:e3:27:b8:6e:9f:96:ae:85:
                    ec:9b:5a:4d:6b:63:fa:2c:26:64:bc:55:2c:1d:d7:4b:
                    e6:fb:01:fc:dc:4b:b5:51:4f:42:8f:06:4f:94:12:ca:
                    ec:8e:50:dd:0a:55:01:a1:c7:f5:b6:8f:66:a3:e5:0d:
                    fb:b9:47:ad:c1:fd:93:e0:6d:03:e9:70:f8:6a:61:f8:
                    18:72:c7:e3:0d:d9:2b:f0:c2:8b:8f:4d:05:1f:f6:6f:
                    35:96:67:ed:de:04:8b:0f:82:b2:e0:98:a5:21:34:d7:
                    86:d0:02:3a:6e:53:09:7d:9c:64:06:ea:20:f5:24:e8:
                    84:17:49:67:e4:eb:92:a2:2b:6c:bd:f3:ed:f4:f1:a9:
                    9d:b7:bf:79:dc:fc:67:16:9e:f9:12:d0:78:c9:06:fe:
                    73:e8:56:c8:34:88:03:27:ec:aa:87:bc:7f:8d:c9:4a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:59:50:b3:3a:26:35:5d:4e:49:da:7c:33:
        01:24:ee:86:21:b0:d6:65:ee:36:5c:bb:64:62:91:df:
        02:1c:07:d6:4c:46:95:83:45:69:25:0c:30:47:1e:cb:
        00:4d:40:3a:26:a8:ca:af:ed:2e:d3:15:98:7a
    Fingerprint (SHA-256):
        C8:8C:6D:A2:14:8F:00:36:05:F4:8E:DE:A3:14:DA:F4:A2:FB:52:86:83:F4:A6:39:F4:D6:54:B5:EF:42:37:89
    Fingerprint (SHA1):
        A0:22:D1:F0:9B:8A:4B:1D:99:42:B2:76:12:C6:00:B5:34:68:20:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3309: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120374 (0x1e67d1b6)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:54 2017
            Not After : Tue May 10 12:04:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    43:61:77:24:25:1f:9f:8f:05:67:7d:55:77:04:f0:00:
                    e3:21:a4:df:a3:1e:27:ae:42:69:cc:c5:64:06:53:b5:
                    15:82:74:4b:a1:e1:0e:91:e2:cd:58:ce:fd:78:ec:2d:
                    ca:4a:be:d5:51:89:be:b2:e3:24:b9:a2:fa:a1:44:a3:
                    98:16:7c:f3:14:53:10:21:5e:a4:eb:d0:b8:e8:05:44:
                    88:7b:88:21:d6:25:16:95:e3:27:b8:6e:9f:96:ae:85:
                    ec:9b:5a:4d:6b:63:fa:2c:26:64:bc:55:2c:1d:d7:4b:
                    e6:fb:01:fc:dc:4b:b5:51:4f:42:8f:06:4f:94:12:ca:
                    ec:8e:50:dd:0a:55:01:a1:c7:f5:b6:8f:66:a3:e5:0d:
                    fb:b9:47:ad:c1:fd:93:e0:6d:03:e9:70:f8:6a:61:f8:
                    18:72:c7:e3:0d:d9:2b:f0:c2:8b:8f:4d:05:1f:f6:6f:
                    35:96:67:ed:de:04:8b:0f:82:b2:e0:98:a5:21:34:d7:
                    86:d0:02:3a:6e:53:09:7d:9c:64:06:ea:20:f5:24:e8:
                    84:17:49:67:e4:eb:92:a2:2b:6c:bd:f3:ed:f4:f1:a9:
                    9d:b7:bf:79:dc:fc:67:16:9e:f9:12:d0:78:c9:06:fe:
                    73:e8:56:c8:34:88:03:27:ec:aa:87:bc:7f:8d:c9:4a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:59:50:b3:3a:26:35:5d:4e:49:da:7c:33:
        01:24:ee:86:21:b0:d6:65:ee:36:5c:bb:64:62:91:df:
        02:1c:07:d6:4c:46:95:83:45:69:25:0c:30:47:1e:cb:
        00:4d:40:3a:26:a8:ca:af:ed:2e:d3:15:98:7a
    Fingerprint (SHA-256):
        C8:8C:6D:A2:14:8F:00:36:05:F4:8E:DE:A3:14:DA:F4:A2:FB:52:86:83:F4:A6:39:F4:D6:54:B5:EF:42:37:89
    Fingerprint (SHA1):
        A0:22:D1:F0:9B:8A:4B:1D:99:42:B2:76:12:C6:00:B5:34:68:20:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3310: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120374 (0x1e67d1b6)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:54 2017
            Not After : Tue May 10 12:04:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    43:61:77:24:25:1f:9f:8f:05:67:7d:55:77:04:f0:00:
                    e3:21:a4:df:a3:1e:27:ae:42:69:cc:c5:64:06:53:b5:
                    15:82:74:4b:a1:e1:0e:91:e2:cd:58:ce:fd:78:ec:2d:
                    ca:4a:be:d5:51:89:be:b2:e3:24:b9:a2:fa:a1:44:a3:
                    98:16:7c:f3:14:53:10:21:5e:a4:eb:d0:b8:e8:05:44:
                    88:7b:88:21:d6:25:16:95:e3:27:b8:6e:9f:96:ae:85:
                    ec:9b:5a:4d:6b:63:fa:2c:26:64:bc:55:2c:1d:d7:4b:
                    e6:fb:01:fc:dc:4b:b5:51:4f:42:8f:06:4f:94:12:ca:
                    ec:8e:50:dd:0a:55:01:a1:c7:f5:b6:8f:66:a3:e5:0d:
                    fb:b9:47:ad:c1:fd:93:e0:6d:03:e9:70:f8:6a:61:f8:
                    18:72:c7:e3:0d:d9:2b:f0:c2:8b:8f:4d:05:1f:f6:6f:
                    35:96:67:ed:de:04:8b:0f:82:b2:e0:98:a5:21:34:d7:
                    86:d0:02:3a:6e:53:09:7d:9c:64:06:ea:20:f5:24:e8:
                    84:17:49:67:e4:eb:92:a2:2b:6c:bd:f3:ed:f4:f1:a9:
                    9d:b7:bf:79:dc:fc:67:16:9e:f9:12:d0:78:c9:06:fe:
                    73:e8:56:c8:34:88:03:27:ec:aa:87:bc:7f:8d:c9:4a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:59:50:b3:3a:26:35:5d:4e:49:da:7c:33:
        01:24:ee:86:21:b0:d6:65:ee:36:5c:bb:64:62:91:df:
        02:1c:07:d6:4c:46:95:83:45:69:25:0c:30:47:1e:cb:
        00:4d:40:3a:26:a8:ca:af:ed:2e:d3:15:98:7a
    Fingerprint (SHA-256):
        C8:8C:6D:A2:14:8F:00:36:05:F4:8E:DE:A3:14:DA:F4:A2:FB:52:86:83:F4:A6:39:F4:D6:54:B5:EF:42:37:89
    Fingerprint (SHA1):
        A0:22:D1:F0:9B:8A:4B:1D:99:42:B2:76:12:C6:00:B5:34:68:20:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3311: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3312: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3313: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3314: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3315: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3316: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3317: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3318: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3319: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3320: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3321: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3322: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3323: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3324: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3325: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3326: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3327: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3328: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3329: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3330: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3331: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3332: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3333: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3334: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3335: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3336: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3337: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3338: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510120505Z
nextupdate=20180510120505Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:05:05 2017
    Next Update: Thu May 10 12:05:05 2018
    CRL Extensions:
chains.sh: #3339: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120505Z
nextupdate=20180510120505Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:05:05 2017
    Next Update: Thu May 10 12:05:05 2018
    CRL Extensions:
chains.sh: #3340: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510120505Z
nextupdate=20180510120505Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:05:05 2017
    Next Update: Thu May 10 12:05:05 2018
    CRL Extensions:
chains.sh: #3341: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510120505Z
nextupdate=20180510120505Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:05:05 2017
    Next Update: Thu May 10 12:05:05 2018
    CRL Extensions:
chains.sh: #3342: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510120506Z
addcert 14 20170510120506Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:05:06 2017
    Next Update: Thu May 10 12:05:05 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:05:06 2017
    CRL Extensions:
chains.sh: #3343: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120507Z
addcert 15 20170510120507Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:05:07 2017
    Next Update: Thu May 10 12:05:05 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:05:07 2017
    CRL Extensions:
chains.sh: #3344: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3345: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3346: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3347: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3348: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3349: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3350: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3351: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3352: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3353: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:59 2017
            Not After : Tue May 10 12:04:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:10:19:82:9a:78:6e:fb:ce:84:a9:ab:84:4d:3d:ea:
                    a5:02:5e:7d:7c:b7:ab:19:45:08:80:40:20:33:3e:a9:
                    35:ee:78:23:51:6c:0c:1b:ed:5a:29:03:80:e7:03:36:
                    2f:76:76:7a:82:22:41:a4:3e:f4:43:0d:48:41:aa:e2:
                    bd:a3:80:94:e0:c8:63:9f:f7:48:49:ec:91:ea:6e:19:
                    93:67:4e:41:f1:89:c9:96:82:26:b2:8a:2d:72:fc:43:
                    ba:6e:72:a9:0e:1a:42:68:e2:96:69:15:72:d8:21:89:
                    4a:b3:a1:be:48:fa:a7:71:12:08:cc:85:9b:6c:e0:bd:
                    27:a0:3f:f6:7f:ed:af:fb:35:3e:11:29:70:b8:01:b9:
                    d9:6f:d4:1b:ab:72:e7:c1:77:77:da:5c:f7:df:1a:32:
                    39:6f:2f:8b:2a:d5:0d:48:c5:50:a3:00:ac:20:18:9b:
                    a8:ad:67:28:fc:c4:f7:73:39:99:18:4b:7c:07:f3:bb:
                    37:0d:e6:db:10:95:53:84:19:c8:9a:db:63:c1:2b:fe:
                    4b:34:97:81:f5:a4:8e:1e:fe:f1:1c:74:d3:e8:f7:0f:
                    82:3c:07:ed:cc:a4:7d:54:7e:10:60:79:23:6c:2c:e4:
                    ab:19:d7:a0:d3:0d:3c:b3:d1:32:87:8a:54:d4:a3:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:98:48:99:c2:5e:bc:0c:d4:7e:93:13:ed:6f:ef:f6:
        d0:32:ec:79:6e:85:5a:7e:1d:8a:6b:b9:d2:59:73:b6:
        3b:2b:c0:d3:9e:8e:69:12:46:1a:7c:12:a2:fc:76:4d:
        68:4d:ae:ad:53:7c:04:5a:c2:7d:14:e7:80:61:8d:4b:
        fc:92:86:03:12:d3:3a:5b:7a:88:38:3d:f5:94:bd:d0:
        0c:9b:ec:49:9b:ec:fc:5b:5e:44:95:24:e9:90:8f:c2:
        d2:92:ee:09:9c:ab:ec:bc:b1:c0:97:aa:76:ab:b9:86:
        d6:3e:73:c1:93:a3:32:c8:b1:3b:ff:42:b0:98:0c:fb:
        39:b1:2e:06:98:6d:b5:b7:50:b6:e5:49:23:87:00:a0:
        5a:61:11:a7:c3:2b:3c:25:83:35:4f:86:3e:b9:4c:ef:
        79:b6:25:61:45:30:5c:5f:77:09:5a:24:44:7f:56:f8:
        bb:dd:e2:d7:9e:3d:62:b2:d5:cb:a1:75:10:f9:66:70:
        62:41:f3:c4:78:67:7c:6b:26:4c:3a:0c:7d:9b:82:17:
        52:9c:71:e4:f4:77:5d:50:05:61:ce:62:20:d5:8d:ce:
        43:d3:96:c7:37:f3:29:b5:16:90:d0:cc:ac:f0:70:14:
        26:54:8d:fa:ac:f5:29:92:8c:af:02:b3:e9:51:72:f6
    Fingerprint (SHA-256):
        46:3C:5D:CE:23:E8:77:90:E7:DA:37:3B:F3:B9:6B:6E:3F:FD:ED:E5:55:1E:05:69:A9:E1:A2:BB:35:63:CE:02
    Fingerprint (SHA1):
        F7:89:E2:2D:6C:61:2B:F2:10:93:E8:53:D0:9F:A0:4C:9E:92:DC:93
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3354: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3355: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:04:59 2017
            Not After : Tue May 10 12:04:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:10:19:82:9a:78:6e:fb:ce:84:a9:ab:84:4d:3d:ea:
                    a5:02:5e:7d:7c:b7:ab:19:45:08:80:40:20:33:3e:a9:
                    35:ee:78:23:51:6c:0c:1b:ed:5a:29:03:80:e7:03:36:
                    2f:76:76:7a:82:22:41:a4:3e:f4:43:0d:48:41:aa:e2:
                    bd:a3:80:94:e0:c8:63:9f:f7:48:49:ec:91:ea:6e:19:
                    93:67:4e:41:f1:89:c9:96:82:26:b2:8a:2d:72:fc:43:
                    ba:6e:72:a9:0e:1a:42:68:e2:96:69:15:72:d8:21:89:
                    4a:b3:a1:be:48:fa:a7:71:12:08:cc:85:9b:6c:e0:bd:
                    27:a0:3f:f6:7f:ed:af:fb:35:3e:11:29:70:b8:01:b9:
                    d9:6f:d4:1b:ab:72:e7:c1:77:77:da:5c:f7:df:1a:32:
                    39:6f:2f:8b:2a:d5:0d:48:c5:50:a3:00:ac:20:18:9b:
                    a8:ad:67:28:fc:c4:f7:73:39:99:18:4b:7c:07:f3:bb:
                    37:0d:e6:db:10:95:53:84:19:c8:9a:db:63:c1:2b:fe:
                    4b:34:97:81:f5:a4:8e:1e:fe:f1:1c:74:d3:e8:f7:0f:
                    82:3c:07:ed:cc:a4:7d:54:7e:10:60:79:23:6c:2c:e4:
                    ab:19:d7:a0:d3:0d:3c:b3:d1:32:87:8a:54:d4:a3:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:98:48:99:c2:5e:bc:0c:d4:7e:93:13:ed:6f:ef:f6:
        d0:32:ec:79:6e:85:5a:7e:1d:8a:6b:b9:d2:59:73:b6:
        3b:2b:c0:d3:9e:8e:69:12:46:1a:7c:12:a2:fc:76:4d:
        68:4d:ae:ad:53:7c:04:5a:c2:7d:14:e7:80:61:8d:4b:
        fc:92:86:03:12:d3:3a:5b:7a:88:38:3d:f5:94:bd:d0:
        0c:9b:ec:49:9b:ec:fc:5b:5e:44:95:24:e9:90:8f:c2:
        d2:92:ee:09:9c:ab:ec:bc:b1:c0:97:aa:76:ab:b9:86:
        d6:3e:73:c1:93:a3:32:c8:b1:3b:ff:42:b0:98:0c:fb:
        39:b1:2e:06:98:6d:b5:b7:50:b6:e5:49:23:87:00:a0:
        5a:61:11:a7:c3:2b:3c:25:83:35:4f:86:3e:b9:4c:ef:
        79:b6:25:61:45:30:5c:5f:77:09:5a:24:44:7f:56:f8:
        bb:dd:e2:d7:9e:3d:62:b2:d5:cb:a1:75:10:f9:66:70:
        62:41:f3:c4:78:67:7c:6b:26:4c:3a:0c:7d:9b:82:17:
        52:9c:71:e4:f4:77:5d:50:05:61:ce:62:20:d5:8d:ce:
        43:d3:96:c7:37:f3:29:b5:16:90:d0:cc:ac:f0:70:14:
        26:54:8d:fa:ac:f5:29:92:8c:af:02:b3:e9:51:72:f6
    Fingerprint (SHA-256):
        46:3C:5D:CE:23:E8:77:90:E7:DA:37:3B:F3:B9:6B:6E:3F:FD:ED:E5:55:1E:05:69:A9:E1:A2:BB:35:63:CE:02
    Fingerprint (SHA1):
        F7:89:E2:2D:6C:61:2B:F2:10:93:E8:53:D0:9F:A0:4C:9E:92:DC:93
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3356: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3357: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3358: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120383 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3359: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3360: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3361: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3362: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510120384   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3363: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3364: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3365: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120274.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3366: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120259.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3367: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3368: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3369: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120274.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3370: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510120385   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3371: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3372: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3373: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120274.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3374: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120260.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3375: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3376: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3377: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3378: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510120386   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3379: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3380: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3381: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120274.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3382: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120261.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3383: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3384: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3385: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120274.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3386: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120262.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3387: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3388: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510120514Z
nextupdate=20180510120514Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:05:14 2017
    Next Update: Thu May 10 12:05:14 2018
    CRL Extensions:
chains.sh: #3389: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120514Z
nextupdate=20180510120514Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:05:14 2017
    Next Update: Thu May 10 12:05:14 2018
    CRL Extensions:
chains.sh: #3390: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510120514Z
nextupdate=20180510120514Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:05:14 2017
    Next Update: Thu May 10 12:05:14 2018
    CRL Extensions:
chains.sh: #3391: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510120515Z
nextupdate=20180510120515Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:05:15 2017
    Next Update: Thu May 10 12:05:15 2018
    CRL Extensions:
chains.sh: #3392: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120516Z
addcert 20 20170510120516Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:05:16 2017
    Next Update: Thu May 10 12:05:14 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:05:16 2017
    CRL Extensions:
chains.sh: #3393: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120517Z
addcert 40 20170510120517Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:05:17 2017
    Next Update: Thu May 10 12:05:14 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:05:16 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:05:17 2017
    CRL Extensions:
chains.sh: #3394: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3395: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3396: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3397: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120383 (0x1e67d1bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:08 2017
            Not After : Tue May 10 12:05:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:43:7d:30:10:d1:41:ac:be:c4:6f:62:03:d2:8d:35:
                    1b:04:a0:56:90:e4:ee:c0:47:cb:20:0c:cd:bf:15:1a:
                    d5:47:c6:f5:0f:30:68:ea:cf:cd:07:4b:c3:25:e2:8a:
                    02:0f:fb:54:77:56:e6:e6:d4:1a:ff:02:1c:76:e0:b9:
                    c7:3e:17:8a:f6:08:d9:16:5c:b2:67:dc:37:ad:78:0a:
                    65:e5:2c:5c:b2:76:35:9e:39:18:83:8f:e1:e0:2a:d6:
                    e9:cc:45:2e:08:d3:02:e3:9b:7b:bf:8f:66:2b:b2:ac:
                    b5:6f:6b:a1:d5:c4:7b:26:b4:cd:e9:63:95:5a:d6:a2:
                    4b:d2:62:47:dc:94:7f:56:f9:a0:ef:e8:b5:c3:b6:14:
                    57:a6:15:f1:07:d1:6b:f5:74:57:f5:a6:46:8c:ce:e2:
                    ff:cc:f9:f9:46:f8:64:38:04:86:8d:cb:1a:09:b1:ec:
                    03:37:53:8d:a7:32:09:c6:86:13:77:e3:da:03:e7:e9:
                    cb:b6:23:e6:1a:72:f0:f9:63:e1:68:87:f7:f0:41:bf:
                    86:f8:89:1a:de:04:9b:ab:41:e2:4f:19:70:14:37:36:
                    b8:f0:ce:08:bd:e5:9c:b0:1e:94:10:b3:cb:d8:06:e3:
                    04:ef:cb:65:ff:ab:8e:5e:55:81:6d:a6:6c:21:a0:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:70:47:5e:bd:82:22:d5:b8:4a:7b:88:3b:45:1f:90:
        62:e7:19:62:c4:b7:d5:91:74:db:bd:75:03:bd:23:7c:
        68:6b:19:e7:e1:0f:25:38:46:c2:69:ff:0c:dc:dd:42:
        03:ad:e6:56:40:80:ab:f2:ed:1f:19:9b:ce:5f:a5:d8:
        40:99:c6:d5:11:7e:48:85:ce:65:93:2b:b6:ac:0e:9e:
        24:6a:1c:88:50:8a:eb:5f:b7:93:6c:da:9d:bf:e0:96:
        35:2c:3c:ed:63:cd:11:72:b0:48:75:a3:d1:d0:b1:16:
        7b:5b:b7:5a:cd:69:a7:cc:c8:92:ec:e7:68:f7:9c:05:
        75:ae:b0:fd:4a:62:9d:80:de:2f:c7:92:40:a5:29:21:
        3d:f4:01:5a:90:e9:0f:9e:41:1b:98:02:f2:6b:3e:06:
        36:a9:fd:f0:80:c7:55:c5:1c:e5:98:c9:76:b0:25:a6:
        4b:3d:7c:e6:af:46:82:d5:7f:da:43:bd:27:56:d3:e7:
        77:c8:3d:56:89:ee:d4:ec:1d:ef:d1:3f:2d:94:8c:ab:
        a0:0a:f4:17:3e:7e:bf:b8:35:ca:11:85:07:8d:cd:ee:
        89:a3:59:f6:b0:7b:a3:4f:58:f5:a0:39:cf:bd:f7:eb:
        91:34:56:f7:a4:f5:29:bb:fa:54:9c:37:f8:fc:8b:bf
    Fingerprint (SHA-256):
        EA:BE:67:45:F2:AD:A3:87:C7:7C:4A:37:23:89:E9:DB:5D:F6:6C:82:D2:32:E4:1E:1C:07:7E:C6:6A:94:19:74
    Fingerprint (SHA1):
        09:18:DA:CE:32:E9:6D:2A:C5:14:F7:9A:E8:CC:3F:57:5A:2F:46:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3398: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3399: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120383 (0x1e67d1bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:08 2017
            Not After : Tue May 10 12:05:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:43:7d:30:10:d1:41:ac:be:c4:6f:62:03:d2:8d:35:
                    1b:04:a0:56:90:e4:ee:c0:47:cb:20:0c:cd:bf:15:1a:
                    d5:47:c6:f5:0f:30:68:ea:cf:cd:07:4b:c3:25:e2:8a:
                    02:0f:fb:54:77:56:e6:e6:d4:1a:ff:02:1c:76:e0:b9:
                    c7:3e:17:8a:f6:08:d9:16:5c:b2:67:dc:37:ad:78:0a:
                    65:e5:2c:5c:b2:76:35:9e:39:18:83:8f:e1:e0:2a:d6:
                    e9:cc:45:2e:08:d3:02:e3:9b:7b:bf:8f:66:2b:b2:ac:
                    b5:6f:6b:a1:d5:c4:7b:26:b4:cd:e9:63:95:5a:d6:a2:
                    4b:d2:62:47:dc:94:7f:56:f9:a0:ef:e8:b5:c3:b6:14:
                    57:a6:15:f1:07:d1:6b:f5:74:57:f5:a6:46:8c:ce:e2:
                    ff:cc:f9:f9:46:f8:64:38:04:86:8d:cb:1a:09:b1:ec:
                    03:37:53:8d:a7:32:09:c6:86:13:77:e3:da:03:e7:e9:
                    cb:b6:23:e6:1a:72:f0:f9:63:e1:68:87:f7:f0:41:bf:
                    86:f8:89:1a:de:04:9b:ab:41:e2:4f:19:70:14:37:36:
                    b8:f0:ce:08:bd:e5:9c:b0:1e:94:10:b3:cb:d8:06:e3:
                    04:ef:cb:65:ff:ab:8e:5e:55:81:6d:a6:6c:21:a0:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:70:47:5e:bd:82:22:d5:b8:4a:7b:88:3b:45:1f:90:
        62:e7:19:62:c4:b7:d5:91:74:db:bd:75:03:bd:23:7c:
        68:6b:19:e7:e1:0f:25:38:46:c2:69:ff:0c:dc:dd:42:
        03:ad:e6:56:40:80:ab:f2:ed:1f:19:9b:ce:5f:a5:d8:
        40:99:c6:d5:11:7e:48:85:ce:65:93:2b:b6:ac:0e:9e:
        24:6a:1c:88:50:8a:eb:5f:b7:93:6c:da:9d:bf:e0:96:
        35:2c:3c:ed:63:cd:11:72:b0:48:75:a3:d1:d0:b1:16:
        7b:5b:b7:5a:cd:69:a7:cc:c8:92:ec:e7:68:f7:9c:05:
        75:ae:b0:fd:4a:62:9d:80:de:2f:c7:92:40:a5:29:21:
        3d:f4:01:5a:90:e9:0f:9e:41:1b:98:02:f2:6b:3e:06:
        36:a9:fd:f0:80:c7:55:c5:1c:e5:98:c9:76:b0:25:a6:
        4b:3d:7c:e6:af:46:82:d5:7f:da:43:bd:27:56:d3:e7:
        77:c8:3d:56:89:ee:d4:ec:1d:ef:d1:3f:2d:94:8c:ab:
        a0:0a:f4:17:3e:7e:bf:b8:35:ca:11:85:07:8d:cd:ee:
        89:a3:59:f6:b0:7b:a3:4f:58:f5:a0:39:cf:bd:f7:eb:
        91:34:56:f7:a4:f5:29:bb:fa:54:9c:37:f8:fc:8b:bf
    Fingerprint (SHA-256):
        EA:BE:67:45:F2:AD:A3:87:C7:7C:4A:37:23:89:E9:DB:5D:F6:6C:82:D2:32:E4:1E:1C:07:7E:C6:6A:94:19:74
    Fingerprint (SHA1):
        09:18:DA:CE:32:E9:6D:2A:C5:14:F7:9A:E8:CC:3F:57:5A:2F:46:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3400: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3401: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3402: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120387 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3403: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3404: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3405: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3406: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510120388   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3407: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3408: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3409: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3410: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120389   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3411: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3412: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3413: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510120390   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3417: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120391 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3418: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3419: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3420: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3421: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510120392   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3422: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3423: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3424: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3425: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510120393   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3426: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3427: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3428: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3429: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3430: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120387 (0x1e67d1c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:18 2017
            Not After : Tue May 10 12:05:18 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:97:ff:7c:c9:82:be:c3:c2:ed:8f:c2:0f:ca:ae:43:
                    b0:76:75:5c:1b:3e:f7:3f:82:59:b8:d3:24:a1:99:1c:
                    63:cc:21:ff:6b:34:2a:b4:1d:c4:f5:2d:87:91:89:ee:
                    7b:e7:97:72:c2:79:88:c8:c9:2a:a5:05:c1:1b:7c:c8:
                    ed:fd:b9:74:f7:4a:c9:23:ac:f0:3e:12:f1:76:de:9e:
                    8f:1f:0e:94:01:9f:a4:32:c4:ff:60:2c:f2:83:f8:8f:
                    1d:b2:38:a7:d9:aa:75:98:5a:02:ea:42:ac:bb:07:ca:
                    1a:71:76:0c:8a:2f:e7:a6:f3:5d:8f:e8:11:70:f8:2f:
                    5b:e0:3e:c9:bd:fd:52:4b:18:b2:2d:15:4f:34:00:bc:
                    30:c8:96:66:18:37:c9:26:fd:9f:59:85:f6:17:a4:fe:
                    2e:09:ad:f7:89:13:aa:b7:14:98:31:a5:72:90:20:11:
                    bd:44:f3:d4:ac:03:33:f9:c3:98:83:fe:cb:9b:fc:7a:
                    7a:8c:d1:e6:ec:6a:b6:ea:bb:65:42:d5:55:89:81:82:
                    ea:03:f3:d0:8a:72:0e:30:46:a5:fa:33:53:1f:6a:d7:
                    32:ca:d8:16:2f:cf:12:5d:aa:87:5b:62:89:54:94:07:
                    3e:21:51:c8:1b:fb:26:95:48:f9:02:4b:1b:a9:f1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:5c:79:f4:2f:53:ed:bf:69:74:90:f0:ad:c4:02:b4:
        1c:b0:21:12:8d:d1:c2:d1:7e:1f:3a:fa:eb:9b:0b:af:
        26:5e:84:86:6b:36:c5:2d:85:f2:75:93:70:3d:99:f8:
        2d:6a:ae:f3:08:3e:a8:54:38:c9:80:34:93:30:f2:97:
        8c:25:64:ae:81:27:6a:8d:55:c2:b1:02:97:08:ed:32:
        fb:9e:97:c8:ce:4e:fa:10:3c:37:d0:f2:5a:15:07:10:
        94:93:18:07:13:4f:ad:21:50:42:7e:0d:fe:17:a1:10:
        90:64:ab:0e:c5:1b:40:18:42:1b:8c:43:f4:e3:fd:38:
        35:bb:2a:35:b3:03:b5:28:b8:3a:f2:9f:15:45:63:1f:
        d6:da:31:04:eb:c3:38:74:3a:34:73:a4:63:46:13:bc:
        f7:39:7b:6a:61:26:70:5d:04:59:3f:e6:91:5e:8c:a2:
        c0:73:ba:4f:3c:b6:0a:8f:62:93:2c:ee:d8:31:32:c5:
        ae:77:b1:18:8d:ac:5f:b6:2a:ba:30:a1:5e:c2:e3:d0:
        a4:a0:f0:dd:a9:fc:7f:d1:41:87:1f:5a:d4:9b:41:1f:
        40:45:80:9c:c4:4f:8d:47:d5:5b:12:16:77:d6:d1:b0:
        2f:44:48:74:19:b4:bb:2a:4b:d2:92:47:40:bd:e5:81
    Fingerprint (SHA-256):
        18:8B:25:4B:30:C5:4D:A7:FD:B1:E1:1B:B3:A7:62:D7:2C:94:7C:18:D2:22:6F:F5:0E:58:1E:44:6A:59:B9:8D
    Fingerprint (SHA1):
        38:24:52:55:6F:CD:0F:A1:7D:D5:E8:74:7C:CE:DC:BA:57:2C:29:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3431: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120389 (0x1e67d1c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:20 2017
            Not After : Tue May 10 12:05:20 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:87:b0:4a:67:49:fe:2c:d3:61:6d:1a:36:ad:29:d8:
                    82:53:94:6d:48:9f:f1:3b:00:82:3a:07:fe:41:ca:d0:
                    3d:d7:d1:d0:dd:0f:fd:41:9d:3f:a5:90:2e:ae:d0:2c:
                    d3:e8:60:94:24:0a:33:0c:92:0a:d1:43:19:3d:e2:a9:
                    49:00:73:61:e3:83:99:77:b0:87:30:25:f5:a7:87:51:
                    ee:dd:fa:3e:62:40:9d:f5:e9:97:7a:3c:17:ff:86:82:
                    a9:4d:e5:0a:ac:48:55:9a:37:60:46:d7:a5:60:f2:0e:
                    5a:bd:bf:76:19:0d:19:90:af:96:e8:c0:c1:e3:47:7b:
                    48:7a:05:a9:13:8e:df:fb:ea:ad:af:fa:ff:9f:f1:e6:
                    8e:37:03:70:50:70:2a:0b:03:3c:52:04:85:e8:97:8a:
                    c3:fb:20:bb:dd:8d:48:6a:67:d0:ca:d6:1f:51:76:af:
                    c5:cc:3d:85:c5:6f:32:b5:53:b7:ea:76:c6:ef:9e:c7:
                    09:b7:07:8e:de:4f:fc:30:f4:40:05:24:5c:18:4e:05:
                    a8:48:29:69:54:52:3a:84:7e:1b:71:74:e9:d9:65:1a:
                    03:3f:0a:f9:fa:5a:1b:f0:8a:ee:07:83:b1:01:9e:8d:
                    6c:0b:4c:5f:74:4f:26:55:b5:b1:d1:c2:33:5e:ff:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:60:6e:0d:10:86:d3:5d:f3:9f:85:51:4f:f8:c2:a2:
        d2:4c:55:e7:7b:8d:18:48:e2:70:a7:7a:91:d7:23:56:
        6b:31:84:65:43:95:23:98:da:f7:61:b6:3a:d9:a8:3f:
        7e:36:a6:cb:1b:cc:6a:2a:10:e0:65:ad:c7:ff:e0:38:
        78:3f:52:eb:18:5a:0a:00:c0:a0:a0:42:f1:60:53:ad:
        bc:93:86:83:48:0e:22:e6:c7:30:a6:e8:a4:89:a4:50:
        c9:08:d7:e7:6c:3b:c5:42:aa:de:73:8d:ff:f7:97:b1:
        b7:66:e2:fa:87:a5:a1:63:94:fe:eb:01:d0:81:37:eb:
        92:26:f9:5c:e3:c8:10:de:89:df:1b:7a:8d:79:b7:bc:
        99:10:3b:cd:98:7f:9a:3f:ba:f0:60:cd:be:e6:ec:d6:
        ca:5a:cb:59:a0:98:cc:54:a5:3e:ee:08:2f:a9:21:7a:
        8a:58:f2:8e:21:3e:e3:5f:8d:a9:01:31:49:d7:62:8b:
        34:51:5a:3b:69:19:ce:59:50:e0:89:7b:40:cc:8c:6c:
        7e:66:5e:a0:5c:d3:7d:5a:b3:28:6a:f6:af:83:1b:33:
        16:4d:b4:55:7d:69:ef:45:11:08:2a:66:89:05:6e:15:
        1e:fe:e4:37:91:ad:60:11:d2:53:05:9b:89:2d:cd:52
    Fingerprint (SHA-256):
        15:C0:9D:EA:64:AE:07:29:F2:63:66:C8:4C:C1:B5:13:37:75:C9:12:96:82:18:D3:AB:B7:4B:29:A0:B2:E4:0B
    Fingerprint (SHA1):
        2C:4F:51:E8:1C:2F:6F:1A:69:53:0D:8A:81:4A:94:58:B5:65:B4:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120387 (0x1e67d1c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:18 2017
            Not After : Tue May 10 12:05:18 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:97:ff:7c:c9:82:be:c3:c2:ed:8f:c2:0f:ca:ae:43:
                    b0:76:75:5c:1b:3e:f7:3f:82:59:b8:d3:24:a1:99:1c:
                    63:cc:21:ff:6b:34:2a:b4:1d:c4:f5:2d:87:91:89:ee:
                    7b:e7:97:72:c2:79:88:c8:c9:2a:a5:05:c1:1b:7c:c8:
                    ed:fd:b9:74:f7:4a:c9:23:ac:f0:3e:12:f1:76:de:9e:
                    8f:1f:0e:94:01:9f:a4:32:c4:ff:60:2c:f2:83:f8:8f:
                    1d:b2:38:a7:d9:aa:75:98:5a:02:ea:42:ac:bb:07:ca:
                    1a:71:76:0c:8a:2f:e7:a6:f3:5d:8f:e8:11:70:f8:2f:
                    5b:e0:3e:c9:bd:fd:52:4b:18:b2:2d:15:4f:34:00:bc:
                    30:c8:96:66:18:37:c9:26:fd:9f:59:85:f6:17:a4:fe:
                    2e:09:ad:f7:89:13:aa:b7:14:98:31:a5:72:90:20:11:
                    bd:44:f3:d4:ac:03:33:f9:c3:98:83:fe:cb:9b:fc:7a:
                    7a:8c:d1:e6:ec:6a:b6:ea:bb:65:42:d5:55:89:81:82:
                    ea:03:f3:d0:8a:72:0e:30:46:a5:fa:33:53:1f:6a:d7:
                    32:ca:d8:16:2f:cf:12:5d:aa:87:5b:62:89:54:94:07:
                    3e:21:51:c8:1b:fb:26:95:48:f9:02:4b:1b:a9:f1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:5c:79:f4:2f:53:ed:bf:69:74:90:f0:ad:c4:02:b4:
        1c:b0:21:12:8d:d1:c2:d1:7e:1f:3a:fa:eb:9b:0b:af:
        26:5e:84:86:6b:36:c5:2d:85:f2:75:93:70:3d:99:f8:
        2d:6a:ae:f3:08:3e:a8:54:38:c9:80:34:93:30:f2:97:
        8c:25:64:ae:81:27:6a:8d:55:c2:b1:02:97:08:ed:32:
        fb:9e:97:c8:ce:4e:fa:10:3c:37:d0:f2:5a:15:07:10:
        94:93:18:07:13:4f:ad:21:50:42:7e:0d:fe:17:a1:10:
        90:64:ab:0e:c5:1b:40:18:42:1b:8c:43:f4:e3:fd:38:
        35:bb:2a:35:b3:03:b5:28:b8:3a:f2:9f:15:45:63:1f:
        d6:da:31:04:eb:c3:38:74:3a:34:73:a4:63:46:13:bc:
        f7:39:7b:6a:61:26:70:5d:04:59:3f:e6:91:5e:8c:a2:
        c0:73:ba:4f:3c:b6:0a:8f:62:93:2c:ee:d8:31:32:c5:
        ae:77:b1:18:8d:ac:5f:b6:2a:ba:30:a1:5e:c2:e3:d0:
        a4:a0:f0:dd:a9:fc:7f:d1:41:87:1f:5a:d4:9b:41:1f:
        40:45:80:9c:c4:4f:8d:47:d5:5b:12:16:77:d6:d1:b0:
        2f:44:48:74:19:b4:bb:2a:4b:d2:92:47:40:bd:e5:81
    Fingerprint (SHA-256):
        18:8B:25:4B:30:C5:4D:A7:FD:B1:E1:1B:B3:A7:62:D7:2C:94:7C:18:D2:22:6F:F5:0E:58:1E:44:6A:59:B9:8D
    Fingerprint (SHA1):
        38:24:52:55:6F:CD:0F:A1:7D:D5:E8:74:7C:CE:DC:BA:57:2C:29:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3434: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120387 (0x1e67d1c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:18 2017
            Not After : Tue May 10 12:05:18 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:97:ff:7c:c9:82:be:c3:c2:ed:8f:c2:0f:ca:ae:43:
                    b0:76:75:5c:1b:3e:f7:3f:82:59:b8:d3:24:a1:99:1c:
                    63:cc:21:ff:6b:34:2a:b4:1d:c4:f5:2d:87:91:89:ee:
                    7b:e7:97:72:c2:79:88:c8:c9:2a:a5:05:c1:1b:7c:c8:
                    ed:fd:b9:74:f7:4a:c9:23:ac:f0:3e:12:f1:76:de:9e:
                    8f:1f:0e:94:01:9f:a4:32:c4:ff:60:2c:f2:83:f8:8f:
                    1d:b2:38:a7:d9:aa:75:98:5a:02:ea:42:ac:bb:07:ca:
                    1a:71:76:0c:8a:2f:e7:a6:f3:5d:8f:e8:11:70:f8:2f:
                    5b:e0:3e:c9:bd:fd:52:4b:18:b2:2d:15:4f:34:00:bc:
                    30:c8:96:66:18:37:c9:26:fd:9f:59:85:f6:17:a4:fe:
                    2e:09:ad:f7:89:13:aa:b7:14:98:31:a5:72:90:20:11:
                    bd:44:f3:d4:ac:03:33:f9:c3:98:83:fe:cb:9b:fc:7a:
                    7a:8c:d1:e6:ec:6a:b6:ea:bb:65:42:d5:55:89:81:82:
                    ea:03:f3:d0:8a:72:0e:30:46:a5:fa:33:53:1f:6a:d7:
                    32:ca:d8:16:2f:cf:12:5d:aa:87:5b:62:89:54:94:07:
                    3e:21:51:c8:1b:fb:26:95:48:f9:02:4b:1b:a9:f1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:5c:79:f4:2f:53:ed:bf:69:74:90:f0:ad:c4:02:b4:
        1c:b0:21:12:8d:d1:c2:d1:7e:1f:3a:fa:eb:9b:0b:af:
        26:5e:84:86:6b:36:c5:2d:85:f2:75:93:70:3d:99:f8:
        2d:6a:ae:f3:08:3e:a8:54:38:c9:80:34:93:30:f2:97:
        8c:25:64:ae:81:27:6a:8d:55:c2:b1:02:97:08:ed:32:
        fb:9e:97:c8:ce:4e:fa:10:3c:37:d0:f2:5a:15:07:10:
        94:93:18:07:13:4f:ad:21:50:42:7e:0d:fe:17:a1:10:
        90:64:ab:0e:c5:1b:40:18:42:1b:8c:43:f4:e3:fd:38:
        35:bb:2a:35:b3:03:b5:28:b8:3a:f2:9f:15:45:63:1f:
        d6:da:31:04:eb:c3:38:74:3a:34:73:a4:63:46:13:bc:
        f7:39:7b:6a:61:26:70:5d:04:59:3f:e6:91:5e:8c:a2:
        c0:73:ba:4f:3c:b6:0a:8f:62:93:2c:ee:d8:31:32:c5:
        ae:77:b1:18:8d:ac:5f:b6:2a:ba:30:a1:5e:c2:e3:d0:
        a4:a0:f0:dd:a9:fc:7f:d1:41:87:1f:5a:d4:9b:41:1f:
        40:45:80:9c:c4:4f:8d:47:d5:5b:12:16:77:d6:d1:b0:
        2f:44:48:74:19:b4:bb:2a:4b:d2:92:47:40:bd:e5:81
    Fingerprint (SHA-256):
        18:8B:25:4B:30:C5:4D:A7:FD:B1:E1:1B:B3:A7:62:D7:2C:94:7C:18:D2:22:6F:F5:0E:58:1E:44:6A:59:B9:8D
    Fingerprint (SHA1):
        38:24:52:55:6F:CD:0F:A1:7D:D5:E8:74:7C:CE:DC:BA:57:2C:29:DC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3435: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120389 (0x1e67d1c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:20 2017
            Not After : Tue May 10 12:05:20 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:87:b0:4a:67:49:fe:2c:d3:61:6d:1a:36:ad:29:d8:
                    82:53:94:6d:48:9f:f1:3b:00:82:3a:07:fe:41:ca:d0:
                    3d:d7:d1:d0:dd:0f:fd:41:9d:3f:a5:90:2e:ae:d0:2c:
                    d3:e8:60:94:24:0a:33:0c:92:0a:d1:43:19:3d:e2:a9:
                    49:00:73:61:e3:83:99:77:b0:87:30:25:f5:a7:87:51:
                    ee:dd:fa:3e:62:40:9d:f5:e9:97:7a:3c:17:ff:86:82:
                    a9:4d:e5:0a:ac:48:55:9a:37:60:46:d7:a5:60:f2:0e:
                    5a:bd:bf:76:19:0d:19:90:af:96:e8:c0:c1:e3:47:7b:
                    48:7a:05:a9:13:8e:df:fb:ea:ad:af:fa:ff:9f:f1:e6:
                    8e:37:03:70:50:70:2a:0b:03:3c:52:04:85:e8:97:8a:
                    c3:fb:20:bb:dd:8d:48:6a:67:d0:ca:d6:1f:51:76:af:
                    c5:cc:3d:85:c5:6f:32:b5:53:b7:ea:76:c6:ef:9e:c7:
                    09:b7:07:8e:de:4f:fc:30:f4:40:05:24:5c:18:4e:05:
                    a8:48:29:69:54:52:3a:84:7e:1b:71:74:e9:d9:65:1a:
                    03:3f:0a:f9:fa:5a:1b:f0:8a:ee:07:83:b1:01:9e:8d:
                    6c:0b:4c:5f:74:4f:26:55:b5:b1:d1:c2:33:5e:ff:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:60:6e:0d:10:86:d3:5d:f3:9f:85:51:4f:f8:c2:a2:
        d2:4c:55:e7:7b:8d:18:48:e2:70:a7:7a:91:d7:23:56:
        6b:31:84:65:43:95:23:98:da:f7:61:b6:3a:d9:a8:3f:
        7e:36:a6:cb:1b:cc:6a:2a:10:e0:65:ad:c7:ff:e0:38:
        78:3f:52:eb:18:5a:0a:00:c0:a0:a0:42:f1:60:53:ad:
        bc:93:86:83:48:0e:22:e6:c7:30:a6:e8:a4:89:a4:50:
        c9:08:d7:e7:6c:3b:c5:42:aa:de:73:8d:ff:f7:97:b1:
        b7:66:e2:fa:87:a5:a1:63:94:fe:eb:01:d0:81:37:eb:
        92:26:f9:5c:e3:c8:10:de:89:df:1b:7a:8d:79:b7:bc:
        99:10:3b:cd:98:7f:9a:3f:ba:f0:60:cd:be:e6:ec:d6:
        ca:5a:cb:59:a0:98:cc:54:a5:3e:ee:08:2f:a9:21:7a:
        8a:58:f2:8e:21:3e:e3:5f:8d:a9:01:31:49:d7:62:8b:
        34:51:5a:3b:69:19:ce:59:50:e0:89:7b:40:cc:8c:6c:
        7e:66:5e:a0:5c:d3:7d:5a:b3:28:6a:f6:af:83:1b:33:
        16:4d:b4:55:7d:69:ef:45:11:08:2a:66:89:05:6e:15:
        1e:fe:e4:37:91:ad:60:11:d2:53:05:9b:89:2d:cd:52
    Fingerprint (SHA-256):
        15:C0:9D:EA:64:AE:07:29:F2:63:66:C8:4C:C1:B5:13:37:75:C9:12:96:82:18:D3:AB:B7:4B:29:A0:B2:E4:0B
    Fingerprint (SHA1):
        2C:4F:51:E8:1C:2F:6F:1A:69:53:0D:8A:81:4A:94:58:B5:65:B4:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3436: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3437: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3438: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3439: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120387 (0x1e67d1c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:18 2017
            Not After : Tue May 10 12:05:18 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:97:ff:7c:c9:82:be:c3:c2:ed:8f:c2:0f:ca:ae:43:
                    b0:76:75:5c:1b:3e:f7:3f:82:59:b8:d3:24:a1:99:1c:
                    63:cc:21:ff:6b:34:2a:b4:1d:c4:f5:2d:87:91:89:ee:
                    7b:e7:97:72:c2:79:88:c8:c9:2a:a5:05:c1:1b:7c:c8:
                    ed:fd:b9:74:f7:4a:c9:23:ac:f0:3e:12:f1:76:de:9e:
                    8f:1f:0e:94:01:9f:a4:32:c4:ff:60:2c:f2:83:f8:8f:
                    1d:b2:38:a7:d9:aa:75:98:5a:02:ea:42:ac:bb:07:ca:
                    1a:71:76:0c:8a:2f:e7:a6:f3:5d:8f:e8:11:70:f8:2f:
                    5b:e0:3e:c9:bd:fd:52:4b:18:b2:2d:15:4f:34:00:bc:
                    30:c8:96:66:18:37:c9:26:fd:9f:59:85:f6:17:a4:fe:
                    2e:09:ad:f7:89:13:aa:b7:14:98:31:a5:72:90:20:11:
                    bd:44:f3:d4:ac:03:33:f9:c3:98:83:fe:cb:9b:fc:7a:
                    7a:8c:d1:e6:ec:6a:b6:ea:bb:65:42:d5:55:89:81:82:
                    ea:03:f3:d0:8a:72:0e:30:46:a5:fa:33:53:1f:6a:d7:
                    32:ca:d8:16:2f:cf:12:5d:aa:87:5b:62:89:54:94:07:
                    3e:21:51:c8:1b:fb:26:95:48:f9:02:4b:1b:a9:f1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:5c:79:f4:2f:53:ed:bf:69:74:90:f0:ad:c4:02:b4:
        1c:b0:21:12:8d:d1:c2:d1:7e:1f:3a:fa:eb:9b:0b:af:
        26:5e:84:86:6b:36:c5:2d:85:f2:75:93:70:3d:99:f8:
        2d:6a:ae:f3:08:3e:a8:54:38:c9:80:34:93:30:f2:97:
        8c:25:64:ae:81:27:6a:8d:55:c2:b1:02:97:08:ed:32:
        fb:9e:97:c8:ce:4e:fa:10:3c:37:d0:f2:5a:15:07:10:
        94:93:18:07:13:4f:ad:21:50:42:7e:0d:fe:17:a1:10:
        90:64:ab:0e:c5:1b:40:18:42:1b:8c:43:f4:e3:fd:38:
        35:bb:2a:35:b3:03:b5:28:b8:3a:f2:9f:15:45:63:1f:
        d6:da:31:04:eb:c3:38:74:3a:34:73:a4:63:46:13:bc:
        f7:39:7b:6a:61:26:70:5d:04:59:3f:e6:91:5e:8c:a2:
        c0:73:ba:4f:3c:b6:0a:8f:62:93:2c:ee:d8:31:32:c5:
        ae:77:b1:18:8d:ac:5f:b6:2a:ba:30:a1:5e:c2:e3:d0:
        a4:a0:f0:dd:a9:fc:7f:d1:41:87:1f:5a:d4:9b:41:1f:
        40:45:80:9c:c4:4f:8d:47:d5:5b:12:16:77:d6:d1:b0:
        2f:44:48:74:19:b4:bb:2a:4b:d2:92:47:40:bd:e5:81
    Fingerprint (SHA-256):
        18:8B:25:4B:30:C5:4D:A7:FD:B1:E1:1B:B3:A7:62:D7:2C:94:7C:18:D2:22:6F:F5:0E:58:1E:44:6A:59:B9:8D
    Fingerprint (SHA1):
        38:24:52:55:6F:CD:0F:A1:7D:D5:E8:74:7C:CE:DC:BA:57:2C:29:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120391 (0x1e67d1c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:05:22 2017
            Not After : Tue May 10 12:05:22 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:96:c9:a2:34:6c:ec:26:70:a8:39:9e:09:17:2f:5e:
                    6b:7f:da:7c:c7:84:fb:a3:4c:f5:53:d9:7b:b8:ee:bd:
                    0f:15:83:4e:a7:d2:29:fd:f4:92:60:02:75:e8:e9:16:
                    f7:44:6c:c3:ae:1b:d4:11:f5:80:69:fd:24:d3:09:02:
                    89:30:65:fd:ea:cf:4d:69:c5:74:13:bc:04:8e:d3:64:
                    e4:69:ff:97:8d:1e:04:cc:b6:6e:6f:5d:0e:17:1a:59:
                    a0:20:8e:f4:bd:68:6e:2b:10:1c:80:0f:2c:65:e3:11:
                    b9:5f:c6:66:28:77:47:6e:f3:55:1c:b9:43:87:e8:db:
                    79:ab:5a:5d:b2:a5:87:b8:bf:39:d8:a9:78:f1:cc:05:
                    3a:9a:46:21:a3:d3:4f:5a:3f:53:16:c1:14:4a:e0:0b:
                    0e:09:ab:90:2e:7d:b3:56:fa:b9:82:7e:67:ab:dd:df:
                    dc:db:9a:a2:13:43:65:9d:7a:d0:5c:e9:99:25:fb:ce:
                    a2:86:12:bf:84:2a:03:9e:3c:e9:ae:ee:d8:b0:b4:42:
                    81:22:7f:f6:22:81:d3:aa:dc:88:df:54:c4:ae:67:3a:
                    b2:3d:40:62:6a:f1:e5:9f:d8:fe:3e:09:a1:55:61:ea:
                    eb:4f:96:21:03:e3:77:18:40:e3:0a:3b:cc:fa:ca:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:d0:dd:81:44:9c:da:d5:66:ac:66:d1:2f:71:17:34:
        fb:f9:e7:0e:ca:6a:21:ff:16:8f:9f:55:42:0f:32:d7:
        57:d1:3d:24:9b:cc:9f:ca:f9:5e:c1:da:9c:cb:a5:39:
        96:b3:4f:90:47:90:94:0c:8d:e2:f6:5d:3b:7c:e9:89:
        f5:a3:c9:ab:ec:8e:54:42:76:59:d5:12:66:69:f3:b8:
        f7:fd:ce:21:3a:8c:e5:1c:1f:24:be:0c:32:ee:43:e6:
        27:96:50:f6:1c:33:09:0a:87:d8:ac:94:e9:52:0c:ab:
        e3:af:3c:0e:3e:ba:42:4f:0a:72:82:05:48:80:fe:6e:
        e5:1f:c3:cb:e4:3b:2d:a7:f2:a3:86:d5:54:5d:68:d7:
        83:a0:30:83:b8:61:6c:76:f5:cd:a7:dd:52:5b:e8:01:
        71:71:9d:68:63:a6:9c:41:00:76:5d:2f:1c:b4:c0:98:
        ea:f4:a6:05:c7:b3:90:9f:a7:a7:b8:c0:b8:81:84:40:
        9d:8f:c4:e7:e7:85:08:b9:49:4b:bb:e0:1b:f9:d8:a6:
        d0:6b:2c:6b:c9:9b:f7:aa:e1:ee:c0:e4:f2:49:f6:f3:
        9f:9f:6f:ca:7b:11:7b:07:b7:b8:f5:ed:c3:56:8e:b7:
        e1:7a:5a:5e:ce:9a:06:47:c2:a5:2a:31:0d:4a:95:cf
    Fingerprint (SHA-256):
        9D:F8:9F:78:6B:E2:AC:BB:F9:42:C0:F0:EA:95:35:6F:BF:28:6F:B0:67:4F:BF:90:9C:37:28:C9:AC:42:84:2E
    Fingerprint (SHA1):
        A1:82:A4:8E:89:FD:4E:53:DA:1D:E4:9F:B0:07:27:F4:01:B7:DC:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3441: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120387 (0x1e67d1c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:18 2017
            Not After : Tue May 10 12:05:18 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:97:ff:7c:c9:82:be:c3:c2:ed:8f:c2:0f:ca:ae:43:
                    b0:76:75:5c:1b:3e:f7:3f:82:59:b8:d3:24:a1:99:1c:
                    63:cc:21:ff:6b:34:2a:b4:1d:c4:f5:2d:87:91:89:ee:
                    7b:e7:97:72:c2:79:88:c8:c9:2a:a5:05:c1:1b:7c:c8:
                    ed:fd:b9:74:f7:4a:c9:23:ac:f0:3e:12:f1:76:de:9e:
                    8f:1f:0e:94:01:9f:a4:32:c4:ff:60:2c:f2:83:f8:8f:
                    1d:b2:38:a7:d9:aa:75:98:5a:02:ea:42:ac:bb:07:ca:
                    1a:71:76:0c:8a:2f:e7:a6:f3:5d:8f:e8:11:70:f8:2f:
                    5b:e0:3e:c9:bd:fd:52:4b:18:b2:2d:15:4f:34:00:bc:
                    30:c8:96:66:18:37:c9:26:fd:9f:59:85:f6:17:a4:fe:
                    2e:09:ad:f7:89:13:aa:b7:14:98:31:a5:72:90:20:11:
                    bd:44:f3:d4:ac:03:33:f9:c3:98:83:fe:cb:9b:fc:7a:
                    7a:8c:d1:e6:ec:6a:b6:ea:bb:65:42:d5:55:89:81:82:
                    ea:03:f3:d0:8a:72:0e:30:46:a5:fa:33:53:1f:6a:d7:
                    32:ca:d8:16:2f:cf:12:5d:aa:87:5b:62:89:54:94:07:
                    3e:21:51:c8:1b:fb:26:95:48:f9:02:4b:1b:a9:f1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        62:5c:79:f4:2f:53:ed:bf:69:74:90:f0:ad:c4:02:b4:
        1c:b0:21:12:8d:d1:c2:d1:7e:1f:3a:fa:eb:9b:0b:af:
        26:5e:84:86:6b:36:c5:2d:85:f2:75:93:70:3d:99:f8:
        2d:6a:ae:f3:08:3e:a8:54:38:c9:80:34:93:30:f2:97:
        8c:25:64:ae:81:27:6a:8d:55:c2:b1:02:97:08:ed:32:
        fb:9e:97:c8:ce:4e:fa:10:3c:37:d0:f2:5a:15:07:10:
        94:93:18:07:13:4f:ad:21:50:42:7e:0d:fe:17:a1:10:
        90:64:ab:0e:c5:1b:40:18:42:1b:8c:43:f4:e3:fd:38:
        35:bb:2a:35:b3:03:b5:28:b8:3a:f2:9f:15:45:63:1f:
        d6:da:31:04:eb:c3:38:74:3a:34:73:a4:63:46:13:bc:
        f7:39:7b:6a:61:26:70:5d:04:59:3f:e6:91:5e:8c:a2:
        c0:73:ba:4f:3c:b6:0a:8f:62:93:2c:ee:d8:31:32:c5:
        ae:77:b1:18:8d:ac:5f:b6:2a:ba:30:a1:5e:c2:e3:d0:
        a4:a0:f0:dd:a9:fc:7f:d1:41:87:1f:5a:d4:9b:41:1f:
        40:45:80:9c:c4:4f:8d:47:d5:5b:12:16:77:d6:d1:b0:
        2f:44:48:74:19:b4:bb:2a:4b:d2:92:47:40:bd:e5:81
    Fingerprint (SHA-256):
        18:8B:25:4B:30:C5:4D:A7:FD:B1:E1:1B:B3:A7:62:D7:2C:94:7C:18:D2:22:6F:F5:0E:58:1E:44:6A:59:B9:8D
    Fingerprint (SHA1):
        38:24:52:55:6F:CD:0F:A1:7D:D5:E8:74:7C:CE:DC:BA:57:2C:29:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3442: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3443: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3444: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3445: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3446: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3447: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120392 (0x1e67d1c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:05:24 2017
            Not After : Tue May 10 12:05:24 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:7a:31:f8:f8:4a:94:99:c1:52:6b:39:9c:21:e7:61:
                    71:33:e5:5a:ec:84:3b:27:90:65:2a:d4:cc:3f:64:3d:
                    8a:0a:d2:5d:75:75:ae:e3:8c:bf:ab:57:b7:ee:20:bf:
                    10:2f:27:60:1d:17:8d:0c:39:1c:82:5d:85:c8:e4:e6:
                    09:75:f9:6a:f6:8c:bf:23:ee:75:dd:4b:28:0a:01:17:
                    65:03:60:a5:53:fb:ca:d7:92:57:77:10:0f:3a:1b:55:
                    64:e6:e6:e8:42:c4:5a:d8:13:e3:9f:21:52:a9:2e:4d:
                    8d:05:2e:a8:b2:c9:62:f9:9d:da:60:0b:c3:a9:5c:a8:
                    2d:13:7f:ef:29:60:81:bf:d8:3c:72:38:be:ce:74:34:
                    82:3b:02:c4:0c:5e:61:b2:5a:dc:24:dc:0f:aa:58:a7:
                    bc:d8:df:5d:79:38:4a:a5:7c:87:2e:6f:80:26:23:87:
                    bd:6a:cd:c0:73:5c:30:61:2b:1e:96:04:c2:52:ae:b3:
                    1f:44:ea:35:fc:48:f2:b6:59:31:2b:ba:76:46:d4:a9:
                    30:de:2b:98:2b:aa:44:01:a3:b0:69:f2:ab:c8:a4:c5:
                    e4:f6:2b:05:44:01:c0:30:15:f0:25:2c:ce:44:42:0e:
                    22:ef:0a:7a:88:80:6a:b6:91:89:56:b0:c8:1c:3f:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:43:32:c7:39:fb:58:91:a6:d4:8e:2b:cc:78:f5:6f:
        e3:b7:1f:35:6c:7f:c5:bf:6d:4d:05:9a:2f:f7:2c:f1:
        09:3e:71:41:f0:9f:a5:3d:06:60:d2:9a:97:52:dd:3f:
        06:e2:0f:cd:92:78:65:ae:93:a1:6e:a3:7d:b7:67:95:
        e3:f0:d6:6c:b7:ec:b4:5d:e8:b8:a0:57:d9:15:fc:41:
        f7:c7:ac:11:32:9e:61:41:59:d5:cd:8c:1b:cf:9d:d7:
        6e:ff:58:c4:55:66:df:46:70:e9:26:9e:8a:79:43:da:
        40:1c:53:e3:ec:b7:6e:77:d0:7a:95:73:8a:01:6d:a9:
        b1:9a:69:ba:ac:f0:c2:8e:29:5b:32:45:6a:e2:6c:9f:
        83:6b:ef:a4:ba:4d:d6:a9:68:0b:f8:f4:27:c9:b9:18:
        6c:c7:e8:75:54:20:d2:2e:f8:d2:ce:43:a7:7d:61:08:
        71:c3:4a:29:2f:ff:66:93:e1:23:52:ac:5c:0e:dd:ce:
        65:f7:7c:c1:cb:ba:42:7d:34:3a:a7:09:13:a1:bf:c4:
        08:fa:57:a1:24:0a:34:51:79:aa:f4:63:7c:d0:86:08:
        c9:3a:98:aa:48:21:98:0e:a7:9d:d6:61:70:77:1e:66:
        33:fc:fa:cd:0a:38:a8:41:7d:77:ad:91:9e:e6:b1:8b
    Fingerprint (SHA-256):
        72:28:7D:C5:85:AD:B8:6D:4A:6A:0B:2F:A3:35:DC:1F:B9:EF:0E:C6:9F:1A:D2:67:FA:51:4B:E0:24:E4:3A:38
    Fingerprint (SHA1):
        F7:2D:53:3A:4D:64:F7:C2:BC:F9:68:52:B2:54:7B:F0:C9:81:0D:37
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3448: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3449: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3450: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3451: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3452: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3453: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3454: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3455: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3456: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3457: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3458: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3459: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3460: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3461: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3462: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3463: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3464: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3465: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3466: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3467: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3468: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3469: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3470: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3471: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 26214 at Wed May 10 12:05:28 UTC 2017
kill -USR1 26214
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 26214 killed at Wed May 10 12:05:28 UTC 2017
httpserv starting at Wed May 10 12:05:28 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:05:28 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 9251 >/dev/null 2>/dev/null
httpserv with PID 9251 found at Wed May 10 12:05:28 UTC 2017
httpserv with PID 9251 started at Wed May 10 12:05:28 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3472: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120394 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3473: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3474: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3475: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120395 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3476: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3477: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3478: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3479: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510120396 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3480: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3481: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510120397 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3482: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3483: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3484: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3485: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3486: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510120398   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3487: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3488: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3489: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3490: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3491: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120395 (0x1e67d1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:05:29 2017
            Not After : Tue May 10 12:05:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:5f:10:bd:a0:8f:d9:c7:52:aa:96:96:e9:da:b0:f3:
                    1a:f1:60:6b:ec:38:a0:c8:05:7f:6f:24:18:44:7d:22:
                    68:53:74:3d:1e:ba:01:74:fd:82:2a:39:cf:04:45:1c:
                    de:33:db:d2:7d:c1:a1:92:c0:b0:b4:e4:2d:4c:10:8b:
                    9a:85:aa:47:bc:68:94:69:24:99:1c:91:d8:25:8e:da:
                    d1:06:e8:a7:0d:a2:4e:86:37:7d:14:ac:f0:27:54:f0:
                    62:fb:fa:b2:c6:01:65:52:b5:c6:9e:03:c2:1c:43:58:
                    67:4c:dc:c9:27:f2:7e:c9:43:7d:07:ea:55:e3:36:6e:
                    05:36:8b:39:da:b9:01:1e:ca:18:5d:c0:d6:ba:f7:cd:
                    dd:7b:8e:3e:56:a0:da:04:eb:65:c6:38:70:11:6f:72:
                    71:3f:10:30:34:e0:29:19:5f:2c:b3:e9:d4:82:04:2f:
                    98:a5:d6:5b:b5:b4:a3:f1:9f:b5:18:50:8b:96:2b:ea:
                    52:0b:25:1e:0d:4b:ad:13:08:26:c3:7c:86:72:5c:a6:
                    ad:76:e5:34:7c:41:f9:e7:13:55:4b:41:8a:48:6c:cd:
                    c4:52:3f:af:50:6b:ab:6a:94:4e:76:80:39:8e:4e:db:
                    45:94:56:f0:ac:7c:5d:8f:ec:62:94:77:91:82:62:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:79:5f:5e:b5:39:2c:bc:85:c9:60:cc:d6:b8:fe:3a:
        41:71:00:d8:40:e7:9f:0e:b5:af:c3:0e:18:f1:18:b2:
        5f:5c:77:00:3f:91:da:45:3f:74:b4:dc:f9:2a:59:da:
        ac:f4:e3:01:c7:4c:88:5c:95:8f:da:8f:2f:3b:83:fc:
        1b:d4:6b:af:6e:b4:4f:76:3d:59:3c:8d:db:a2:13:9d:
        f3:aa:0e:1e:c0:a7:ed:58:c4:6e:21:ec:6d:96:fc:f2:
        8f:0b:43:d9:12:00:7b:5b:b8:c3:63:88:07:01:1c:32:
        5b:49:c1:4d:28:58:43:15:76:69:77:2a:38:4a:90:bb:
        24:70:17:a0:a6:36:b7:19:f5:ed:d5:d5:3c:db:c6:81:
        27:f3:97:fb:b5:d1:d7:12:26:2c:48:12:d0:eb:d9:35:
        39:e4:85:7f:3c:d0:93:73:2a:13:19:91:05:92:38:95:
        56:c8:5e:6a:8e:7e:11:e3:93:80:9a:97:3d:02:54:89:
        e6:65:ec:2c:33:5f:ed:1c:06:8b:97:de:cf:da:6f:bd:
        e3:9e:cf:84:82:8e:6a:b9:7c:50:9e:ef:f1:1f:a1:e3:
        b6:27:3b:a4:30:64:49:93:87:3b:cf:e6:01:02:36:c8:
        eb:67:e3:60:9d:de:77:43:bf:fe:32:fa:98:45:52:6e
    Fingerprint (SHA-256):
        3F:E1:D1:CB:64:D5:7A:62:39:D3:B8:7F:D2:53:70:CF:E4:D5:3E:17:92:A5:D6:15:75:2D:C1:E9:F4:39:BB:23
    Fingerprint (SHA1):
        7B:0F:1A:58:F5:EF:2D:B4:D3:15:F7:A2:7A:6D:F4:FC:54:E3:05:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3492: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120394 (0x1e67d1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:05:28 2017
            Not After : Tue May 10 12:05:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:1f:4c:28:36:16:62:06:7a:ef:88:a9:06:c9:24:47:
                    60:ae:92:4c:32:c8:f7:d4:56:54:bd:91:f0:00:35:ff:
                    88:44:10:46:d3:9c:9f:56:a2:44:6b:f2:17:c0:7a:19:
                    3c:a9:14:36:c5:93:f0:5a:39:41:cb:5f:54:7a:b1:78:
                    6a:6b:1c:b1:57:d4:a2:d1:b2:b0:8b:ef:bd:53:95:19:
                    e9:e2:80:dd:bd:37:82:bd:3e:8d:3f:29:f7:6a:de:d7:
                    36:4b:dd:e6:f5:c3:d6:7b:2a:51:61:2d:7e:38:ae:ce:
                    bf:ac:9f:03:ac:d5:a4:66:12:89:7f:c0:55:45:d3:9a:
                    3c:26:b7:da:22:95:b3:93:c7:18:2d:74:15:6b:f7:4c:
                    77:53:3a:54:8e:02:57:4e:2e:1f:54:a0:93:7a:4b:3c:
                    90:d0:33:1d:63:84:5f:f8:41:48:04:8d:ce:a2:1b:5c:
                    17:8b:49:f4:f9:59:02:74:13:8b:0d:4b:78:02:12:9f:
                    2c:00:74:4c:75:3b:00:4b:3f:a4:23:63:e9:fd:12:31:
                    19:02:f6:fe:f7:2e:6b:56:24:86:6e:4f:81:fd:73:1c:
                    36:a7:1f:ce:5e:34:6d:3e:ff:47:42:4f:58:87:96:e7:
                    b5:26:3b:f6:6c:3d:9e:8c:c8:9f:69:af:da:77:14:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:f4:41:f2:6e:e3:40:b8:17:ef:db:2d:db:8e:11:12:
        76:e8:5f:31:ba:a7:fa:18:9d:9d:41:ae:71:90:ad:b7:
        b9:ec:32:39:39:5e:2e:fc:de:97:66:c6:db:51:3e:f8:
        e2:5f:ce:03:5c:85:ba:5b:0c:08:d7:a7:ff:98:ec:87:
        f5:2e:46:79:bb:47:fd:2f:71:f7:3a:d7:b6:4d:35:0d:
        91:83:c2:14:92:81:64:a2:3a:58:f8:66:69:72:f0:3e:
        cc:2c:6a:56:73:c7:25:bd:33:28:82:c5:7e:7c:19:46:
        a2:76:f7:aa:73:6a:52:d1:e1:8f:97:72:7a:37:3b:aa:
        e8:5b:93:f7:ea:77:9a:d6:3d:99:69:3a:47:76:45:09:
        e7:aa:86:6c:d6:a3:c2:59:08:d5:0c:b9:bc:e7:a4:9b:
        db:c4:ae:1b:7c:5e:63:bb:00:d3:cf:8f:7a:08:af:eb:
        3e:87:e7:b2:b0:dd:c0:e0:d6:3a:31:dd:92:86:7c:d5:
        3b:b0:aa:ff:c9:49:68:50:19:f7:73:2d:f6:97:39:a1:
        45:36:75:86:74:03:3e:59:dd:a8:f6:a7:12:15:c5:37:
        6f:61:6b:6f:a9:e0:42:ef:2e:d9:1a:7e:4b:e1:a6:c4:
        c2:e3:c6:fb:15:18:5e:0c:ce:01:ea:2d:43:1a:09:b3
    Fingerprint (SHA-256):
        A6:46:81:0B:C7:FF:10:A2:0E:2E:A1:E9:8D:57:8D:FD:32:24:89:03:F1:1E:C9:38:21:59:01:25:46:DB:87:43
    Fingerprint (SHA1):
        E5:53:B3:BB:38:8C:3D:F2:4E:7C:28:C6:25:58:F3:FB:99:58:F1:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3493: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3494: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3495: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3496: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120394 (0x1e67d1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:05:28 2017
            Not After : Tue May 10 12:05:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:1f:4c:28:36:16:62:06:7a:ef:88:a9:06:c9:24:47:
                    60:ae:92:4c:32:c8:f7:d4:56:54:bd:91:f0:00:35:ff:
                    88:44:10:46:d3:9c:9f:56:a2:44:6b:f2:17:c0:7a:19:
                    3c:a9:14:36:c5:93:f0:5a:39:41:cb:5f:54:7a:b1:78:
                    6a:6b:1c:b1:57:d4:a2:d1:b2:b0:8b:ef:bd:53:95:19:
                    e9:e2:80:dd:bd:37:82:bd:3e:8d:3f:29:f7:6a:de:d7:
                    36:4b:dd:e6:f5:c3:d6:7b:2a:51:61:2d:7e:38:ae:ce:
                    bf:ac:9f:03:ac:d5:a4:66:12:89:7f:c0:55:45:d3:9a:
                    3c:26:b7:da:22:95:b3:93:c7:18:2d:74:15:6b:f7:4c:
                    77:53:3a:54:8e:02:57:4e:2e:1f:54:a0:93:7a:4b:3c:
                    90:d0:33:1d:63:84:5f:f8:41:48:04:8d:ce:a2:1b:5c:
                    17:8b:49:f4:f9:59:02:74:13:8b:0d:4b:78:02:12:9f:
                    2c:00:74:4c:75:3b:00:4b:3f:a4:23:63:e9:fd:12:31:
                    19:02:f6:fe:f7:2e:6b:56:24:86:6e:4f:81:fd:73:1c:
                    36:a7:1f:ce:5e:34:6d:3e:ff:47:42:4f:58:87:96:e7:
                    b5:26:3b:f6:6c:3d:9e:8c:c8:9f:69:af:da:77:14:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:f4:41:f2:6e:e3:40:b8:17:ef:db:2d:db:8e:11:12:
        76:e8:5f:31:ba:a7:fa:18:9d:9d:41:ae:71:90:ad:b7:
        b9:ec:32:39:39:5e:2e:fc:de:97:66:c6:db:51:3e:f8:
        e2:5f:ce:03:5c:85:ba:5b:0c:08:d7:a7:ff:98:ec:87:
        f5:2e:46:79:bb:47:fd:2f:71:f7:3a:d7:b6:4d:35:0d:
        91:83:c2:14:92:81:64:a2:3a:58:f8:66:69:72:f0:3e:
        cc:2c:6a:56:73:c7:25:bd:33:28:82:c5:7e:7c:19:46:
        a2:76:f7:aa:73:6a:52:d1:e1:8f:97:72:7a:37:3b:aa:
        e8:5b:93:f7:ea:77:9a:d6:3d:99:69:3a:47:76:45:09:
        e7:aa:86:6c:d6:a3:c2:59:08:d5:0c:b9:bc:e7:a4:9b:
        db:c4:ae:1b:7c:5e:63:bb:00:d3:cf:8f:7a:08:af:eb:
        3e:87:e7:b2:b0:dd:c0:e0:d6:3a:31:dd:92:86:7c:d5:
        3b:b0:aa:ff:c9:49:68:50:19:f7:73:2d:f6:97:39:a1:
        45:36:75:86:74:03:3e:59:dd:a8:f6:a7:12:15:c5:37:
        6f:61:6b:6f:a9:e0:42:ef:2e:d9:1a:7e:4b:e1:a6:c4:
        c2:e3:c6:fb:15:18:5e:0c:ce:01:ea:2d:43:1a:09:b3
    Fingerprint (SHA-256):
        A6:46:81:0B:C7:FF:10:A2:0E:2E:A1:E9:8D:57:8D:FD:32:24:89:03:F1:1E:C9:38:21:59:01:25:46:DB:87:43
    Fingerprint (SHA1):
        E5:53:B3:BB:38:8C:3D:F2:4E:7C:28:C6:25:58:F3:FB:99:58:F1:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3497: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120395 (0x1e67d1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:05:29 2017
            Not After : Tue May 10 12:05:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:5f:10:bd:a0:8f:d9:c7:52:aa:96:96:e9:da:b0:f3:
                    1a:f1:60:6b:ec:38:a0:c8:05:7f:6f:24:18:44:7d:22:
                    68:53:74:3d:1e:ba:01:74:fd:82:2a:39:cf:04:45:1c:
                    de:33:db:d2:7d:c1:a1:92:c0:b0:b4:e4:2d:4c:10:8b:
                    9a:85:aa:47:bc:68:94:69:24:99:1c:91:d8:25:8e:da:
                    d1:06:e8:a7:0d:a2:4e:86:37:7d:14:ac:f0:27:54:f0:
                    62:fb:fa:b2:c6:01:65:52:b5:c6:9e:03:c2:1c:43:58:
                    67:4c:dc:c9:27:f2:7e:c9:43:7d:07:ea:55:e3:36:6e:
                    05:36:8b:39:da:b9:01:1e:ca:18:5d:c0:d6:ba:f7:cd:
                    dd:7b:8e:3e:56:a0:da:04:eb:65:c6:38:70:11:6f:72:
                    71:3f:10:30:34:e0:29:19:5f:2c:b3:e9:d4:82:04:2f:
                    98:a5:d6:5b:b5:b4:a3:f1:9f:b5:18:50:8b:96:2b:ea:
                    52:0b:25:1e:0d:4b:ad:13:08:26:c3:7c:86:72:5c:a6:
                    ad:76:e5:34:7c:41:f9:e7:13:55:4b:41:8a:48:6c:cd:
                    c4:52:3f:af:50:6b:ab:6a:94:4e:76:80:39:8e:4e:db:
                    45:94:56:f0:ac:7c:5d:8f:ec:62:94:77:91:82:62:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:79:5f:5e:b5:39:2c:bc:85:c9:60:cc:d6:b8:fe:3a:
        41:71:00:d8:40:e7:9f:0e:b5:af:c3:0e:18:f1:18:b2:
        5f:5c:77:00:3f:91:da:45:3f:74:b4:dc:f9:2a:59:da:
        ac:f4:e3:01:c7:4c:88:5c:95:8f:da:8f:2f:3b:83:fc:
        1b:d4:6b:af:6e:b4:4f:76:3d:59:3c:8d:db:a2:13:9d:
        f3:aa:0e:1e:c0:a7:ed:58:c4:6e:21:ec:6d:96:fc:f2:
        8f:0b:43:d9:12:00:7b:5b:b8:c3:63:88:07:01:1c:32:
        5b:49:c1:4d:28:58:43:15:76:69:77:2a:38:4a:90:bb:
        24:70:17:a0:a6:36:b7:19:f5:ed:d5:d5:3c:db:c6:81:
        27:f3:97:fb:b5:d1:d7:12:26:2c:48:12:d0:eb:d9:35:
        39:e4:85:7f:3c:d0:93:73:2a:13:19:91:05:92:38:95:
        56:c8:5e:6a:8e:7e:11:e3:93:80:9a:97:3d:02:54:89:
        e6:65:ec:2c:33:5f:ed:1c:06:8b:97:de:cf:da:6f:bd:
        e3:9e:cf:84:82:8e:6a:b9:7c:50:9e:ef:f1:1f:a1:e3:
        b6:27:3b:a4:30:64:49:93:87:3b:cf:e6:01:02:36:c8:
        eb:67:e3:60:9d:de:77:43:bf:fe:32:fa:98:45:52:6e
    Fingerprint (SHA-256):
        3F:E1:D1:CB:64:D5:7A:62:39:D3:B8:7F:D2:53:70:CF:E4:D5:3E:17:92:A5:D6:15:75:2D:C1:E9:F4:39:BB:23
    Fingerprint (SHA1):
        7B:0F:1A:58:F5:EF:2D:B4:D3:15:F7:A2:7A:6D:F4:FC:54:E3:05:00
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3498: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3499: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3500: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3501: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3502: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3503: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120395 (0x1e67d1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:05:29 2017
            Not After : Tue May 10 12:05:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:5f:10:bd:a0:8f:d9:c7:52:aa:96:96:e9:da:b0:f3:
                    1a:f1:60:6b:ec:38:a0:c8:05:7f:6f:24:18:44:7d:22:
                    68:53:74:3d:1e:ba:01:74:fd:82:2a:39:cf:04:45:1c:
                    de:33:db:d2:7d:c1:a1:92:c0:b0:b4:e4:2d:4c:10:8b:
                    9a:85:aa:47:bc:68:94:69:24:99:1c:91:d8:25:8e:da:
                    d1:06:e8:a7:0d:a2:4e:86:37:7d:14:ac:f0:27:54:f0:
                    62:fb:fa:b2:c6:01:65:52:b5:c6:9e:03:c2:1c:43:58:
                    67:4c:dc:c9:27:f2:7e:c9:43:7d:07:ea:55:e3:36:6e:
                    05:36:8b:39:da:b9:01:1e:ca:18:5d:c0:d6:ba:f7:cd:
                    dd:7b:8e:3e:56:a0:da:04:eb:65:c6:38:70:11:6f:72:
                    71:3f:10:30:34:e0:29:19:5f:2c:b3:e9:d4:82:04:2f:
                    98:a5:d6:5b:b5:b4:a3:f1:9f:b5:18:50:8b:96:2b:ea:
                    52:0b:25:1e:0d:4b:ad:13:08:26:c3:7c:86:72:5c:a6:
                    ad:76:e5:34:7c:41:f9:e7:13:55:4b:41:8a:48:6c:cd:
                    c4:52:3f:af:50:6b:ab:6a:94:4e:76:80:39:8e:4e:db:
                    45:94:56:f0:ac:7c:5d:8f:ec:62:94:77:91:82:62:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:79:5f:5e:b5:39:2c:bc:85:c9:60:cc:d6:b8:fe:3a:
        41:71:00:d8:40:e7:9f:0e:b5:af:c3:0e:18:f1:18:b2:
        5f:5c:77:00:3f:91:da:45:3f:74:b4:dc:f9:2a:59:da:
        ac:f4:e3:01:c7:4c:88:5c:95:8f:da:8f:2f:3b:83:fc:
        1b:d4:6b:af:6e:b4:4f:76:3d:59:3c:8d:db:a2:13:9d:
        f3:aa:0e:1e:c0:a7:ed:58:c4:6e:21:ec:6d:96:fc:f2:
        8f:0b:43:d9:12:00:7b:5b:b8:c3:63:88:07:01:1c:32:
        5b:49:c1:4d:28:58:43:15:76:69:77:2a:38:4a:90:bb:
        24:70:17:a0:a6:36:b7:19:f5:ed:d5:d5:3c:db:c6:81:
        27:f3:97:fb:b5:d1:d7:12:26:2c:48:12:d0:eb:d9:35:
        39:e4:85:7f:3c:d0:93:73:2a:13:19:91:05:92:38:95:
        56:c8:5e:6a:8e:7e:11:e3:93:80:9a:97:3d:02:54:89:
        e6:65:ec:2c:33:5f:ed:1c:06:8b:97:de:cf:da:6f:bd:
        e3:9e:cf:84:82:8e:6a:b9:7c:50:9e:ef:f1:1f:a1:e3:
        b6:27:3b:a4:30:64:49:93:87:3b:cf:e6:01:02:36:c8:
        eb:67:e3:60:9d:de:77:43:bf:fe:32:fa:98:45:52:6e
    Fingerprint (SHA-256):
        3F:E1:D1:CB:64:D5:7A:62:39:D3:B8:7F:D2:53:70:CF:E4:D5:3E:17:92:A5:D6:15:75:2D:C1:E9:F4:39:BB:23
    Fingerprint (SHA1):
        7B:0F:1A:58:F5:EF:2D:B4:D3:15:F7:A2:7A:6D:F4:FC:54:E3:05:00
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3504: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120395 (0x1e67d1cb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:05:29 2017
            Not After : Tue May 10 12:05:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:5f:10:bd:a0:8f:d9:c7:52:aa:96:96:e9:da:b0:f3:
                    1a:f1:60:6b:ec:38:a0:c8:05:7f:6f:24:18:44:7d:22:
                    68:53:74:3d:1e:ba:01:74:fd:82:2a:39:cf:04:45:1c:
                    de:33:db:d2:7d:c1:a1:92:c0:b0:b4:e4:2d:4c:10:8b:
                    9a:85:aa:47:bc:68:94:69:24:99:1c:91:d8:25:8e:da:
                    d1:06:e8:a7:0d:a2:4e:86:37:7d:14:ac:f0:27:54:f0:
                    62:fb:fa:b2:c6:01:65:52:b5:c6:9e:03:c2:1c:43:58:
                    67:4c:dc:c9:27:f2:7e:c9:43:7d:07:ea:55:e3:36:6e:
                    05:36:8b:39:da:b9:01:1e:ca:18:5d:c0:d6:ba:f7:cd:
                    dd:7b:8e:3e:56:a0:da:04:eb:65:c6:38:70:11:6f:72:
                    71:3f:10:30:34:e0:29:19:5f:2c:b3:e9:d4:82:04:2f:
                    98:a5:d6:5b:b5:b4:a3:f1:9f:b5:18:50:8b:96:2b:ea:
                    52:0b:25:1e:0d:4b:ad:13:08:26:c3:7c:86:72:5c:a6:
                    ad:76:e5:34:7c:41:f9:e7:13:55:4b:41:8a:48:6c:cd:
                    c4:52:3f:af:50:6b:ab:6a:94:4e:76:80:39:8e:4e:db:
                    45:94:56:f0:ac:7c:5d:8f:ec:62:94:77:91:82:62:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        28:79:5f:5e:b5:39:2c:bc:85:c9:60:cc:d6:b8:fe:3a:
        41:71:00:d8:40:e7:9f:0e:b5:af:c3:0e:18:f1:18:b2:
        5f:5c:77:00:3f:91:da:45:3f:74:b4:dc:f9:2a:59:da:
        ac:f4:e3:01:c7:4c:88:5c:95:8f:da:8f:2f:3b:83:fc:
        1b:d4:6b:af:6e:b4:4f:76:3d:59:3c:8d:db:a2:13:9d:
        f3:aa:0e:1e:c0:a7:ed:58:c4:6e:21:ec:6d:96:fc:f2:
        8f:0b:43:d9:12:00:7b:5b:b8:c3:63:88:07:01:1c:32:
        5b:49:c1:4d:28:58:43:15:76:69:77:2a:38:4a:90:bb:
        24:70:17:a0:a6:36:b7:19:f5:ed:d5:d5:3c:db:c6:81:
        27:f3:97:fb:b5:d1:d7:12:26:2c:48:12:d0:eb:d9:35:
        39:e4:85:7f:3c:d0:93:73:2a:13:19:91:05:92:38:95:
        56:c8:5e:6a:8e:7e:11:e3:93:80:9a:97:3d:02:54:89:
        e6:65:ec:2c:33:5f:ed:1c:06:8b:97:de:cf:da:6f:bd:
        e3:9e:cf:84:82:8e:6a:b9:7c:50:9e:ef:f1:1f:a1:e3:
        b6:27:3b:a4:30:64:49:93:87:3b:cf:e6:01:02:36:c8:
        eb:67:e3:60:9d:de:77:43:bf:fe:32:fa:98:45:52:6e
    Fingerprint (SHA-256):
        3F:E1:D1:CB:64:D5:7A:62:39:D3:B8:7F:D2:53:70:CF:E4:D5:3E:17:92:A5:D6:15:75:2D:C1:E9:F4:39:BB:23
    Fingerprint (SHA1):
        7B:0F:1A:58:F5:EF:2D:B4:D3:15:F7:A2:7A:6D:F4:FC:54:E3:05:00
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3505: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3506: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3507: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3508: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3509: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3510: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120394 (0x1e67d1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:05:28 2017
            Not After : Tue May 10 12:05:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:1f:4c:28:36:16:62:06:7a:ef:88:a9:06:c9:24:47:
                    60:ae:92:4c:32:c8:f7:d4:56:54:bd:91:f0:00:35:ff:
                    88:44:10:46:d3:9c:9f:56:a2:44:6b:f2:17:c0:7a:19:
                    3c:a9:14:36:c5:93:f0:5a:39:41:cb:5f:54:7a:b1:78:
                    6a:6b:1c:b1:57:d4:a2:d1:b2:b0:8b:ef:bd:53:95:19:
                    e9:e2:80:dd:bd:37:82:bd:3e:8d:3f:29:f7:6a:de:d7:
                    36:4b:dd:e6:f5:c3:d6:7b:2a:51:61:2d:7e:38:ae:ce:
                    bf:ac:9f:03:ac:d5:a4:66:12:89:7f:c0:55:45:d3:9a:
                    3c:26:b7:da:22:95:b3:93:c7:18:2d:74:15:6b:f7:4c:
                    77:53:3a:54:8e:02:57:4e:2e:1f:54:a0:93:7a:4b:3c:
                    90:d0:33:1d:63:84:5f:f8:41:48:04:8d:ce:a2:1b:5c:
                    17:8b:49:f4:f9:59:02:74:13:8b:0d:4b:78:02:12:9f:
                    2c:00:74:4c:75:3b:00:4b:3f:a4:23:63:e9:fd:12:31:
                    19:02:f6:fe:f7:2e:6b:56:24:86:6e:4f:81:fd:73:1c:
                    36:a7:1f:ce:5e:34:6d:3e:ff:47:42:4f:58:87:96:e7:
                    b5:26:3b:f6:6c:3d:9e:8c:c8:9f:69:af:da:77:14:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:f4:41:f2:6e:e3:40:b8:17:ef:db:2d:db:8e:11:12:
        76:e8:5f:31:ba:a7:fa:18:9d:9d:41:ae:71:90:ad:b7:
        b9:ec:32:39:39:5e:2e:fc:de:97:66:c6:db:51:3e:f8:
        e2:5f:ce:03:5c:85:ba:5b:0c:08:d7:a7:ff:98:ec:87:
        f5:2e:46:79:bb:47:fd:2f:71:f7:3a:d7:b6:4d:35:0d:
        91:83:c2:14:92:81:64:a2:3a:58:f8:66:69:72:f0:3e:
        cc:2c:6a:56:73:c7:25:bd:33:28:82:c5:7e:7c:19:46:
        a2:76:f7:aa:73:6a:52:d1:e1:8f:97:72:7a:37:3b:aa:
        e8:5b:93:f7:ea:77:9a:d6:3d:99:69:3a:47:76:45:09:
        e7:aa:86:6c:d6:a3:c2:59:08:d5:0c:b9:bc:e7:a4:9b:
        db:c4:ae:1b:7c:5e:63:bb:00:d3:cf:8f:7a:08:af:eb:
        3e:87:e7:b2:b0:dd:c0:e0:d6:3a:31:dd:92:86:7c:d5:
        3b:b0:aa:ff:c9:49:68:50:19:f7:73:2d:f6:97:39:a1:
        45:36:75:86:74:03:3e:59:dd:a8:f6:a7:12:15:c5:37:
        6f:61:6b:6f:a9:e0:42:ef:2e:d9:1a:7e:4b:e1:a6:c4:
        c2:e3:c6:fb:15:18:5e:0c:ce:01:ea:2d:43:1a:09:b3
    Fingerprint (SHA-256):
        A6:46:81:0B:C7:FF:10:A2:0E:2E:A1:E9:8D:57:8D:FD:32:24:89:03:F1:1E:C9:38:21:59:01:25:46:DB:87:43
    Fingerprint (SHA1):
        E5:53:B3:BB:38:8C:3D:F2:4E:7C:28:C6:25:58:F3:FB:99:58:F1:3A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3511: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120394 (0x1e67d1ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:05:28 2017
            Not After : Tue May 10 12:05:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:1f:4c:28:36:16:62:06:7a:ef:88:a9:06:c9:24:47:
                    60:ae:92:4c:32:c8:f7:d4:56:54:bd:91:f0:00:35:ff:
                    88:44:10:46:d3:9c:9f:56:a2:44:6b:f2:17:c0:7a:19:
                    3c:a9:14:36:c5:93:f0:5a:39:41:cb:5f:54:7a:b1:78:
                    6a:6b:1c:b1:57:d4:a2:d1:b2:b0:8b:ef:bd:53:95:19:
                    e9:e2:80:dd:bd:37:82:bd:3e:8d:3f:29:f7:6a:de:d7:
                    36:4b:dd:e6:f5:c3:d6:7b:2a:51:61:2d:7e:38:ae:ce:
                    bf:ac:9f:03:ac:d5:a4:66:12:89:7f:c0:55:45:d3:9a:
                    3c:26:b7:da:22:95:b3:93:c7:18:2d:74:15:6b:f7:4c:
                    77:53:3a:54:8e:02:57:4e:2e:1f:54:a0:93:7a:4b:3c:
                    90:d0:33:1d:63:84:5f:f8:41:48:04:8d:ce:a2:1b:5c:
                    17:8b:49:f4:f9:59:02:74:13:8b:0d:4b:78:02:12:9f:
                    2c:00:74:4c:75:3b:00:4b:3f:a4:23:63:e9:fd:12:31:
                    19:02:f6:fe:f7:2e:6b:56:24:86:6e:4f:81:fd:73:1c:
                    36:a7:1f:ce:5e:34:6d:3e:ff:47:42:4f:58:87:96:e7:
                    b5:26:3b:f6:6c:3d:9e:8c:c8:9f:69:af:da:77:14:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:f4:41:f2:6e:e3:40:b8:17:ef:db:2d:db:8e:11:12:
        76:e8:5f:31:ba:a7:fa:18:9d:9d:41:ae:71:90:ad:b7:
        b9:ec:32:39:39:5e:2e:fc:de:97:66:c6:db:51:3e:f8:
        e2:5f:ce:03:5c:85:ba:5b:0c:08:d7:a7:ff:98:ec:87:
        f5:2e:46:79:bb:47:fd:2f:71:f7:3a:d7:b6:4d:35:0d:
        91:83:c2:14:92:81:64:a2:3a:58:f8:66:69:72:f0:3e:
        cc:2c:6a:56:73:c7:25:bd:33:28:82:c5:7e:7c:19:46:
        a2:76:f7:aa:73:6a:52:d1:e1:8f:97:72:7a:37:3b:aa:
        e8:5b:93:f7:ea:77:9a:d6:3d:99:69:3a:47:76:45:09:
        e7:aa:86:6c:d6:a3:c2:59:08:d5:0c:b9:bc:e7:a4:9b:
        db:c4:ae:1b:7c:5e:63:bb:00:d3:cf:8f:7a:08:af:eb:
        3e:87:e7:b2:b0:dd:c0:e0:d6:3a:31:dd:92:86:7c:d5:
        3b:b0:aa:ff:c9:49:68:50:19:f7:73:2d:f6:97:39:a1:
        45:36:75:86:74:03:3e:59:dd:a8:f6:a7:12:15:c5:37:
        6f:61:6b:6f:a9:e0:42:ef:2e:d9:1a:7e:4b:e1:a6:c4:
        c2:e3:c6:fb:15:18:5e:0c:ce:01:ea:2d:43:1a:09:b3
    Fingerprint (SHA-256):
        A6:46:81:0B:C7:FF:10:A2:0E:2E:A1:E9:8D:57:8D:FD:32:24:89:03:F1:1E:C9:38:21:59:01:25:46:DB:87:43
    Fingerprint (SHA1):
        E5:53:B3:BB:38:8C:3D:F2:4E:7C:28:C6:25:58:F3:FB:99:58:F1:3A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3513: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120399 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3514: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3515: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3516: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120400 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3517: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3518: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3519: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120401 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3520: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3521: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3522: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120402 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3523: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3524: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3525: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120403 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3526: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3527: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3528: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120404 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3529: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3530: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3531: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120405 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3532: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3533: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3534: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120406 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3535: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3536: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3537: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120407 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3538: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3539: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3540: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3541: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510120408 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3542: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3543: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510120409 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3544: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3545: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510120410 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3546: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3547: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3548: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3549: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3550: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510120411 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3551: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3552: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510120412 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3553: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3554: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510120413 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3555: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3556: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3557: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3558: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3559: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510120414 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3560: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3561: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510120415 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3562: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3563: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510120416 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3564: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3565: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3566: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3567: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3568: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510120417 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3569: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510120418 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3571: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3572: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510120419 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3573: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3574: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3575: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3576: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3577: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510120420   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3578: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3579: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3580: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3581: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120421   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3582: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3583: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120399 (0x1e67d1cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:33 2017
            Not After : Tue May 10 12:05:33 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:f5:99:30:03:4c:1b:d5:a0:4e:93:79:2c:47:50:ea:
                    1e:72:4e:08:d6:79:28:6e:4c:59:15:4b:40:8d:e1:d3:
                    4b:b2:42:27:8a:b0:82:cb:ce:f1:57:fd:ca:cf:96:89:
                    21:d5:ec:4a:7d:5c:9b:4f:a3:8a:a3:24:1e:ec:fe:58:
                    ad:65:a6:df:49:37:9c:8b:58:0e:e6:9d:e2:7e:c5:78:
                    14:15:f5:f8:75:b2:08:ae:04:3b:ee:2c:33:69:a0:2e:
                    e9:54:81:9e:82:6d:42:91:99:1e:26:23:27:24:a4:0b:
                    78:23:00:c7:a1:75:60:85:cb:c5:f9:52:bd:c3:f9:6a:
                    2c:e6:8c:95:4f:3b:df:e0:fe:bb:c5:c4:86:8d:2a:d5:
                    ea:8b:18:20:40:7a:78:5c:1b:b7:05:a8:a2:2d:47:bf:
                    ce:da:65:9e:e9:80:56:9f:84:c8:66:18:9c:f9:c0:d2:
                    15:bd:8f:6f:a1:a9:32:8d:36:bb:07:c3:12:80:b0:56:
                    92:16:0d:23:73:17:18:ad:26:f5:58:f4:2a:06:b1:1e:
                    c6:8e:d2:1d:3c:39:00:82:fa:33:5f:2d:74:1d:56:1d:
                    87:a4:19:2a:e0:f6:69:21:7f:a0:0d:c4:a7:65:62:64:
                    2d:09:fc:2c:9c:56:54:0c:58:1e:3a:b5:59:73:71:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d2:e4:d3:62:77:5b:33:7e:2b:a2:88:e8:d6:53:d9:31:
        ed:b3:d8:6b:b0:8d:a2:7c:94:20:f7:dd:ab:cc:1f:d7:
        98:65:93:64:15:42:ce:5c:36:9f:59:46:1b:bd:b8:02:
        0e:d3:60:ed:b2:37:b5:77:8c:27:d9:ff:d6:77:73:48:
        61:7e:e8:fa:38:ef:4b:ba:c1:14:6a:4b:86:5a:ab:df:
        27:26:ec:38:8a:ac:16:ac:8f:35:37:89:10:37:48:4f:
        f9:99:07:25:98:ed:6b:fa:53:9c:ce:44:71:04:44:80:
        12:2b:e2:d9:be:4f:e8:58:2a:e1:a6:1b:db:8b:a7:66:
        4e:d1:02:5a:e0:91:5e:d4:ad:fc:0d:cd:1f:a7:1f:79:
        d5:ee:56:71:91:78:8c:27:02:94:47:7b:f1:4d:d0:f7:
        60:a4:68:05:10:5a:e4:7f:ff:77:e5:65:5c:d9:ff:27:
        16:d8:f5:50:c0:7a:7a:50:c9:55:1d:d9:a9:ca:e0:7b:
        fe:50:90:44:26:d4:b9:a4:04:53:0c:05:8c:b9:37:f3:
        68:92:44:0f:1c:16:28:b7:e7:7e:1e:21:5c:6a:81:60:
        36:f1:d9:22:14:10:fd:8d:76:5d:12:2f:0b:43:af:0f:
        be:a3:49:71:e1:1e:19:06:d0:20:56:e5:48:d8:1f:3a
    Fingerprint (SHA-256):
        1A:1F:0D:CB:2E:C6:D9:35:32:6C:61:F5:FB:9A:07:78:12:0D:BA:85:D5:67:83:25:CF:F0:05:AE:60:C2:C7:41
    Fingerprint (SHA1):
        B5:4D:94:F7:3B:EE:24:E6:78:26:FC:A1:36:71:A7:B1:03:93:F9:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3584: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120400 (0x1e67d1d0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:05:34 2017
            Not After : Tue May 10 12:05:34 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f3:74:d5:4d:af:a5:98:43:15:37:f3:9f:d4:f1:75:c4:
                    8a:22:d1:75:17:1b:b2:b9:40:52:dc:05:98:e7:a3:16:
                    ee:bf:d7:39:30:3d:ee:37:34:2f:7c:9b:67:a3:13:0f:
                    60:a3:06:46:d7:c8:19:68:1a:bd:7c:d6:fe:59:2e:54:
                    e1:d4:49:89:88:22:66:e7:8d:00:05:62:67:84:7c:a4:
                    6b:ef:98:0e:eb:72:d0:3b:f5:08:dd:b4:cf:13:72:7f:
                    f5:8d:d2:6c:f2:f4:30:64:ea:a6:c2:65:10:49:d7:ac:
                    d3:00:2d:52:75:e9:5b:4b:f7:93:09:f3:23:1f:3a:21:
                    6b:79:ae:92:ba:79:48:7d:00:2e:3a:a7:a2:01:cd:2e:
                    66:3d:ea:bc:52:d4:07:ea:84:6d:bd:95:1c:1d:bc:67:
                    da:37:66:35:5d:aa:c5:28:e3:f3:04:ae:82:0a:93:fa:
                    74:96:d6:63:06:91:b2:47:cb:80:69:52:37:d3:bb:c5:
                    aa:4d:bf:dd:d1:6f:0e:57:5c:ba:4a:f0:fe:2f:d1:96:
                    68:56:e4:bd:79:b0:36:56:83:b7:3b:b2:68:51:7f:c6:
                    02:b6:b5:d9:8c:eb:1d:e1:b0:0f:92:c0:70:a8:33:ff:
                    f1:03:74:c0:3e:c9:9c:51:77:d5:63:c5:7e:69:25:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:6c:66:53:14:0d:e2:db:a6:f6:98:6c:94:85:27:b4:
        8e:f6:1f:15:85:cd:03:15:8a:ce:1b:37:fc:e1:80:66:
        b7:3c:85:b8:c7:3b:cb:98:6c:c4:9c:59:ec:02:b6:df:
        b6:cf:1e:d0:22:26:ef:dd:95:43:d1:e8:45:bc:ca:75:
        d6:6a:77:d3:f9:be:73:16:1d:72:93:7c:f5:27:34:54:
        93:45:45:e1:75:da:a5:f6:1c:97:b9:52:45:2c:8b:53:
        81:a5:53:a3:7a:30:a5:c2:60:89:29:69:c5:46:83:bf:
        c9:2e:e6:c3:ca:23:12:f9:d4:0c:72:04:b2:49:d3:3e:
        b5:d9:73:93:89:c8:2c:ad:f9:9c:2f:08:53:6b:90:6a:
        ee:4d:8e:78:9f:d9:3b:98:ab:d6:0e:90:44:e4:d8:bb:
        8f:93:54:55:47:1b:6a:67:e8:ff:66:39:33:d2:82:c2:
        6e:2f:4d:02:f2:5b:4a:02:05:bf:54:68:98:e4:cf:30:
        62:a2:3c:cb:2f:2a:44:e6:75:5c:c6:1c:c2:40:9d:42:
        26:5b:1a:76:04:bc:38:75:65:5b:43:cb:a7:c2:53:99:
        f4:13:1e:87:9c:16:6b:bb:04:57:79:b7:95:a4:88:18:
        79:f7:28:9f:94:d2:11:4b:fe:86:3c:e7:cc:2b:d0:54
    Fingerprint (SHA-256):
        50:6A:5B:E0:74:51:21:9C:F6:63:D1:E9:4F:43:19:29:6F:5C:AF:92:C8:3E:4C:8C:E2:F7:F7:11:A4:C6:0B:EE
    Fingerprint (SHA1):
        A6:D1:61:6F:CA:7E:2A:4B:39:D3:1B:85:4B:37:88:42:C1:15:73:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120401 (0x1e67d1d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:05:34 2017
            Not After : Tue May 10 12:05:34 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:1d:e9:25:52:74:a3:2c:ca:98:98:2a:a6:db:25:1f:
                    06:00:b8:13:b7:00:76:0a:a1:57:70:bf:a6:40:f4:5b:
                    8a:02:b2:66:86:1f:78:57:bc:b4:e8:61:e6:13:f5:ca:
                    0e:c5:fc:98:a6:f1:70:be:69:40:63:f5:18:28:89:99:
                    56:fc:b2:57:17:98:88:1f:ae:f3:59:ae:81:66:07:4d:
                    bc:dc:bc:d4:a3:7d:12:1a:2a:cd:18:c8:a6:b5:7f:ce:
                    41:2c:b1:87:45:37:63:c8:4d:3e:25:78:76:65:28:76:
                    3e:02:e0:48:ca:aa:2b:eb:64:15:5b:63:17:af:52:d4:
                    5c:d0:49:db:d2:f7:c8:09:6f:06:3a:d6:c4:30:d1:8a:
                    0b:76:6e:3d:29:72:19:8d:c6:33:b0:d2:2d:d0:10:5f:
                    39:3d:52:31:8d:2f:3c:1b:ba:f1:e1:af:ec:df:26:6b:
                    08:c9:c2:1a:30:9c:08:07:d3:a5:55:e7:da:38:85:b7:
                    c3:3a:42:17:e7:9c:9b:87:6d:93:2b:2d:b3:cc:36:ea:
                    90:73:fa:2a:54:7b:e1:56:2e:b4:75:9d:35:aa:1b:68:
                    66:cc:bc:96:f5:9d:22:dc:de:cd:32:4c:fb:42:59:1e:
                    38:e0:bf:b6:dc:e6:b1:41:c4:70:7b:cb:b6:4d:b0:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:59:f6:bc:a9:8d:81:04:d9:ac:aa:4c:35:6d:c4:c7:
        38:12:51:b2:34:2f:95:18:6c:45:a9:3a:79:6d:9f:49:
        50:50:dc:64:1e:70:99:72:c1:d4:61:07:1f:2f:91:38:
        98:ac:fe:7d:36:27:fe:d3:4c:75:8a:92:e7:9a:9c:08:
        e9:7a:c9:a3:7d:39:bd:16:0a:a4:93:6e:46:d6:f0:14:
        b1:a5:58:e8:24:39:8e:51:7c:b8:7e:8b:f3:2f:1f:f9:
        03:5a:77:fb:3e:fe:ca:bc:00:9a:0b:41:2e:43:da:e7:
        67:fa:e1:6c:df:47:64:34:cc:91:bb:f1:c9:8b:1c:27:
        9a:3d:69:3a:02:20:c8:0f:2f:97:31:3f:c9:2b:ee:c3:
        79:95:7d:1b:c2:e2:28:21:ce:2d:58:46:e1:ff:1e:27:
        bf:ce:26:1a:c2:48:63:3a:c9:ed:0f:bc:9c:a5:77:04:
        fa:2d:68:9e:da:8f:eb:d1:c3:19:05:8a:97:ec:45:a1:
        32:c0:a2:8d:1e:fc:fc:49:05:61:eb:bf:1d:3a:a6:52:
        59:0a:ba:7c:4f:85:d4:bb:34:4b:9a:64:2f:85:a8:f7:
        14:13:ee:b3:1e:3b:46:d3:bd:1d:76:74:ce:51:a4:0c:
        bd:0d:82:6a:b7:7b:69:e0:5f:36:14:97:77:53:05:84
    Fingerprint (SHA-256):
        AB:15:FD:80:C9:AB:57:47:54:A1:E9:C3:AA:66:FB:4F:ED:2D:75:08:25:BC:A4:F7:19:C4:9A:D9:CC:46:25:CF
    Fingerprint (SHA1):
        C7:0F:7F:9E:C0:0C:19:30:CD:D8:74:21:46:3D:74:8B:4D:A1:BB:33
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3586: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120402 (0x1e67d1d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:05:35 2017
            Not After : Tue May 10 12:05:35 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:c2:fc:9d:2c:c4:48:04:36:63:ab:7c:b8:59:60:c5:
                    34:81:aa:24:5f:d8:4c:af:c2:1b:69:0b:f7:13:ad:70:
                    f9:f5:e0:21:da:0f:86:25:c1:60:c1:12:78:f4:30:04:
                    34:5d:9a:be:71:43:04:6a:db:9a:91:9e:53:ad:92:1b:
                    40:1f:87:a2:c9:5c:f0:aa:73:0d:b1:24:10:8a:6d:f3:
                    00:e1:30:d4:ca:a4:e6:43:f0:35:1a:20:bc:7c:fb:e8:
                    15:41:71:12:e8:2e:7c:43:88:4b:3c:58:eb:6d:ce:74:
                    29:d8:0e:e5:83:16:03:7d:0d:12:79:a9:f4:33:15:d8:
                    c5:6a:38:71:f5:7f:1c:fd:8a:32:8c:35:20:66:0b:4b:
                    98:57:3d:93:e0:42:bc:c6:3c:50:71:93:28:74:d5:68:
                    33:86:94:7c:a3:5c:51:45:44:87:5f:30:55:72:29:b2:
                    5c:2e:c4:6c:60:60:9a:4f:ea:59:94:99:a0:62:4c:d7:
                    ad:b7:ac:2e:2b:e1:da:c2:d6:a1:70:3d:12:88:4c:9d:
                    ba:a9:a0:71:5b:27:3f:83:85:19:ff:cf:20:64:9d:b1:
                    72:2e:d6:6e:3d:4d:f4:64:0d:7d:33:35:e0:88:78:44:
                    67:42:a6:0e:41:7c:b0:79:4d:44:ce:b8:4e:75:a2:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:d8:40:80:82:eb:ad:0c:75:79:d8:df:ec:68:fd:5b:
        ab:09:89:2c:56:a7:ec:b5:9b:9f:8d:3a:e3:ef:a1:bd:
        fc:0a:13:e3:7b:61:9c:d5:05:8c:1d:f1:7b:42:50:af:
        f7:42:a8:50:89:1e:6e:af:5f:d3:33:54:4b:1a:8b:eb:
        3a:cb:7c:6d:d8:6d:20:17:76:34:0e:61:e0:25:f8:84:
        05:d9:90:80:8d:ce:ed:87:85:d6:11:6e:56:3b:6f:3e:
        f1:79:e9:b2:c5:cc:cc:03:90:29:d7:55:4a:14:e5:da:
        75:5e:e2:0b:b1:25:dc:5c:26:e4:9d:61:5d:29:e2:f3:
        57:74:44:2d:c8:74:d5:0a:56:25:8b:91:9f:b9:41:13:
        e8:46:e5:3e:84:02:f9:e8:a8:1a:21:b2:6f:8d:3f:4d:
        40:5e:7e:61:04:dd:d5:96:61:ef:97:63:b0:5b:fb:ab:
        7c:58:6b:af:90:d3:ff:d0:9f:26:bb:5a:2c:47:25:f2:
        d7:cc:60:f6:9a:4f:6b:42:80:e1:59:28:88:64:f7:eb:
        a0:bc:0d:95:83:cb:07:cf:15:8a:99:04:58:a8:b2:49:
        aa:53:a9:b4:a3:30:b2:fc:6e:68:1c:c4:09:0f:e4:f3:
        bf:00:ec:59:ab:bc:78:f2:7f:d9:d4:67:21:cb:34:86
    Fingerprint (SHA-256):
        20:83:02:74:E3:59:7B:BB:0D:59:F8:C5:84:13:02:47:C3:5E:2F:A7:94:6D:04:EC:C7:65:46:CC:E5:1E:5F:69
    Fingerprint (SHA1):
        FE:02:14:C7:6A:97:5E:AA:3C:7C:73:56:A4:6B:98:37:AB:35:FB:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120403 (0x1e67d1d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:05:36 2017
            Not After : Tue May 10 12:05:36 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ad:3c:cb:3e:26:e9:78:91:2d:11:5e:68:f9:60:bb:
                    aa:65:c5:ca:23:4c:67:e4:4c:4e:ff:17:28:a6:01:19:
                    13:d5:3e:da:8e:64:b8:d5:70:07:23:20:5f:06:85:4e:
                    fb:67:0a:ae:77:77:a0:81:8b:3d:da:71:87:9e:24:dc:
                    55:d5:e4:c5:9b:26:68:6f:d2:5a:17:fa:de:d5:0d:65:
                    e4:a7:3a:9b:ba:4c:f9:74:e3:db:93:46:28:90:e8:3a:
                    f8:14:21:9d:1c:e2:9a:d5:60:eb:f0:e9:f0:d6:0f:33:
                    d2:f3:44:0b:3a:83:04:ea:ec:15:77:e5:14:50:51:14:
                    fb:be:09:c0:3d:fa:b2:a7:b8:23:80:e3:84:b2:62:5a:
                    43:e1:47:50:dd:97:c6:38:0d:8a:14:ec:93:ca:81:6a:
                    9a:a1:ac:27:61:69:52:a3:40:c0:53:50:b5:46:e0:27:
                    7b:01:87:37:0e:5a:34:9e:00:40:01:2b:01:06:99:31:
                    16:b5:8d:53:95:0b:dd:62:6d:27:e6:7b:e2:b4:f5:64:
                    5b:d6:30:ca:42:20:3c:8a:6e:50:af:ff:64:8a:80:cf:
                    54:8d:77:e4:28:5a:3a:47:46:49:c1:46:9a:83:b7:a2:
                    5a:d3:e5:01:0f:06:0c:21:c5:48:df:1b:ef:5f:89:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:3a:d8:ba:df:c8:41:24:88:40:e8:59:10:cd:87:3e:
        cb:b9:4c:6e:fe:3e:a1:fe:93:1b:e2:63:77:00:c8:08:
        63:5b:88:2a:46:42:cd:d7:63:dd:80:fd:11:c5:c6:a2:
        36:96:55:2d:63:be:47:19:fd:d5:6c:de:42:59:dc:ed:
        4d:6e:aa:d4:bb:8e:11:0c:17:5e:36:c3:ba:3f:28:a9:
        c4:a9:27:dc:e3:f3:1c:c5:0c:c6:d8:36:4c:fe:e6:b6:
        ac:f2:fb:3a:a2:49:2a:7c:19:77:b1:4e:2f:20:2f:18:
        96:5e:fc:5c:b0:31:ad:ab:29:6a:b4:ab:58:b9:13:0f:
        95:b7:96:33:d6:d1:f6:33:a1:6c:e6:d5:6c:6f:3c:4f:
        1e:af:ce:7a:69:4c:7f:5a:34:c5:43:74:f4:df:4b:a5:
        84:1a:72:5a:d2:a2:67:0f:d7:c5:a4:9a:c7:b8:8f:05:
        86:ca:70:e5:e0:7e:3e:11:5e:47:32:bc:66:b8:c0:c7:
        fc:95:f8:d6:29:fc:98:6d:ca:46:c5:13:c7:cc:f3:e9:
        87:7f:f1:bd:63:a2:06:4c:84:48:77:56:e3:06:82:50:
        3e:34:85:09:9a:58:53:a8:f5:e8:0c:21:53:73:15:24:
        f1:a1:f3:8f:1e:3c:50:e8:ec:6a:c7:4b:e3:7e:0a:f7
    Fingerprint (SHA-256):
        E3:66:A5:44:D3:48:36:BF:A1:DB:20:EB:B5:71:54:40:2D:94:28:31:DA:F6:A6:AB:FD:18:5A:13:4F:CC:F5:12
    Fingerprint (SHA1):
        3B:1E:E6:FE:1A:E7:3F:B6:28:48:EB:7F:80:BF:A1:29:77:D0:BD:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120404 (0x1e67d1d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:05:36 2017
            Not After : Tue May 10 12:05:36 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:89:e1:96:ef:13:17:5c:5a:34:4b:7c:49:5b:85:3d:
                    53:d1:93:e4:2a:b4:18:f3:c0:44:83:ba:3b:02:be:0d:
                    36:b8:9f:93:e3:c7:32:c8:62:87:97:b7:e2:6e:23:f5:
                    f6:c9:94:fc:ed:98:a6:29:94:67:09:93:8c:ae:6a:b1:
                    42:5b:c9:a2:a6:c3:be:80:91:88:9d:c3:4f:e0:a1:98:
                    3f:e6:cc:47:d4:18:a4:98:32:ce:fe:cb:34:03:f1:a8:
                    fc:7b:57:3c:bd:f5:df:8d:63:a0:86:6c:22:3a:96:c9:
                    77:d7:0f:ce:2f:34:37:04:8f:22:82:63:9f:99:98:e3:
                    4a:cb:08:3c:e4:67:5f:e7:bd:5c:75:8b:a2:2e:0f:eb:
                    b6:fb:cf:86:81:67:ef:94:02:88:00:b0:39:e5:b0:65:
                    4f:3b:0b:8c:59:d6:04:42:4b:c1:e8:48:62:c2:0f:87:
                    66:9a:25:0b:9f:4d:d2:ee:e3:03:d0:b9:be:d4:32:60:
                    6e:60:78:c5:01:b6:7e:76:cd:91:e9:f1:a6:22:ae:a1:
                    be:3a:6c:86:37:ab:63:a4:a4:9e:79:9a:b0:c3:54:07:
                    a5:59:18:af:74:cc:39:b6:60:22:06:be:01:bb:5d:f7:
                    8f:52:92:36:fe:74:8c:15:71:c2:6c:57:fa:a5:80:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:6d:63:56:44:e0:32:1c:a4:e0:40:4e:bb:a8:0e:e1:
        41:6a:fb:25:12:29:f8:be:7b:b7:35:75:dc:55:1e:3d:
        70:1a:8b:0a:a1:c4:70:17:e0:6f:ca:fd:34:32:35:1d:
        eb:c8:26:a6:8b:b1:6d:b2:70:ce:55:36:c6:43:4f:0b:
        0d:b7:fc:b5:eb:de:70:dc:af:cc:37:a4:fa:20:b5:fc:
        02:24:23:2d:a7:f1:c2:2a:6e:10:fc:70:e8:cb:78:b2:
        31:91:f5:48:28:2b:c0:b0:62:29:e9:d3:00:02:e4:21:
        4d:74:f2:b3:bc:a6:90:6c:bb:9e:88:52:84:6d:96:f6:
        2a:b8:56:03:4d:cd:20:f4:c0:a2:64:4f:1a:2f:07:af:
        18:ce:8a:b6:a0:6d:11:ac:40:ef:ec:b7:77:eb:69:31:
        12:64:d2:36:ff:b8:be:9a:59:ff:16:59:7b:ff:c3:11:
        61:e5:23:b4:b3:f8:da:90:55:ed:76:5f:9b:ab:15:9c:
        13:37:5e:44:34:dd:24:77:b5:e1:69:a2:98:7a:06:f3:
        8b:8b:6b:f7:3a:6c:d4:ab:18:55:3c:b5:19:2a:f8:a7:
        4f:b7:36:58:fd:cb:e5:37:4c:6c:c5:0d:12:c8:80:b3:
        67:6e:07:3c:46:9f:ed:3e:11:30:f5:2b:3c:5f:99:b9
    Fingerprint (SHA-256):
        10:DF:E3:59:F6:EA:9D:73:F7:0C:41:E7:4F:A4:2B:29:9A:DB:7C:49:40:CA:20:F1:9D:14:EF:57:B1:72:6F:27
    Fingerprint (SHA1):
        7E:9C:BD:E2:59:13:0C:39:40:1F:B5:AF:AA:1E:94:58:EE:03:0B:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120405 (0x1e67d1d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:05:37 2017
            Not After : Tue May 10 12:05:37 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:12:d2:c8:e6:11:52:85:e7:ca:42:83:70:38:5d:81:
                    a9:59:72:44:3a:bf:28:e8:e5:63:60:1e:4e:9d:18:03:
                    8d:42:36:5b:23:33:99:a0:2f:9d:f0:76:be:8e:02:de:
                    e6:21:55:63:84:d8:ea:80:54:77:aa:2f:d2:bc:52:e7:
                    fb:f7:e4:36:c1:d0:0b:a7:2f:9b:00:f4:66:35:bd:d5:
                    c9:0a:6a:57:d2:93:a5:bd:aa:e0:5b:8e:03:1b:5d:d3:
                    6b:d2:22:44:d7:c8:e2:7c:a9:96:e3:0b:d4:6c:4b:3c:
                    4d:7c:5f:da:86:88:38:dd:e3:e0:65:24:d0:6c:05:37:
                    cc:c8:0b:83:8c:ad:be:75:95:53:95:91:73:bb:94:ec:
                    a3:74:9c:f8:9d:4b:70:44:35:99:ae:a2:4f:7e:ba:36:
                    f2:56:69:c3:b3:28:da:1b:5f:ef:9b:6e:af:74:b8:fb:
                    d7:54:f9:52:d0:28:f8:a0:a7:43:e2:9a:3d:90:47:ec:
                    9c:6b:9d:29:04:36:5f:7a:c0:19:40:36:7e:0d:c1:f1:
                    1c:33:e3:58:1e:c0:30:e5:b8:1a:e9:cd:e2:f1:c6:5e:
                    a4:03:e3:a2:64:b3:bf:9d:50:4e:94:be:0e:78:7e:09:
                    f8:3a:04:ff:89:af:ef:73:5f:85:63:a2:c0:3a:93:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:b1:95:a8:d8:12:0c:ae:ce:db:e3:1a:f0:b6:42:26:
        7b:d2:48:f4:65:48:32:12:b5:92:17:b8:82:01:a0:db:
        af:97:40:75:9c:04:54:02:5f:3f:ad:87:45:3a:1b:2a:
        f0:d8:14:43:5b:0d:93:6f:27:f4:ef:f7:12:43:da:d9:
        31:6c:bd:79:a6:d7:71:54:8b:aa:21:fb:20:77:16:51:
        f7:22:5b:55:74:fb:82:bc:6d:18:dc:b7:16:78:44:0c:
        27:1d:b7:68:8b:a1:70:4a:5c:5b:bb:ea:bc:5a:d3:b4:
        be:63:85:70:26:b7:87:df:cf:f3:72:ea:83:9a:04:ab:
        c2:41:52:4d:73:f7:fb:a7:46:35:f5:a9:54:9f:77:d9:
        40:89:c8:b7:b3:92:4a:fd:66:b9:71:76:95:cd:3c:f5:
        0a:c4:fa:af:4c:bc:e0:b5:46:34:41:0b:b8:0d:77:02:
        44:b1:c2:97:2f:e4:24:da:46:98:66:22:47:ee:4c:cb:
        1e:14:b6:ed:46:b9:5c:36:93:1e:6f:43:1b:0c:46:2d:
        e3:d4:77:fc:12:3f:40:7b:b4:c8:8a:f6:1d:c6:ee:f8:
        da:ca:6a:57:75:94:c2:a0:5a:81:92:b4:93:27:87:dd:
        40:d8:a3:aa:fe:f1:d4:de:b0:15:cd:05:5e:1d:20:98
    Fingerprint (SHA-256):
        A5:09:49:29:5A:23:7D:54:71:BF:70:54:D2:F5:03:90:F4:52:CD:E7:8D:40:7F:3F:35:24:10:D9:FB:30:B5:FE
    Fingerprint (SHA1):
        27:26:B4:10:3B:39:62:90:91:4C:F3:BE:6D:F7:34:C7:14:2A:C7:6E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120406 (0x1e67d1d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:05:39 2017
            Not After : Tue May 10 12:05:39 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:c6:33:a5:cb:30:5f:ee:51:8c:ac:6f:c0:0f:c3:c4:
                    69:e9:88:48:cc:a9:18:67:5a:bb:ec:0f:70:b5:c2:bb:
                    1c:9d:b0:03:ad:a2:a0:0f:79:df:a7:31:c8:65:8e:90:
                    19:35:04:18:79:42:4e:7e:a5:54:dc:e5:c0:54:85:7c:
                    b9:49:ac:2d:6b:44:0d:9e:96:8b:fb:e0:3e:2a:b0:7a:
                    6b:e8:e6:55:51:f5:f4:0a:e7:4d:a2:48:9f:ef:80:29:
                    85:07:2f:38:57:02:7a:1b:a7:9b:7b:3d:b7:d9:3b:2c:
                    fb:d9:38:c2:a8:9b:a3:b3:28:63:d0:3f:f1:8d:35:d8:
                    5e:71:8b:39:5e:0a:d4:e6:e6:2c:ec:e3:90:14:70:70:
                    46:db:3f:a0:13:fc:08:14:00:50:84:34:97:b7:c7:9c:
                    54:e5:ab:df:47:69:35:a4:17:5a:2e:31:18:aa:3f:1e:
                    c5:53:16:ac:28:63:df:45:cc:c4:30:14:d3:bb:e3:94:
                    e2:af:83:0e:67:72:07:ab:9b:88:e4:6c:c6:c0:a6:d6:
                    e1:99:ff:c1:d5:20:b3:47:14:5e:c1:a9:5e:29:9a:fc:
                    a7:d4:1a:a8:e5:bc:d6:13:b0:52:bc:9d:68:41:76:71:
                    24:42:c9:b5:01:68:04:9a:2a:65:aa:0c:32:10:cc:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b4:73:46:0c:4f:af:15:c5:f6:e4:b0:ff:e7:03:72:22:
        c6:4e:cf:2d:d5:c9:75:e6:eb:74:18:af:7b:1a:8e:5f:
        46:a7:37:fd:38:92:48:8e:df:bc:46:96:85:27:ab:59:
        e3:06:4d:de:1f:08:e7:7d:e7:64:ef:aa:96:00:d0:12:
        54:e5:56:51:57:9d:03:99:1a:f2:9f:bb:20:3e:ae:32:
        2a:00:05:a7:dc:8a:ba:48:da:75:f5:fe:c4:fc:ad:fb:
        04:1d:d0:7b:69:fd:9d:39:88:30:f0:a3:79:7b:90:6d:
        b2:c7:93:74:d6:17:31:eb:3a:63:34:8b:b6:a3:0b:d9:
        dd:2a:ac:64:8e:73:f5:fe:88:fc:94:72:26:b2:66:1d:
        1a:88:2f:84:5f:d9:46:d4:41:e9:8f:86:81:8c:47:8b:
        20:eb:18:52:3b:0a:4f:a2:c1:42:8e:88:10:0e:df:e1:
        4c:6d:a6:8a:2a:7f:8c:8d:4c:a7:de:89:41:17:4e:85:
        2c:4d:9f:53:ec:2e:d0:80:5f:40:1b:f5:85:35:1e:e6:
        65:bb:d8:5a:ef:6b:52:dc:0c:b9:ec:6c:8c:2a:26:28:
        c3:3e:c0:20:19:14:0b:e8:63:0c:ec:a3:f4:57:50:da:
        17:d7:e2:f1:c2:67:a0:92:36:87:e1:4f:7e:9a:c2:47
    Fingerprint (SHA-256):
        93:C4:ED:98:EA:B4:59:D6:60:96:19:9C:DE:9D:59:AF:B0:3E:C7:2E:27:77:D5:52:48:19:2E:56:4D:AF:67:F4
    Fingerprint (SHA1):
        49:A3:60:59:FE:2E:70:4B:3E:CC:40:0F:F3:11:00:8D:BC:E2:D9:3A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120407 (0x1e67d1d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:05:39 2017
            Not After : Tue May 10 12:05:39 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:5f:a1:53:86:da:0b:47:5d:88:31:9e:32:d1:3c:9b:
                    79:0f:4c:84:6c:f3:57:87:dc:cf:de:b7:35:86:06:49:
                    7d:08:5d:5b:01:4d:04:55:8a:9a:7d:91:e9:bc:e3:d9:
                    68:e8:df:32:02:fb:a5:de:e2:62:2a:62:a4:a1:26:bc:
                    ed:fd:12:8d:bd:fe:7f:3d:68:82:cd:d8:f0:f1:03:cb:
                    5e:62:15:2b:1e:48:2d:2c:f1:60:9f:5d:da:3a:88:ce:
                    fa:a3:70:49:84:84:91:c8:f5:bc:3a:81:ea:d5:5c:f0:
                    f1:9f:93:09:ae:85:83:9e:9f:e7:52:14:58:3b:5d:9f:
                    48:32:78:6c:dc:60:52:fa:fd:d6:a0:e9:b9:58:e2:4b:
                    21:39:17:57:40:8c:76:06:03:6a:df:8a:7b:a3:81:0d:
                    c5:f3:51:da:7f:52:be:82:b8:00:b6:d6:7b:25:c7:a6:
                    bf:72:c4:e8:4e:e2:a4:9b:27:9a:17:bb:b6:2c:a7:87:
                    11:9a:da:39:57:a7:9e:3e:5f:6f:5e:d7:58:64:87:83:
                    be:8c:cf:9d:78:9e:a8:ce:ac:60:8f:4b:55:6c:b7:c7:
                    23:4a:09:5e:ec:b1:ec:87:67:36:5f:13:f7:b0:df:49:
                    91:52:62:b0:18:bd:fe:08:81:1e:7a:9a:ca:91:bc:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:76:12:9f:f0:90:07:67:b8:cf:73:a0:0a:cf:12:71:
        0f:52:4a:06:29:a0:67:38:c5:18:f7:de:45:14:91:89:
        60:41:1d:02:cf:5e:85:4c:67:42:92:94:7f:f8:fe:81:
        55:b6:1b:7b:eb:8d:c6:b2:96:e5:5f:51:6d:d5:84:c7:
        51:47:39:49:42:13:70:3d:ab:d3:30:a0:72:8e:47:16:
        b8:4d:d0:d8:d5:4d:85:db:5f:fd:08:97:de:28:98:00:
        1f:8a:9a:37:32:f8:d5:bf:c8:ee:17:58:51:44:a8:1b:
        07:fa:2a:a6:3a:b5:9e:e1:d3:67:ae:be:ec:8d:58:0a:
        62:04:4f:1e:b4:61:03:08:1c:f9:a8:3f:f1:03:8f:c1:
        30:f6:37:82:aa:0a:08:ce:19:e0:c5:4d:28:15:2a:3c:
        fa:f6:75:d7:c4:d6:2a:4b:0d:a5:6f:02:82:df:63:ec:
        53:9a:2f:e2:75:1c:45:20:ab:82:25:60:b9:b0:a1:f8:
        e0:10:72:96:1e:71:bc:2b:b1:67:9f:80:b5:6a:15:69:
        39:e9:96:8b:e1:ba:c7:fd:c3:8d:71:56:d8:d7:7d:51:
        66:3d:01:33:0f:86:a0:65:15:99:35:5b:ca:e4:2d:8b:
        ef:7c:f7:a5:68:57:ae:19:cb:37:65:e5:76:d4:92:48
    Fingerprint (SHA-256):
        02:C2:F7:F5:B9:EF:17:A4:2B:51:0C:1A:72:F2:CD:3D:76:D8:11:94:DB:B6:C1:E7:2A:F8:29:73:3B:62:C8:AB
    Fingerprint (SHA1):
        42:A6:90:47:85:07:F8:95:D9:07:E6:B6:C4:35:10:87:67:CE:2F:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3593: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120422 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3595: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120423   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120424   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3602: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3604: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3605: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510120425   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3608: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120422 (0x1e67d1e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:45 2017
            Not After : Tue May 10 12:05:45 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:f5:b5:88:c5:1c:dd:3f:ae:20:2c:d7:15:4b:66:26:
                    95:e5:92:30:0e:38:af:ba:c3:0e:94:60:57:a1:ca:c6:
                    7e:41:50:6b:4e:78:92:02:18:b4:f3:12:1d:4e:ce:ad:
                    01:da:46:46:13:3d:1b:ed:74:d6:c6:a1:ec:79:35:c0:
                    52:13:79:36:0b:8d:24:14:37:61:31:9d:e1:b0:09:03:
                    d2:9c:07:f9:d7:b2:ce:64:7f:0b:a2:5a:df:3b:86:9e:
                    e3:b6:96:b5:ef:be:23:98:83:48:11:7a:23:b2:3a:e5:
                    86:6b:ca:5b:7e:23:0b:19:f6:76:0e:de:0c:c2:13:00:
                    8d:81:34:c7:b8:69:38:be:01:08:f9:fe:80:02:46:64:
                    4d:5b:e9:bb:62:f6:9d:1b:53:a1:e2:bd:27:7a:ec:f2:
                    5a:f6:0b:62:d6:96:50:4a:b2:be:f2:45:bb:e7:13:5b:
                    c4:cf:a6:2a:94:aa:68:8a:c6:c2:78:8d:5f:92:3f:3a:
                    e6:5c:5b:3d:f4:4d:2e:2d:c2:6d:19:d7:c4:bc:35:86:
                    3b:7f:e9:6e:78:41:40:0c:fb:e6:59:9f:a3:32:76:06:
                    2c:97:04:8d:f8:d3:2c:4c:64:8e:35:92:37:2a:22:97:
                    ea:f1:18:f6:df:1e:73:d9:49:32:f9:e6:97:e4:af:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:a4:49:72:c4:bd:2a:20:44:19:64:ef:e7:7b:28:18:
        6e:a4:ed:93:f3:5b:02:c5:2e:f3:f0:a9:e2:f6:d2:b7:
        bb:fe:f4:54:41:86:62:80:b1:2e:5d:25:27:b6:60:bc:
        e7:a7:64:e7:85:c5:5a:92:d0:cf:47:c8:12:f1:d1:26:
        0b:2e:45:2e:83:62:cb:67:ed:7d:e7:fd:6d:da:9a:ae:
        26:89:26:20:91:d8:35:db:e8:6a:86:57:7b:64:39:00:
        a8:1e:5e:a1:34:88:ca:64:ea:96:13:e9:25:a4:ff:8c:
        6e:51:45:c6:6e:a4:ac:01:2c:5c:f9:b8:fe:41:fd:8e:
        80:fc:4c:d0:80:84:8a:a0:4a:7d:e1:90:6c:c7:0a:e6:
        da:7c:68:74:e9:7e:54:bd:5d:cc:2c:6d:48:15:b6:0b:
        b0:cf:06:d9:65:9e:f0:52:1a:fc:af:60:48:c4:ee:3e:
        5c:91:49:19:3b:c8:6d:e2:25:95:06:f8:c8:8e:bb:b3:
        cd:35:be:27:c5:19:49:9e:9d:a2:13:c4:a6:14:93:39:
        4f:12:1f:dc:62:55:b7:9f:7e:bb:1f:1f:bc:f1:48:62:
        c6:0f:c4:6e:1d:3b:a0:65:10:07:8c:a2:88:9f:47:7f:
        d6:d7:5c:67:a8:b7:64:ec:c1:7f:08:e2:65:17:b6:d2
    Fingerprint (SHA-256):
        21:A9:52:3A:EE:B5:F7:21:84:58:23:B2:29:69:4B:D4:48:A0:FF:DE:C2:C4:B5:87:2D:5F:A8:5A:FB:73:DE:9C
    Fingerprint (SHA1):
        38:BC:C7:82:57:ED:4E:AB:D4:41:69:89:3D:61:EB:27:82:30:09:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3609: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3610: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120423 (0x1e67d1e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:46 2017
            Not After : Tue May 10 12:05:46 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:6c:1a:4e:4d:c0:b0:e1:6f:4c:45:0c:c3:76:13:3f:
                    9d:ac:09:9e:87:b3:31:94:c7:24:17:b5:5e:c9:c8:47:
                    7b:fa:ce:d9:ef:b7:93:75:11:63:ca:5f:53:02:34:e0:
                    df:7d:91:76:d1:ef:88:cf:04:e3:37:a4:70:11:97:83:
                    c3:c2:25:34:f1:c2:04:94:e5:47:26:59:4c:f5:0c:3d:
                    dc:24:0c:6b:c9:a4:5f:ba:e0:54:98:65:3b:a6:24:39:
                    3e:1b:ab:b6:c9:43:d6:d9:e8:5f:f5:70:2c:c1:a8:08:
                    a7:be:18:1e:c8:64:93:10:c8:20:a7:d3:2a:2f:58:d2:
                    b5:4b:e9:dc:cc:90:9f:07:d2:d6:07:53:15:da:9e:85:
                    28:86:a1:e8:93:71:db:0d:89:38:63:ff:e5:28:ef:a2:
                    f7:e7:08:5f:df:35:54:80:a8:39:94:5e:f1:ae:2a:5a:
                    4a:99:cf:40:83:b4:59:b6:16:f5:65:29:76:e4:53:d4:
                    c0:c1:dd:54:88:72:a3:95:eb:af:dc:f2:d4:7b:11:54:
                    c5:fe:65:13:04:8b:4e:bb:69:af:e9:80:1a:b6:e9:d8:
                    39:f4:f7:07:a6:a2:51:a4:f1:a2:c9:d6:e8:cf:67:32:
                    59:f9:f2:79:b3:95:ac:11:df:1c:95:4c:b7:b4:ef:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:e6:5d:a8:40:4b:5a:a0:f9:05:09:e1:eb:37:ff:4c:
        c9:a5:ce:7d:0d:bc:a6:99:b7:f0:40:b1:ba:61:d3:41:
        c7:58:8f:7a:d2:1b:e9:a4:97:46:7a:c4:f0:c7:64:70:
        45:51:80:22:4c:1e:dd:33:7e:39:ee:f6:e9:f9:69:37:
        55:e7:63:2a:6f:fb:f1:19:d1:c9:b5:e2:7a:c5:4c:ef:
        9c:20:8b:62:22:71:e7:fc:16:e6:d9:49:9d:e2:1c:5e:
        e3:12:f3:65:7a:ac:f8:d2:54:2a:10:b3:4e:c9:b7:6d:
        92:3c:23:9b:b6:a4:2a:de:ab:92:7d:ce:67:50:92:e5:
        ef:f9:27:8b:d6:93:a3:2d:b9:fb:7e:10:7c:3e:b5:74:
        64:58:a5:dc:08:a7:91:04:b6:4a:d1:88:a6:48:51:e9:
        2a:e0:7a:b1:1a:ab:e6:c3:bb:8e:de:b2:b4:a8:3e:29:
        46:89:a2:6b:69:ec:9a:44:20:c6:e6:3e:12:d1:ae:67:
        41:5e:c7:bd:07:4e:43:79:70:de:5f:74:8a:a4:fe:47:
        84:8f:7c:d7:64:d0:db:3a:89:4e:c5:87:78:52:43:22:
        dc:da:09:29:9f:ca:9c:d1:5d:05:26:75:90:0c:1c:22:
        6a:95:ed:c6:f5:b0:10:66:ed:6e:cf:e3:43:88:d2:2c
    Fingerprint (SHA-256):
        25:8C:CE:53:38:38:7D:BC:37:20:01:CB:CE:4A:17:24:3B:D5:C1:27:11:2C:9F:95:79:FB:C5:01:F9:32:95:DC
    Fingerprint (SHA1):
        8E:07:AE:46:E0:0F:83:AA:39:25:B2:0B:85:CF:33:26:28:CE:88:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3611: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3612: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120424 (0x1e67d1e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:46 2017
            Not After : Tue May 10 12:05:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:bb:e4:14:17:69:66:ce:a2:b7:39:e2:8b:c1:fb:b3:
                    61:2f:0c:9d:98:2c:13:d6:d0:ce:d3:26:5b:9a:3f:0c:
                    4a:2e:89:58:b7:af:4d:c5:df:9a:f7:af:f3:d2:80:74:
                    ab:87:f3:29:69:2f:a0:4a:7a:dc:d3:fe:a5:3c:86:1e:
                    ef:c7:b1:0b:e7:bd:79:90:ff:20:73:94:a0:1f:b1:a3:
                    fd:c0:7f:03:bc:7b:97:12:6b:14:25:80:a1:0f:12:ff:
                    9d:35:7f:82:27:99:22:21:04:b3:23:37:dc:f3:d6:47:
                    d0:4e:81:4b:2b:44:fc:ec:1d:58:7c:4f:8f:a3:e8:66:
                    34:42:eb:92:86:2a:1c:79:52:eb:87:33:4c:30:64:f7:
                    82:15:4f:a4:bd:af:79:3c:02:73:49:7b:10:30:e1:2a:
                    83:1c:32:e4:12:10:c8:d1:b1:e9:1d:0f:b4:de:f3:af:
                    ca:10:5b:66:5a:3d:5f:68:35:50:8c:76:af:6e:62:37:
                    0c:35:eb:86:5a:af:b2:85:fd:58:34:68:8a:ee:86:0f:
                    f6:02:0a:ba:ca:67:d7:28:73:5b:e8:c4:9e:55:51:f4:
                    30:ce:3d:60:5e:5a:43:99:62:07:0b:7b:13:bd:a2:fa:
                    07:4b:07:b4:dd:6b:53:c7:6f:cf:9f:1e:36:36:bd:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:9e:ad:2c:9d:d6:2e:30:a0:e9:48:bf:c5:52:65:35:
        cc:d0:bb:74:59:4d:66:cf:e1:f0:23:0c:a9:68:f9:6e:
        9f:87:96:2e:55:a4:b6:a1:8a:1b:6a:e9:e7:e7:75:c0:
        82:d0:b8:d7:fc:36:ec:04:6d:ae:d7:7c:8d:e6:45:fb:
        f3:89:2d:de:dc:63:f0:4f:ec:b4:3b:39:cc:dc:e0:5b:
        33:63:b7:b8:c5:3d:6e:25:c6:c4:f9:1f:84:99:e2:e8:
        ac:c6:bf:21:cd:28:9c:12:fe:33:74:40:4d:84:4f:87:
        55:91:8e:8b:22:fa:bd:a1:97:26:61:46:b7:39:0c:5d:
        67:24:4b:1f:f3:2b:73:3b:9e:0e:c0:01:a5:e9:c7:7c:
        06:da:08:6d:b7:7f:e5:b2:7f:1f:5d:4f:aa:e7:31:ca:
        1e:4e:ad:be:c9:f5:a1:79:75:d8:af:6e:99:21:e9:b5:
        bf:9c:f1:bb:03:f2:bf:ba:7e:5e:32:94:e3:98:62:05:
        a2:91:91:6d:00:91:b8:de:a0:e5:08:83:dd:80:24:27:
        81:9c:c7:5c:0b:f3:cb:94:c8:84:8a:15:16:da:d2:d0:
        57:04:84:7c:2b:f6:a1:39:cc:10:d8:2d:36:ec:54:b9:
        01:e8:f6:f9:a5:e6:70:a5:d4:17:2b:82:df:d7:74:b7
    Fingerprint (SHA-256):
        BD:E0:1E:1B:2C:5D:A5:4F:8E:BC:27:66:21:4B:69:C0:0F:FC:D5:D8:C3:9E:03:CA:BB:C6:C7:18:61:7D:13:46
    Fingerprint (SHA1):
        62:B8:28:A5:DE:35:7A:69:26:BF:7E:AD:F5:5F:B3:7A:A5:D4:7A:F9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3613: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3614: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3615: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3616: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3617: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120422 (0x1e67d1e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:45 2017
            Not After : Tue May 10 12:05:45 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:f5:b5:88:c5:1c:dd:3f:ae:20:2c:d7:15:4b:66:26:
                    95:e5:92:30:0e:38:af:ba:c3:0e:94:60:57:a1:ca:c6:
                    7e:41:50:6b:4e:78:92:02:18:b4:f3:12:1d:4e:ce:ad:
                    01:da:46:46:13:3d:1b:ed:74:d6:c6:a1:ec:79:35:c0:
                    52:13:79:36:0b:8d:24:14:37:61:31:9d:e1:b0:09:03:
                    d2:9c:07:f9:d7:b2:ce:64:7f:0b:a2:5a:df:3b:86:9e:
                    e3:b6:96:b5:ef:be:23:98:83:48:11:7a:23:b2:3a:e5:
                    86:6b:ca:5b:7e:23:0b:19:f6:76:0e:de:0c:c2:13:00:
                    8d:81:34:c7:b8:69:38:be:01:08:f9:fe:80:02:46:64:
                    4d:5b:e9:bb:62:f6:9d:1b:53:a1:e2:bd:27:7a:ec:f2:
                    5a:f6:0b:62:d6:96:50:4a:b2:be:f2:45:bb:e7:13:5b:
                    c4:cf:a6:2a:94:aa:68:8a:c6:c2:78:8d:5f:92:3f:3a:
                    e6:5c:5b:3d:f4:4d:2e:2d:c2:6d:19:d7:c4:bc:35:86:
                    3b:7f:e9:6e:78:41:40:0c:fb:e6:59:9f:a3:32:76:06:
                    2c:97:04:8d:f8:d3:2c:4c:64:8e:35:92:37:2a:22:97:
                    ea:f1:18:f6:df:1e:73:d9:49:32:f9:e6:97:e4:af:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:a4:49:72:c4:bd:2a:20:44:19:64:ef:e7:7b:28:18:
        6e:a4:ed:93:f3:5b:02:c5:2e:f3:f0:a9:e2:f6:d2:b7:
        bb:fe:f4:54:41:86:62:80:b1:2e:5d:25:27:b6:60:bc:
        e7:a7:64:e7:85:c5:5a:92:d0:cf:47:c8:12:f1:d1:26:
        0b:2e:45:2e:83:62:cb:67:ed:7d:e7:fd:6d:da:9a:ae:
        26:89:26:20:91:d8:35:db:e8:6a:86:57:7b:64:39:00:
        a8:1e:5e:a1:34:88:ca:64:ea:96:13:e9:25:a4:ff:8c:
        6e:51:45:c6:6e:a4:ac:01:2c:5c:f9:b8:fe:41:fd:8e:
        80:fc:4c:d0:80:84:8a:a0:4a:7d:e1:90:6c:c7:0a:e6:
        da:7c:68:74:e9:7e:54:bd:5d:cc:2c:6d:48:15:b6:0b:
        b0:cf:06:d9:65:9e:f0:52:1a:fc:af:60:48:c4:ee:3e:
        5c:91:49:19:3b:c8:6d:e2:25:95:06:f8:c8:8e:bb:b3:
        cd:35:be:27:c5:19:49:9e:9d:a2:13:c4:a6:14:93:39:
        4f:12:1f:dc:62:55:b7:9f:7e:bb:1f:1f:bc:f1:48:62:
        c6:0f:c4:6e:1d:3b:a0:65:10:07:8c:a2:88:9f:47:7f:
        d6:d7:5c:67:a8:b7:64:ec:c1:7f:08:e2:65:17:b6:d2
    Fingerprint (SHA-256):
        21:A9:52:3A:EE:B5:F7:21:84:58:23:B2:29:69:4B:D4:48:A0:FF:DE:C2:C4:B5:87:2D:5F:A8:5A:FB:73:DE:9C
    Fingerprint (SHA1):
        38:BC:C7:82:57:ED:4E:AB:D4:41:69:89:3D:61:EB:27:82:30:09:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3618: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3619: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120423 (0x1e67d1e7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:46 2017
            Not After : Tue May 10 12:05:46 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:6c:1a:4e:4d:c0:b0:e1:6f:4c:45:0c:c3:76:13:3f:
                    9d:ac:09:9e:87:b3:31:94:c7:24:17:b5:5e:c9:c8:47:
                    7b:fa:ce:d9:ef:b7:93:75:11:63:ca:5f:53:02:34:e0:
                    df:7d:91:76:d1:ef:88:cf:04:e3:37:a4:70:11:97:83:
                    c3:c2:25:34:f1:c2:04:94:e5:47:26:59:4c:f5:0c:3d:
                    dc:24:0c:6b:c9:a4:5f:ba:e0:54:98:65:3b:a6:24:39:
                    3e:1b:ab:b6:c9:43:d6:d9:e8:5f:f5:70:2c:c1:a8:08:
                    a7:be:18:1e:c8:64:93:10:c8:20:a7:d3:2a:2f:58:d2:
                    b5:4b:e9:dc:cc:90:9f:07:d2:d6:07:53:15:da:9e:85:
                    28:86:a1:e8:93:71:db:0d:89:38:63:ff:e5:28:ef:a2:
                    f7:e7:08:5f:df:35:54:80:a8:39:94:5e:f1:ae:2a:5a:
                    4a:99:cf:40:83:b4:59:b6:16:f5:65:29:76:e4:53:d4:
                    c0:c1:dd:54:88:72:a3:95:eb:af:dc:f2:d4:7b:11:54:
                    c5:fe:65:13:04:8b:4e:bb:69:af:e9:80:1a:b6:e9:d8:
                    39:f4:f7:07:a6:a2:51:a4:f1:a2:c9:d6:e8:cf:67:32:
                    59:f9:f2:79:b3:95:ac:11:df:1c:95:4c:b7:b4:ef:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:e6:5d:a8:40:4b:5a:a0:f9:05:09:e1:eb:37:ff:4c:
        c9:a5:ce:7d:0d:bc:a6:99:b7:f0:40:b1:ba:61:d3:41:
        c7:58:8f:7a:d2:1b:e9:a4:97:46:7a:c4:f0:c7:64:70:
        45:51:80:22:4c:1e:dd:33:7e:39:ee:f6:e9:f9:69:37:
        55:e7:63:2a:6f:fb:f1:19:d1:c9:b5:e2:7a:c5:4c:ef:
        9c:20:8b:62:22:71:e7:fc:16:e6:d9:49:9d:e2:1c:5e:
        e3:12:f3:65:7a:ac:f8:d2:54:2a:10:b3:4e:c9:b7:6d:
        92:3c:23:9b:b6:a4:2a:de:ab:92:7d:ce:67:50:92:e5:
        ef:f9:27:8b:d6:93:a3:2d:b9:fb:7e:10:7c:3e:b5:74:
        64:58:a5:dc:08:a7:91:04:b6:4a:d1:88:a6:48:51:e9:
        2a:e0:7a:b1:1a:ab:e6:c3:bb:8e:de:b2:b4:a8:3e:29:
        46:89:a2:6b:69:ec:9a:44:20:c6:e6:3e:12:d1:ae:67:
        41:5e:c7:bd:07:4e:43:79:70:de:5f:74:8a:a4:fe:47:
        84:8f:7c:d7:64:d0:db:3a:89:4e:c5:87:78:52:43:22:
        dc:da:09:29:9f:ca:9c:d1:5d:05:26:75:90:0c:1c:22:
        6a:95:ed:c6:f5:b0:10:66:ed:6e:cf:e3:43:88:d2:2c
    Fingerprint (SHA-256):
        25:8C:CE:53:38:38:7D:BC:37:20:01:CB:CE:4A:17:24:3B:D5:C1:27:11:2C:9F:95:79:FB:C5:01:F9:32:95:DC
    Fingerprint (SHA1):
        8E:07:AE:46:E0:0F:83:AA:39:25:B2:0B:85:CF:33:26:28:CE:88:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3620: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3621: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120424 (0x1e67d1e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:46 2017
            Not After : Tue May 10 12:05:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:bb:e4:14:17:69:66:ce:a2:b7:39:e2:8b:c1:fb:b3:
                    61:2f:0c:9d:98:2c:13:d6:d0:ce:d3:26:5b:9a:3f:0c:
                    4a:2e:89:58:b7:af:4d:c5:df:9a:f7:af:f3:d2:80:74:
                    ab:87:f3:29:69:2f:a0:4a:7a:dc:d3:fe:a5:3c:86:1e:
                    ef:c7:b1:0b:e7:bd:79:90:ff:20:73:94:a0:1f:b1:a3:
                    fd:c0:7f:03:bc:7b:97:12:6b:14:25:80:a1:0f:12:ff:
                    9d:35:7f:82:27:99:22:21:04:b3:23:37:dc:f3:d6:47:
                    d0:4e:81:4b:2b:44:fc:ec:1d:58:7c:4f:8f:a3:e8:66:
                    34:42:eb:92:86:2a:1c:79:52:eb:87:33:4c:30:64:f7:
                    82:15:4f:a4:bd:af:79:3c:02:73:49:7b:10:30:e1:2a:
                    83:1c:32:e4:12:10:c8:d1:b1:e9:1d:0f:b4:de:f3:af:
                    ca:10:5b:66:5a:3d:5f:68:35:50:8c:76:af:6e:62:37:
                    0c:35:eb:86:5a:af:b2:85:fd:58:34:68:8a:ee:86:0f:
                    f6:02:0a:ba:ca:67:d7:28:73:5b:e8:c4:9e:55:51:f4:
                    30:ce:3d:60:5e:5a:43:99:62:07:0b:7b:13:bd:a2:fa:
                    07:4b:07:b4:dd:6b:53:c7:6f:cf:9f:1e:36:36:bd:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:9e:ad:2c:9d:d6:2e:30:a0:e9:48:bf:c5:52:65:35:
        cc:d0:bb:74:59:4d:66:cf:e1:f0:23:0c:a9:68:f9:6e:
        9f:87:96:2e:55:a4:b6:a1:8a:1b:6a:e9:e7:e7:75:c0:
        82:d0:b8:d7:fc:36:ec:04:6d:ae:d7:7c:8d:e6:45:fb:
        f3:89:2d:de:dc:63:f0:4f:ec:b4:3b:39:cc:dc:e0:5b:
        33:63:b7:b8:c5:3d:6e:25:c6:c4:f9:1f:84:99:e2:e8:
        ac:c6:bf:21:cd:28:9c:12:fe:33:74:40:4d:84:4f:87:
        55:91:8e:8b:22:fa:bd:a1:97:26:61:46:b7:39:0c:5d:
        67:24:4b:1f:f3:2b:73:3b:9e:0e:c0:01:a5:e9:c7:7c:
        06:da:08:6d:b7:7f:e5:b2:7f:1f:5d:4f:aa:e7:31:ca:
        1e:4e:ad:be:c9:f5:a1:79:75:d8:af:6e:99:21:e9:b5:
        bf:9c:f1:bb:03:f2:bf:ba:7e:5e:32:94:e3:98:62:05:
        a2:91:91:6d:00:91:b8:de:a0:e5:08:83:dd:80:24:27:
        81:9c:c7:5c:0b:f3:cb:94:c8:84:8a:15:16:da:d2:d0:
        57:04:84:7c:2b:f6:a1:39:cc:10:d8:2d:36:ec:54:b9:
        01:e8:f6:f9:a5:e6:70:a5:d4:17:2b:82:df:d7:74:b7
    Fingerprint (SHA-256):
        BD:E0:1E:1B:2C:5D:A5:4F:8E:BC:27:66:21:4B:69:C0:0F:FC:D5:D8:C3:9E:03:CA:BB:C6:C7:18:61:7D:13:46
    Fingerprint (SHA1):
        62:B8:28:A5:DE:35:7A:69:26:BF:7E:AD:F5:5F:B3:7A:A5:D4:7A:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3622: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3623: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3624: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120426 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3625: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3626: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3627: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3628: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120427   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3629: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3630: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3631: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3632: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120428   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3633: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3634: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3635: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3636: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510120429   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3637: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3638: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3639: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3640: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510120430   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3641: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3642: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3643: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120426 (0x1e67d1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:49 2017
            Not After : Tue May 10 12:05:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:db:ca:35:73:35:ed:eb:e7:ee:59:d2:15:65:c6:9e:
                    33:b0:3e:fb:18:50:ed:56:e7:43:96:7e:46:18:6e:3d:
                    87:9a:93:fe:c5:fb:3b:9e:90:76:4b:3a:eb:4d:87:a9:
                    17:6e:19:f0:66:1a:2a:eb:2a:f6:7a:ae:d3:1c:3b:35:
                    1b:84:1b:6e:5b:87:e8:93:5b:79:6b:b7:6c:7d:8e:88:
                    62:45:c9:36:51:18:31:a5:30:c1:eb:83:95:35:2c:f9:
                    7b:ce:19:30:5a:4e:dc:da:80:e7:f5:5a:6f:f8:4e:ce:
                    27:98:0c:23:ae:ba:20:3c:9f:61:ca:2c:f5:db:cc:25:
                    27:4a:f1:77:4d:2d:c2:ab:f9:0d:da:08:b4:a3:7c:6b:
                    ee:02:c9:5c:15:2e:4e:6e:58:eb:12:1b:9d:e3:63:10:
                    f0:ea:02:ed:16:16:e1:fa:aa:33:4e:9c:15:a8:d8:65:
                    8d:24:a0:05:56:a4:2f:ae:e1:85:34:fd:65:e1:2e:ec:
                    aa:ca:3d:0f:25:57:ca:49:44:67:55:12:e7:65:5c:62:
                    e3:e7:7f:ac:dd:32:53:4c:9d:87:61:ca:7e:a8:74:a7:
                    28:6c:3c:20:69:d8:64:8d:d9:bd:4b:a1:1d:52:56:72:
                    33:2e:4c:77:e1:30:6e:25:fb:09:68:ff:7e:26:bf:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:3c:34:b2:60:38:fe:31:2b:ad:9b:4f:84:2f:3c:7b:
        8d:54:b5:8a:a8:54:12:91:46:a7:9e:d0:d3:42:26:f4:
        ee:ad:6a:bb:31:12:21:9e:56:21:5a:9a:69:1f:75:bd:
        6b:ac:77:94:3c:b8:0d:d2:e6:f2:67:bb:83:d3:5b:b0:
        83:c2:70:3b:7e:b7:4f:63:eb:2d:64:d1:50:6e:82:21:
        6a:10:bf:d6:0a:23:7a:9c:ee:2f:4b:fd:53:b0:16:76:
        72:9a:30:3e:b3:3d:ad:86:40:76:83:44:37:dd:39:6c:
        52:0c:58:ab:b1:cc:fb:96:99:22:3b:9d:f4:01:87:02:
        4f:0a:80:0d:7e:6d:bb:11:e2:03:08:a0:f8:52:52:05:
        bb:08:87:ac:ef:47:3b:92:92:df:92:00:96:fb:6d:e3:
        10:cb:d5:c6:3d:75:25:c5:e6:d1:fc:f5:11:be:49:f3:
        e2:d6:41:97:c0:f3:fa:d0:c9:7d:5f:ae:d7:3a:10:d3:
        96:be:8d:8b:3b:12:75:24:75:c8:9e:75:0c:f2:65:17:
        38:97:76:eb:09:03:b3:c7:8c:8e:9e:02:71:f4:3c:d6:
        fd:12:fe:61:3e:c6:91:de:79:b4:17:3d:47:87:67:99:
        81:b6:6f:6d:76:d1:a7:66:a1:47:68:bc:1e:52:bd:2a
    Fingerprint (SHA-256):
        86:39:8A:26:2C:74:ED:9C:A1:3F:59:14:61:F6:E4:52:39:05:F5:73:6C:E8:D3:05:B9:88:3B:F4:3F:D9:1E:C4
    Fingerprint (SHA1):
        3E:39:FF:46:1A:8D:A4:D4:69:13:FE:7E:30:F4:D8:C4:CE:39:40:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3644: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3645: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120427 (0x1e67d1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:50 2017
            Not After : Tue May 10 12:05:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:75:6f:73:70:2e:3a:a7:27:38:07:b2:45:be:af:92:
                    1c:b6:5a:99:f7:05:40:f8:40:54:91:79:3f:4e:f8:1a:
                    ad:c1:51:3e:77:c8:83:99:5f:b9:35:59:82:17:93:b0:
                    9b:fe:e9:17:27:96:6f:63:16:58:76:e3:21:18:62:22:
                    46:86:8e:fa:9a:b3:65:f9:b3:5b:ec:9d:d0:af:12:c8:
                    0f:05:c9:1a:8b:6c:34:89:7e:68:02:5b:41:23:7b:74:
                    ef:8c:b5:62:38:5f:13:a8:a9:8e:e8:5c:0d:42:65:68:
                    22:9e:a5:04:df:b6:ed:e8:26:fa:8c:a7:57:9f:cf:7c:
                    34:c6:ff:6a:a8:a9:4e:3c:c1:19:59:04:94:d9:81:ae:
                    1a:45:88:53:bb:34:e0:24:63:c3:da:be:9a:23:ca:37:
                    89:bc:2b:1c:06:eb:b5:be:31:07:0d:a3:b6:e6:6b:c9:
                    82:eb:5c:d5:99:39:14:2b:5f:58:53:38:9a:06:27:ff:
                    21:2d:2e:75:66:68:db:8b:f7:9c:6d:93:f7:70:94:e6:
                    6d:19:20:ec:f4:23:a0:59:41:87:23:36:7d:cf:8c:19:
                    a6:9e:ba:fc:ff:9f:6d:91:d6:ad:5b:e6:ee:75:74:a5:
                    bb:81:68:bc:5b:a7:30:5d:50:81:90:39:58:41:b4:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:03:a2:80:07:96:78:37:d1:aa:fb:ca:aa:62:8f:72:
        c9:4f:e6:6d:07:7c:8b:97:82:65:7d:94:ee:fd:f6:e6:
        cc:b3:4e:5f:ec:ab:a7:48:a6:e0:01:d4:46:43:66:e2:
        55:e8:17:0d:d2:b9:fc:cc:ea:c0:71:d4:68:cb:5a:ea:
        2a:47:02:bb:19:a4:9b:9f:5f:f7:fc:11:8b:5e:a1:7b:
        4f:6b:db:c4:40:56:83:aa:83:d1:c1:8d:61:18:fa:4f:
        5d:21:89:2d:01:f2:e8:5d:64:38:69:da:a8:32:ce:a2:
        f6:94:f5:0f:d5:18:2f:c7:15:d8:41:cf:4b:bb:59:95:
        4f:28:9f:59:7a:9b:7c:a0:f5:14:19:97:21:9f:df:91:
        35:5c:c0:9a:c3:8f:19:a1:e8:05:df:e5:60:11:a6:8f:
        53:ef:52:ca:00:59:9d:68:8e:7a:8a:ad:73:82:39:b1:
        5d:c2:d2:68:3a:a3:f0:c2:0c:24:9f:af:fe:cd:99:1c:
        4b:45:30:ef:44:d7:0b:ee:f8:ec:83:3f:3e:e1:dd:36:
        81:2d:ca:cc:7d:b2:b9:4e:d7:88:f6:62:8d:53:24:6d:
        8a:af:89:20:2f:18:16:33:fd:db:71:d4:08:68:7b:01:
        a5:75:62:3c:90:54:3d:c4:30:61:25:3c:e4:cc:ad:28
    Fingerprint (SHA-256):
        51:1A:AF:D1:96:68:3B:11:EC:DB:25:CB:93:42:77:3C:A2:E5:3D:B1:89:86:BA:6D:DA:79:CD:C2:76:6F:5E:92
    Fingerprint (SHA1):
        98:CB:6D:0E:CC:AC:6B:C8:4A:65:CF:BF:0E:41:21:BC:BD:FD:C3:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3646: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3647: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120428 (0x1e67d1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:51 2017
            Not After : Tue May 10 12:05:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:28:eb:56:ed:94:88:96:1d:fc:88:6d:ae:fc:7a:43:
                    4e:6b:96:91:07:58:de:c5:e4:46:9e:41:9f:64:78:c8:
                    65:58:58:9a:f5:2a:57:e4:43:8e:0a:b0:66:8f:c3:0c:
                    bc:40:b0:83:9e:17:aa:69:55:d5:5d:1e:a1:c6:52:06:
                    b3:8c:b3:6c:9c:14:fa:1f:24:48:b2:b4:c9:ae:e7:e1:
                    b7:7b:1e:19:01:bf:3b:4f:4b:fd:49:8a:cb:16:f4:08:
                    76:93:1e:3c:c2:17:fd:71:a6:5a:a7:c5:10:81:4a:ff:
                    cf:42:76:9c:14:a8:3a:4c:b8:e7:67:61:17:cb:eb:b8:
                    77:9d:b8:ee:d4:b5:9d:ac:e0:6a:e2:3b:21:14:84:b2:
                    1a:51:ce:31:43:8b:81:ca:6a:13:cd:8a:83:55:ba:9c:
                    c6:44:10:cd:d0:a3:82:a7:22:20:63:67:54:bd:6b:b6:
                    38:62:49:99:f5:1e:01:dd:db:23:ee:cd:e5:d3:f9:a8:
                    4c:8e:83:34:b8:46:84:2a:b3:81:55:d1:7b:7a:bb:e7:
                    d2:27:d9:af:3a:5c:60:22:38:27:b2:76:b1:7d:74:ac:
                    32:68:55:65:76:e1:7d:89:2f:41:73:0d:c3:bf:0d:2b:
                    0a:3b:97:35:70:69:e6:36:e8:e9:4b:3e:6d:49:c3:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:67:ca:55:3f:5e:f6:46:6c:00:b7:51:60:57:cd:64:
        b6:5b:3e:78:2b:6e:64:39:e1:59:d0:67:80:0b:bb:26:
        3a:06:68:da:73:9d:c7:c1:7c:0c:4f:6f:88:64:16:4c:
        a9:f4:b6:0e:4e:d5:57:16:d9:a3:82:03:64:fc:f9:2a:
        fc:31:9e:3b:bf:54:4a:a4:bc:1c:05:21:bc:10:3b:6f:
        87:10:a1:ad:26:08:e0:cd:c5:35:0b:c6:e4:f4:35:51:
        22:4d:de:92:40:62:9a:81:1b:ed:24:16:95:d6:f6:8b:
        cc:6f:53:33:fc:7a:03:f7:f6:e0:c5:d3:54:44:98:38:
        52:5d:1a:f4:1e:ef:1b:da:89:81:9e:b9:9c:b2:c2:b5:
        ff:4d:b5:14:71:d3:6b:2e:b7:24:d1:92:13:66:05:1b:
        1d:7d:e2:6b:5a:e6:3a:6c:b7:1d:30:ac:df:0b:ee:6a:
        d2:f2:41:a6:85:6c:f6:9f:3c:3f:17:9f:ed:d7:19:41:
        8f:03:e4:81:c1:19:93:c4:5f:11:8a:b0:73:c0:62:be:
        65:fe:38:d0:2f:de:69:81:b5:ff:18:95:d6:fa:c7:00:
        1b:04:38:6b:ee:f1:13:ff:3d:5e:cc:01:7e:94:2c:e0:
        12:55:f5:9b:cf:9a:23:6e:40:fd:09:61:c8:f4:b4:45
    Fingerprint (SHA-256):
        03:0C:EF:68:CA:78:D4:5F:65:59:C1:6B:44:53:DE:5B:B6:68:2C:5B:87:88:D2:89:1C:B3:57:EC:D7:B4:86:94
    Fingerprint (SHA1):
        E0:1C:AA:A8:88:AE:66:E9:B1:B7:D8:30:37:5E:F9:10:34:2B:D1:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3648: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3649: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3650: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3651: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3652: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120426 (0x1e67d1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:49 2017
            Not After : Tue May 10 12:05:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:db:ca:35:73:35:ed:eb:e7:ee:59:d2:15:65:c6:9e:
                    33:b0:3e:fb:18:50:ed:56:e7:43:96:7e:46:18:6e:3d:
                    87:9a:93:fe:c5:fb:3b:9e:90:76:4b:3a:eb:4d:87:a9:
                    17:6e:19:f0:66:1a:2a:eb:2a:f6:7a:ae:d3:1c:3b:35:
                    1b:84:1b:6e:5b:87:e8:93:5b:79:6b:b7:6c:7d:8e:88:
                    62:45:c9:36:51:18:31:a5:30:c1:eb:83:95:35:2c:f9:
                    7b:ce:19:30:5a:4e:dc:da:80:e7:f5:5a:6f:f8:4e:ce:
                    27:98:0c:23:ae:ba:20:3c:9f:61:ca:2c:f5:db:cc:25:
                    27:4a:f1:77:4d:2d:c2:ab:f9:0d:da:08:b4:a3:7c:6b:
                    ee:02:c9:5c:15:2e:4e:6e:58:eb:12:1b:9d:e3:63:10:
                    f0:ea:02:ed:16:16:e1:fa:aa:33:4e:9c:15:a8:d8:65:
                    8d:24:a0:05:56:a4:2f:ae:e1:85:34:fd:65:e1:2e:ec:
                    aa:ca:3d:0f:25:57:ca:49:44:67:55:12:e7:65:5c:62:
                    e3:e7:7f:ac:dd:32:53:4c:9d:87:61:ca:7e:a8:74:a7:
                    28:6c:3c:20:69:d8:64:8d:d9:bd:4b:a1:1d:52:56:72:
                    33:2e:4c:77:e1:30:6e:25:fb:09:68:ff:7e:26:bf:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:3c:34:b2:60:38:fe:31:2b:ad:9b:4f:84:2f:3c:7b:
        8d:54:b5:8a:a8:54:12:91:46:a7:9e:d0:d3:42:26:f4:
        ee:ad:6a:bb:31:12:21:9e:56:21:5a:9a:69:1f:75:bd:
        6b:ac:77:94:3c:b8:0d:d2:e6:f2:67:bb:83:d3:5b:b0:
        83:c2:70:3b:7e:b7:4f:63:eb:2d:64:d1:50:6e:82:21:
        6a:10:bf:d6:0a:23:7a:9c:ee:2f:4b:fd:53:b0:16:76:
        72:9a:30:3e:b3:3d:ad:86:40:76:83:44:37:dd:39:6c:
        52:0c:58:ab:b1:cc:fb:96:99:22:3b:9d:f4:01:87:02:
        4f:0a:80:0d:7e:6d:bb:11:e2:03:08:a0:f8:52:52:05:
        bb:08:87:ac:ef:47:3b:92:92:df:92:00:96:fb:6d:e3:
        10:cb:d5:c6:3d:75:25:c5:e6:d1:fc:f5:11:be:49:f3:
        e2:d6:41:97:c0:f3:fa:d0:c9:7d:5f:ae:d7:3a:10:d3:
        96:be:8d:8b:3b:12:75:24:75:c8:9e:75:0c:f2:65:17:
        38:97:76:eb:09:03:b3:c7:8c:8e:9e:02:71:f4:3c:d6:
        fd:12:fe:61:3e:c6:91:de:79:b4:17:3d:47:87:67:99:
        81:b6:6f:6d:76:d1:a7:66:a1:47:68:bc:1e:52:bd:2a
    Fingerprint (SHA-256):
        86:39:8A:26:2C:74:ED:9C:A1:3F:59:14:61:F6:E4:52:39:05:F5:73:6C:E8:D3:05:B9:88:3B:F4:3F:D9:1E:C4
    Fingerprint (SHA1):
        3E:39:FF:46:1A:8D:A4:D4:69:13:FE:7E:30:F4:D8:C4:CE:39:40:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3653: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3654: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120427 (0x1e67d1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:50 2017
            Not After : Tue May 10 12:05:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:75:6f:73:70:2e:3a:a7:27:38:07:b2:45:be:af:92:
                    1c:b6:5a:99:f7:05:40:f8:40:54:91:79:3f:4e:f8:1a:
                    ad:c1:51:3e:77:c8:83:99:5f:b9:35:59:82:17:93:b0:
                    9b:fe:e9:17:27:96:6f:63:16:58:76:e3:21:18:62:22:
                    46:86:8e:fa:9a:b3:65:f9:b3:5b:ec:9d:d0:af:12:c8:
                    0f:05:c9:1a:8b:6c:34:89:7e:68:02:5b:41:23:7b:74:
                    ef:8c:b5:62:38:5f:13:a8:a9:8e:e8:5c:0d:42:65:68:
                    22:9e:a5:04:df:b6:ed:e8:26:fa:8c:a7:57:9f:cf:7c:
                    34:c6:ff:6a:a8:a9:4e:3c:c1:19:59:04:94:d9:81:ae:
                    1a:45:88:53:bb:34:e0:24:63:c3:da:be:9a:23:ca:37:
                    89:bc:2b:1c:06:eb:b5:be:31:07:0d:a3:b6:e6:6b:c9:
                    82:eb:5c:d5:99:39:14:2b:5f:58:53:38:9a:06:27:ff:
                    21:2d:2e:75:66:68:db:8b:f7:9c:6d:93:f7:70:94:e6:
                    6d:19:20:ec:f4:23:a0:59:41:87:23:36:7d:cf:8c:19:
                    a6:9e:ba:fc:ff:9f:6d:91:d6:ad:5b:e6:ee:75:74:a5:
                    bb:81:68:bc:5b:a7:30:5d:50:81:90:39:58:41:b4:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:03:a2:80:07:96:78:37:d1:aa:fb:ca:aa:62:8f:72:
        c9:4f:e6:6d:07:7c:8b:97:82:65:7d:94:ee:fd:f6:e6:
        cc:b3:4e:5f:ec:ab:a7:48:a6:e0:01:d4:46:43:66:e2:
        55:e8:17:0d:d2:b9:fc:cc:ea:c0:71:d4:68:cb:5a:ea:
        2a:47:02:bb:19:a4:9b:9f:5f:f7:fc:11:8b:5e:a1:7b:
        4f:6b:db:c4:40:56:83:aa:83:d1:c1:8d:61:18:fa:4f:
        5d:21:89:2d:01:f2:e8:5d:64:38:69:da:a8:32:ce:a2:
        f6:94:f5:0f:d5:18:2f:c7:15:d8:41:cf:4b:bb:59:95:
        4f:28:9f:59:7a:9b:7c:a0:f5:14:19:97:21:9f:df:91:
        35:5c:c0:9a:c3:8f:19:a1:e8:05:df:e5:60:11:a6:8f:
        53:ef:52:ca:00:59:9d:68:8e:7a:8a:ad:73:82:39:b1:
        5d:c2:d2:68:3a:a3:f0:c2:0c:24:9f:af:fe:cd:99:1c:
        4b:45:30:ef:44:d7:0b:ee:f8:ec:83:3f:3e:e1:dd:36:
        81:2d:ca:cc:7d:b2:b9:4e:d7:88:f6:62:8d:53:24:6d:
        8a:af:89:20:2f:18:16:33:fd:db:71:d4:08:68:7b:01:
        a5:75:62:3c:90:54:3d:c4:30:61:25:3c:e4:cc:ad:28
    Fingerprint (SHA-256):
        51:1A:AF:D1:96:68:3B:11:EC:DB:25:CB:93:42:77:3C:A2:E5:3D:B1:89:86:BA:6D:DA:79:CD:C2:76:6F:5E:92
    Fingerprint (SHA1):
        98:CB:6D:0E:CC:AC:6B:C8:4A:65:CF:BF:0E:41:21:BC:BD:FD:C3:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3655: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3656: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120428 (0x1e67d1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:51 2017
            Not After : Tue May 10 12:05:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:28:eb:56:ed:94:88:96:1d:fc:88:6d:ae:fc:7a:43:
                    4e:6b:96:91:07:58:de:c5:e4:46:9e:41:9f:64:78:c8:
                    65:58:58:9a:f5:2a:57:e4:43:8e:0a:b0:66:8f:c3:0c:
                    bc:40:b0:83:9e:17:aa:69:55:d5:5d:1e:a1:c6:52:06:
                    b3:8c:b3:6c:9c:14:fa:1f:24:48:b2:b4:c9:ae:e7:e1:
                    b7:7b:1e:19:01:bf:3b:4f:4b:fd:49:8a:cb:16:f4:08:
                    76:93:1e:3c:c2:17:fd:71:a6:5a:a7:c5:10:81:4a:ff:
                    cf:42:76:9c:14:a8:3a:4c:b8:e7:67:61:17:cb:eb:b8:
                    77:9d:b8:ee:d4:b5:9d:ac:e0:6a:e2:3b:21:14:84:b2:
                    1a:51:ce:31:43:8b:81:ca:6a:13:cd:8a:83:55:ba:9c:
                    c6:44:10:cd:d0:a3:82:a7:22:20:63:67:54:bd:6b:b6:
                    38:62:49:99:f5:1e:01:dd:db:23:ee:cd:e5:d3:f9:a8:
                    4c:8e:83:34:b8:46:84:2a:b3:81:55:d1:7b:7a:bb:e7:
                    d2:27:d9:af:3a:5c:60:22:38:27:b2:76:b1:7d:74:ac:
                    32:68:55:65:76:e1:7d:89:2f:41:73:0d:c3:bf:0d:2b:
                    0a:3b:97:35:70:69:e6:36:e8:e9:4b:3e:6d:49:c3:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:67:ca:55:3f:5e:f6:46:6c:00:b7:51:60:57:cd:64:
        b6:5b:3e:78:2b:6e:64:39:e1:59:d0:67:80:0b:bb:26:
        3a:06:68:da:73:9d:c7:c1:7c:0c:4f:6f:88:64:16:4c:
        a9:f4:b6:0e:4e:d5:57:16:d9:a3:82:03:64:fc:f9:2a:
        fc:31:9e:3b:bf:54:4a:a4:bc:1c:05:21:bc:10:3b:6f:
        87:10:a1:ad:26:08:e0:cd:c5:35:0b:c6:e4:f4:35:51:
        22:4d:de:92:40:62:9a:81:1b:ed:24:16:95:d6:f6:8b:
        cc:6f:53:33:fc:7a:03:f7:f6:e0:c5:d3:54:44:98:38:
        52:5d:1a:f4:1e:ef:1b:da:89:81:9e:b9:9c:b2:c2:b5:
        ff:4d:b5:14:71:d3:6b:2e:b7:24:d1:92:13:66:05:1b:
        1d:7d:e2:6b:5a:e6:3a:6c:b7:1d:30:ac:df:0b:ee:6a:
        d2:f2:41:a6:85:6c:f6:9f:3c:3f:17:9f:ed:d7:19:41:
        8f:03:e4:81:c1:19:93:c4:5f:11:8a:b0:73:c0:62:be:
        65:fe:38:d0:2f:de:69:81:b5:ff:18:95:d6:fa:c7:00:
        1b:04:38:6b:ee:f1:13:ff:3d:5e:cc:01:7e:94:2c:e0:
        12:55:f5:9b:cf:9a:23:6e:40:fd:09:61:c8:f4:b4:45
    Fingerprint (SHA-256):
        03:0C:EF:68:CA:78:D4:5F:65:59:C1:6B:44:53:DE:5B:B6:68:2C:5B:87:88:D2:89:1C:B3:57:EC:D7:B4:86:94
    Fingerprint (SHA1):
        E0:1C:AA:A8:88:AE:66:E9:B1:B7:D8:30:37:5E:F9:10:34:2B:D1:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3657: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3658: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120426 (0x1e67d1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:49 2017
            Not After : Tue May 10 12:05:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:db:ca:35:73:35:ed:eb:e7:ee:59:d2:15:65:c6:9e:
                    33:b0:3e:fb:18:50:ed:56:e7:43:96:7e:46:18:6e:3d:
                    87:9a:93:fe:c5:fb:3b:9e:90:76:4b:3a:eb:4d:87:a9:
                    17:6e:19:f0:66:1a:2a:eb:2a:f6:7a:ae:d3:1c:3b:35:
                    1b:84:1b:6e:5b:87:e8:93:5b:79:6b:b7:6c:7d:8e:88:
                    62:45:c9:36:51:18:31:a5:30:c1:eb:83:95:35:2c:f9:
                    7b:ce:19:30:5a:4e:dc:da:80:e7:f5:5a:6f:f8:4e:ce:
                    27:98:0c:23:ae:ba:20:3c:9f:61:ca:2c:f5:db:cc:25:
                    27:4a:f1:77:4d:2d:c2:ab:f9:0d:da:08:b4:a3:7c:6b:
                    ee:02:c9:5c:15:2e:4e:6e:58:eb:12:1b:9d:e3:63:10:
                    f0:ea:02:ed:16:16:e1:fa:aa:33:4e:9c:15:a8:d8:65:
                    8d:24:a0:05:56:a4:2f:ae:e1:85:34:fd:65:e1:2e:ec:
                    aa:ca:3d:0f:25:57:ca:49:44:67:55:12:e7:65:5c:62:
                    e3:e7:7f:ac:dd:32:53:4c:9d:87:61:ca:7e:a8:74:a7:
                    28:6c:3c:20:69:d8:64:8d:d9:bd:4b:a1:1d:52:56:72:
                    33:2e:4c:77:e1:30:6e:25:fb:09:68:ff:7e:26:bf:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:3c:34:b2:60:38:fe:31:2b:ad:9b:4f:84:2f:3c:7b:
        8d:54:b5:8a:a8:54:12:91:46:a7:9e:d0:d3:42:26:f4:
        ee:ad:6a:bb:31:12:21:9e:56:21:5a:9a:69:1f:75:bd:
        6b:ac:77:94:3c:b8:0d:d2:e6:f2:67:bb:83:d3:5b:b0:
        83:c2:70:3b:7e:b7:4f:63:eb:2d:64:d1:50:6e:82:21:
        6a:10:bf:d6:0a:23:7a:9c:ee:2f:4b:fd:53:b0:16:76:
        72:9a:30:3e:b3:3d:ad:86:40:76:83:44:37:dd:39:6c:
        52:0c:58:ab:b1:cc:fb:96:99:22:3b:9d:f4:01:87:02:
        4f:0a:80:0d:7e:6d:bb:11:e2:03:08:a0:f8:52:52:05:
        bb:08:87:ac:ef:47:3b:92:92:df:92:00:96:fb:6d:e3:
        10:cb:d5:c6:3d:75:25:c5:e6:d1:fc:f5:11:be:49:f3:
        e2:d6:41:97:c0:f3:fa:d0:c9:7d:5f:ae:d7:3a:10:d3:
        96:be:8d:8b:3b:12:75:24:75:c8:9e:75:0c:f2:65:17:
        38:97:76:eb:09:03:b3:c7:8c:8e:9e:02:71:f4:3c:d6:
        fd:12:fe:61:3e:c6:91:de:79:b4:17:3d:47:87:67:99:
        81:b6:6f:6d:76:d1:a7:66:a1:47:68:bc:1e:52:bd:2a
    Fingerprint (SHA-256):
        86:39:8A:26:2C:74:ED:9C:A1:3F:59:14:61:F6:E4:52:39:05:F5:73:6C:E8:D3:05:B9:88:3B:F4:3F:D9:1E:C4
    Fingerprint (SHA1):
        3E:39:FF:46:1A:8D:A4:D4:69:13:FE:7E:30:F4:D8:C4:CE:39:40:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3659: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120426 (0x1e67d1ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:49 2017
            Not After : Tue May 10 12:05:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:db:ca:35:73:35:ed:eb:e7:ee:59:d2:15:65:c6:9e:
                    33:b0:3e:fb:18:50:ed:56:e7:43:96:7e:46:18:6e:3d:
                    87:9a:93:fe:c5:fb:3b:9e:90:76:4b:3a:eb:4d:87:a9:
                    17:6e:19:f0:66:1a:2a:eb:2a:f6:7a:ae:d3:1c:3b:35:
                    1b:84:1b:6e:5b:87:e8:93:5b:79:6b:b7:6c:7d:8e:88:
                    62:45:c9:36:51:18:31:a5:30:c1:eb:83:95:35:2c:f9:
                    7b:ce:19:30:5a:4e:dc:da:80:e7:f5:5a:6f:f8:4e:ce:
                    27:98:0c:23:ae:ba:20:3c:9f:61:ca:2c:f5:db:cc:25:
                    27:4a:f1:77:4d:2d:c2:ab:f9:0d:da:08:b4:a3:7c:6b:
                    ee:02:c9:5c:15:2e:4e:6e:58:eb:12:1b:9d:e3:63:10:
                    f0:ea:02:ed:16:16:e1:fa:aa:33:4e:9c:15:a8:d8:65:
                    8d:24:a0:05:56:a4:2f:ae:e1:85:34:fd:65:e1:2e:ec:
                    aa:ca:3d:0f:25:57:ca:49:44:67:55:12:e7:65:5c:62:
                    e3:e7:7f:ac:dd:32:53:4c:9d:87:61:ca:7e:a8:74:a7:
                    28:6c:3c:20:69:d8:64:8d:d9:bd:4b:a1:1d:52:56:72:
                    33:2e:4c:77:e1:30:6e:25:fb:09:68:ff:7e:26:bf:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:3c:34:b2:60:38:fe:31:2b:ad:9b:4f:84:2f:3c:7b:
        8d:54:b5:8a:a8:54:12:91:46:a7:9e:d0:d3:42:26:f4:
        ee:ad:6a:bb:31:12:21:9e:56:21:5a:9a:69:1f:75:bd:
        6b:ac:77:94:3c:b8:0d:d2:e6:f2:67:bb:83:d3:5b:b0:
        83:c2:70:3b:7e:b7:4f:63:eb:2d:64:d1:50:6e:82:21:
        6a:10:bf:d6:0a:23:7a:9c:ee:2f:4b:fd:53:b0:16:76:
        72:9a:30:3e:b3:3d:ad:86:40:76:83:44:37:dd:39:6c:
        52:0c:58:ab:b1:cc:fb:96:99:22:3b:9d:f4:01:87:02:
        4f:0a:80:0d:7e:6d:bb:11:e2:03:08:a0:f8:52:52:05:
        bb:08:87:ac:ef:47:3b:92:92:df:92:00:96:fb:6d:e3:
        10:cb:d5:c6:3d:75:25:c5:e6:d1:fc:f5:11:be:49:f3:
        e2:d6:41:97:c0:f3:fa:d0:c9:7d:5f:ae:d7:3a:10:d3:
        96:be:8d:8b:3b:12:75:24:75:c8:9e:75:0c:f2:65:17:
        38:97:76:eb:09:03:b3:c7:8c:8e:9e:02:71:f4:3c:d6:
        fd:12:fe:61:3e:c6:91:de:79:b4:17:3d:47:87:67:99:
        81:b6:6f:6d:76:d1:a7:66:a1:47:68:bc:1e:52:bd:2a
    Fingerprint (SHA-256):
        86:39:8A:26:2C:74:ED:9C:A1:3F:59:14:61:F6:E4:52:39:05:F5:73:6C:E8:D3:05:B9:88:3B:F4:3F:D9:1E:C4
    Fingerprint (SHA1):
        3E:39:FF:46:1A:8D:A4:D4:69:13:FE:7E:30:F4:D8:C4:CE:39:40:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3660: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120427 (0x1e67d1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:50 2017
            Not After : Tue May 10 12:05:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:75:6f:73:70:2e:3a:a7:27:38:07:b2:45:be:af:92:
                    1c:b6:5a:99:f7:05:40:f8:40:54:91:79:3f:4e:f8:1a:
                    ad:c1:51:3e:77:c8:83:99:5f:b9:35:59:82:17:93:b0:
                    9b:fe:e9:17:27:96:6f:63:16:58:76:e3:21:18:62:22:
                    46:86:8e:fa:9a:b3:65:f9:b3:5b:ec:9d:d0:af:12:c8:
                    0f:05:c9:1a:8b:6c:34:89:7e:68:02:5b:41:23:7b:74:
                    ef:8c:b5:62:38:5f:13:a8:a9:8e:e8:5c:0d:42:65:68:
                    22:9e:a5:04:df:b6:ed:e8:26:fa:8c:a7:57:9f:cf:7c:
                    34:c6:ff:6a:a8:a9:4e:3c:c1:19:59:04:94:d9:81:ae:
                    1a:45:88:53:bb:34:e0:24:63:c3:da:be:9a:23:ca:37:
                    89:bc:2b:1c:06:eb:b5:be:31:07:0d:a3:b6:e6:6b:c9:
                    82:eb:5c:d5:99:39:14:2b:5f:58:53:38:9a:06:27:ff:
                    21:2d:2e:75:66:68:db:8b:f7:9c:6d:93:f7:70:94:e6:
                    6d:19:20:ec:f4:23:a0:59:41:87:23:36:7d:cf:8c:19:
                    a6:9e:ba:fc:ff:9f:6d:91:d6:ad:5b:e6:ee:75:74:a5:
                    bb:81:68:bc:5b:a7:30:5d:50:81:90:39:58:41:b4:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:03:a2:80:07:96:78:37:d1:aa:fb:ca:aa:62:8f:72:
        c9:4f:e6:6d:07:7c:8b:97:82:65:7d:94:ee:fd:f6:e6:
        cc:b3:4e:5f:ec:ab:a7:48:a6:e0:01:d4:46:43:66:e2:
        55:e8:17:0d:d2:b9:fc:cc:ea:c0:71:d4:68:cb:5a:ea:
        2a:47:02:bb:19:a4:9b:9f:5f:f7:fc:11:8b:5e:a1:7b:
        4f:6b:db:c4:40:56:83:aa:83:d1:c1:8d:61:18:fa:4f:
        5d:21:89:2d:01:f2:e8:5d:64:38:69:da:a8:32:ce:a2:
        f6:94:f5:0f:d5:18:2f:c7:15:d8:41:cf:4b:bb:59:95:
        4f:28:9f:59:7a:9b:7c:a0:f5:14:19:97:21:9f:df:91:
        35:5c:c0:9a:c3:8f:19:a1:e8:05:df:e5:60:11:a6:8f:
        53:ef:52:ca:00:59:9d:68:8e:7a:8a:ad:73:82:39:b1:
        5d:c2:d2:68:3a:a3:f0:c2:0c:24:9f:af:fe:cd:99:1c:
        4b:45:30:ef:44:d7:0b:ee:f8:ec:83:3f:3e:e1:dd:36:
        81:2d:ca:cc:7d:b2:b9:4e:d7:88:f6:62:8d:53:24:6d:
        8a:af:89:20:2f:18:16:33:fd:db:71:d4:08:68:7b:01:
        a5:75:62:3c:90:54:3d:c4:30:61:25:3c:e4:cc:ad:28
    Fingerprint (SHA-256):
        51:1A:AF:D1:96:68:3B:11:EC:DB:25:CB:93:42:77:3C:A2:E5:3D:B1:89:86:BA:6D:DA:79:CD:C2:76:6F:5E:92
    Fingerprint (SHA1):
        98:CB:6D:0E:CC:AC:6B:C8:4A:65:CF:BF:0E:41:21:BC:BD:FD:C3:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3661: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120427 (0x1e67d1eb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:05:50 2017
            Not After : Tue May 10 12:05:50 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:75:6f:73:70:2e:3a:a7:27:38:07:b2:45:be:af:92:
                    1c:b6:5a:99:f7:05:40:f8:40:54:91:79:3f:4e:f8:1a:
                    ad:c1:51:3e:77:c8:83:99:5f:b9:35:59:82:17:93:b0:
                    9b:fe:e9:17:27:96:6f:63:16:58:76:e3:21:18:62:22:
                    46:86:8e:fa:9a:b3:65:f9:b3:5b:ec:9d:d0:af:12:c8:
                    0f:05:c9:1a:8b:6c:34:89:7e:68:02:5b:41:23:7b:74:
                    ef:8c:b5:62:38:5f:13:a8:a9:8e:e8:5c:0d:42:65:68:
                    22:9e:a5:04:df:b6:ed:e8:26:fa:8c:a7:57:9f:cf:7c:
                    34:c6:ff:6a:a8:a9:4e:3c:c1:19:59:04:94:d9:81:ae:
                    1a:45:88:53:bb:34:e0:24:63:c3:da:be:9a:23:ca:37:
                    89:bc:2b:1c:06:eb:b5:be:31:07:0d:a3:b6:e6:6b:c9:
                    82:eb:5c:d5:99:39:14:2b:5f:58:53:38:9a:06:27:ff:
                    21:2d:2e:75:66:68:db:8b:f7:9c:6d:93:f7:70:94:e6:
                    6d:19:20:ec:f4:23:a0:59:41:87:23:36:7d:cf:8c:19:
                    a6:9e:ba:fc:ff:9f:6d:91:d6:ad:5b:e6:ee:75:74:a5:
                    bb:81:68:bc:5b:a7:30:5d:50:81:90:39:58:41:b4:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        dd:03:a2:80:07:96:78:37:d1:aa:fb:ca:aa:62:8f:72:
        c9:4f:e6:6d:07:7c:8b:97:82:65:7d:94:ee:fd:f6:e6:
        cc:b3:4e:5f:ec:ab:a7:48:a6:e0:01:d4:46:43:66:e2:
        55:e8:17:0d:d2:b9:fc:cc:ea:c0:71:d4:68:cb:5a:ea:
        2a:47:02:bb:19:a4:9b:9f:5f:f7:fc:11:8b:5e:a1:7b:
        4f:6b:db:c4:40:56:83:aa:83:d1:c1:8d:61:18:fa:4f:
        5d:21:89:2d:01:f2:e8:5d:64:38:69:da:a8:32:ce:a2:
        f6:94:f5:0f:d5:18:2f:c7:15:d8:41:cf:4b:bb:59:95:
        4f:28:9f:59:7a:9b:7c:a0:f5:14:19:97:21:9f:df:91:
        35:5c:c0:9a:c3:8f:19:a1:e8:05:df:e5:60:11:a6:8f:
        53:ef:52:ca:00:59:9d:68:8e:7a:8a:ad:73:82:39:b1:
        5d:c2:d2:68:3a:a3:f0:c2:0c:24:9f:af:fe:cd:99:1c:
        4b:45:30:ef:44:d7:0b:ee:f8:ec:83:3f:3e:e1:dd:36:
        81:2d:ca:cc:7d:b2:b9:4e:d7:88:f6:62:8d:53:24:6d:
        8a:af:89:20:2f:18:16:33:fd:db:71:d4:08:68:7b:01:
        a5:75:62:3c:90:54:3d:c4:30:61:25:3c:e4:cc:ad:28
    Fingerprint (SHA-256):
        51:1A:AF:D1:96:68:3B:11:EC:DB:25:CB:93:42:77:3C:A2:E5:3D:B1:89:86:BA:6D:DA:79:CD:C2:76:6F:5E:92
    Fingerprint (SHA1):
        98:CB:6D:0E:CC:AC:6B:C8:4A:65:CF:BF:0E:41:21:BC:BD:FD:C3:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3662: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120428 (0x1e67d1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:51 2017
            Not After : Tue May 10 12:05:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:28:eb:56:ed:94:88:96:1d:fc:88:6d:ae:fc:7a:43:
                    4e:6b:96:91:07:58:de:c5:e4:46:9e:41:9f:64:78:c8:
                    65:58:58:9a:f5:2a:57:e4:43:8e:0a:b0:66:8f:c3:0c:
                    bc:40:b0:83:9e:17:aa:69:55:d5:5d:1e:a1:c6:52:06:
                    b3:8c:b3:6c:9c:14:fa:1f:24:48:b2:b4:c9:ae:e7:e1:
                    b7:7b:1e:19:01:bf:3b:4f:4b:fd:49:8a:cb:16:f4:08:
                    76:93:1e:3c:c2:17:fd:71:a6:5a:a7:c5:10:81:4a:ff:
                    cf:42:76:9c:14:a8:3a:4c:b8:e7:67:61:17:cb:eb:b8:
                    77:9d:b8:ee:d4:b5:9d:ac:e0:6a:e2:3b:21:14:84:b2:
                    1a:51:ce:31:43:8b:81:ca:6a:13:cd:8a:83:55:ba:9c:
                    c6:44:10:cd:d0:a3:82:a7:22:20:63:67:54:bd:6b:b6:
                    38:62:49:99:f5:1e:01:dd:db:23:ee:cd:e5:d3:f9:a8:
                    4c:8e:83:34:b8:46:84:2a:b3:81:55:d1:7b:7a:bb:e7:
                    d2:27:d9:af:3a:5c:60:22:38:27:b2:76:b1:7d:74:ac:
                    32:68:55:65:76:e1:7d:89:2f:41:73:0d:c3:bf:0d:2b:
                    0a:3b:97:35:70:69:e6:36:e8:e9:4b:3e:6d:49:c3:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:67:ca:55:3f:5e:f6:46:6c:00:b7:51:60:57:cd:64:
        b6:5b:3e:78:2b:6e:64:39:e1:59:d0:67:80:0b:bb:26:
        3a:06:68:da:73:9d:c7:c1:7c:0c:4f:6f:88:64:16:4c:
        a9:f4:b6:0e:4e:d5:57:16:d9:a3:82:03:64:fc:f9:2a:
        fc:31:9e:3b:bf:54:4a:a4:bc:1c:05:21:bc:10:3b:6f:
        87:10:a1:ad:26:08:e0:cd:c5:35:0b:c6:e4:f4:35:51:
        22:4d:de:92:40:62:9a:81:1b:ed:24:16:95:d6:f6:8b:
        cc:6f:53:33:fc:7a:03:f7:f6:e0:c5:d3:54:44:98:38:
        52:5d:1a:f4:1e:ef:1b:da:89:81:9e:b9:9c:b2:c2:b5:
        ff:4d:b5:14:71:d3:6b:2e:b7:24:d1:92:13:66:05:1b:
        1d:7d:e2:6b:5a:e6:3a:6c:b7:1d:30:ac:df:0b:ee:6a:
        d2:f2:41:a6:85:6c:f6:9f:3c:3f:17:9f:ed:d7:19:41:
        8f:03:e4:81:c1:19:93:c4:5f:11:8a:b0:73:c0:62:be:
        65:fe:38:d0:2f:de:69:81:b5:ff:18:95:d6:fa:c7:00:
        1b:04:38:6b:ee:f1:13:ff:3d:5e:cc:01:7e:94:2c:e0:
        12:55:f5:9b:cf:9a:23:6e:40:fd:09:61:c8:f4:b4:45
    Fingerprint (SHA-256):
        03:0C:EF:68:CA:78:D4:5F:65:59:C1:6B:44:53:DE:5B:B6:68:2C:5B:87:88:D2:89:1C:B3:57:EC:D7:B4:86:94
    Fingerprint (SHA1):
        E0:1C:AA:A8:88:AE:66:E9:B1:B7:D8:30:37:5E:F9:10:34:2B:D1:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3663: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120428 (0x1e67d1ec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:05:51 2017
            Not After : Tue May 10 12:05:51 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:28:eb:56:ed:94:88:96:1d:fc:88:6d:ae:fc:7a:43:
                    4e:6b:96:91:07:58:de:c5:e4:46:9e:41:9f:64:78:c8:
                    65:58:58:9a:f5:2a:57:e4:43:8e:0a:b0:66:8f:c3:0c:
                    bc:40:b0:83:9e:17:aa:69:55:d5:5d:1e:a1:c6:52:06:
                    b3:8c:b3:6c:9c:14:fa:1f:24:48:b2:b4:c9:ae:e7:e1:
                    b7:7b:1e:19:01:bf:3b:4f:4b:fd:49:8a:cb:16:f4:08:
                    76:93:1e:3c:c2:17:fd:71:a6:5a:a7:c5:10:81:4a:ff:
                    cf:42:76:9c:14:a8:3a:4c:b8:e7:67:61:17:cb:eb:b8:
                    77:9d:b8:ee:d4:b5:9d:ac:e0:6a:e2:3b:21:14:84:b2:
                    1a:51:ce:31:43:8b:81:ca:6a:13:cd:8a:83:55:ba:9c:
                    c6:44:10:cd:d0:a3:82:a7:22:20:63:67:54:bd:6b:b6:
                    38:62:49:99:f5:1e:01:dd:db:23:ee:cd:e5:d3:f9:a8:
                    4c:8e:83:34:b8:46:84:2a:b3:81:55:d1:7b:7a:bb:e7:
                    d2:27:d9:af:3a:5c:60:22:38:27:b2:76:b1:7d:74:ac:
                    32:68:55:65:76:e1:7d:89:2f:41:73:0d:c3:bf:0d:2b:
                    0a:3b:97:35:70:69:e6:36:e8:e9:4b:3e:6d:49:c3:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:67:ca:55:3f:5e:f6:46:6c:00:b7:51:60:57:cd:64:
        b6:5b:3e:78:2b:6e:64:39:e1:59:d0:67:80:0b:bb:26:
        3a:06:68:da:73:9d:c7:c1:7c:0c:4f:6f:88:64:16:4c:
        a9:f4:b6:0e:4e:d5:57:16:d9:a3:82:03:64:fc:f9:2a:
        fc:31:9e:3b:bf:54:4a:a4:bc:1c:05:21:bc:10:3b:6f:
        87:10:a1:ad:26:08:e0:cd:c5:35:0b:c6:e4:f4:35:51:
        22:4d:de:92:40:62:9a:81:1b:ed:24:16:95:d6:f6:8b:
        cc:6f:53:33:fc:7a:03:f7:f6:e0:c5:d3:54:44:98:38:
        52:5d:1a:f4:1e:ef:1b:da:89:81:9e:b9:9c:b2:c2:b5:
        ff:4d:b5:14:71:d3:6b:2e:b7:24:d1:92:13:66:05:1b:
        1d:7d:e2:6b:5a:e6:3a:6c:b7:1d:30:ac:df:0b:ee:6a:
        d2:f2:41:a6:85:6c:f6:9f:3c:3f:17:9f:ed:d7:19:41:
        8f:03:e4:81:c1:19:93:c4:5f:11:8a:b0:73:c0:62:be:
        65:fe:38:d0:2f:de:69:81:b5:ff:18:95:d6:fa:c7:00:
        1b:04:38:6b:ee:f1:13:ff:3d:5e:cc:01:7e:94:2c:e0:
        12:55:f5:9b:cf:9a:23:6e:40:fd:09:61:c8:f4:b4:45
    Fingerprint (SHA-256):
        03:0C:EF:68:CA:78:D4:5F:65:59:C1:6B:44:53:DE:5B:B6:68:2C:5B:87:88:D2:89:1C:B3:57:EC:D7:B4:86:94
    Fingerprint (SHA1):
        E0:1C:AA:A8:88:AE:66:E9:B1:B7:D8:30:37:5E:F9:10:34:2B:D1:F0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3664: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3665: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120431 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3666: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3667: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3668: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3669: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510120432   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3670: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3671: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3672: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3673: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120433   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3674: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3675: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3676: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3677: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510120434   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3678: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3679: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3680: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3681: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510120435   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3682: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3683: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3684: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3685: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510120436   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3686: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3687: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3688: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3689: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510120437   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3690: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3691: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3692: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3693: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3694: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3695: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3696: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120431 (0x1e67d1ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:54 2017
            Not After : Tue May 10 12:05:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:14:5f:a3:eb:dd:06:9c:1c:61:ac:86:c8:e0:65:f8:
                    5f:7d:29:f2:18:bf:cc:f5:21:8d:28:9d:4b:63:40:70:
                    76:e8:1d:61:ea:46:57:b9:b5:cb:d9:4d:74:f4:a2:0a:
                    c7:81:48:15:fd:e5:f7:10:67:9c:b3:b6:68:a9:0f:bd:
                    8d:b4:56:f5:f1:69:29:f3:e5:64:e9:74:9b:e9:10:15:
                    cf:7c:00:7a:31:f9:c7:99:ff:a4:8b:67:71:b1:dd:08:
                    9d:3a:8f:79:d3:3d:19:dc:6f:b7:f3:f7:d3:81:17:c8:
                    0a:b3:3b:e7:a3:29:37:af:85:fe:9d:ba:58:f1:42:23:
                    d7:45:72:cb:5d:5b:09:91:ba:2f:1a:21:25:66:f5:05:
                    19:25:09:c2:45:c0:51:f1:7c:f6:d4:26:5e:81:72:12:
                    4c:ca:4f:81:07:ec:30:60:c4:fb:be:6c:f1:d3:79:a8:
                    55:ff:dc:a7:e1:dd:ea:38:b5:ea:b6:0d:bb:bb:a3:af:
                    c6:a9:fd:49:7a:02:b3:5d:5b:36:9e:47:fe:d5:ac:14:
                    92:ee:ff:f0:c4:f1:ac:2a:a5:08:bc:67:21:2c:80:ca:
                    43:58:54:c5:f6:ad:ae:ec:44:ae:8f:32:a1:1f:bd:6c:
                    1b:0c:e3:a0:1c:96:b4:58:be:f2:3a:f3:f7:70:35:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:f0:bc:7b:31:7a:0d:19:63:97:90:20:7a:07:83:42:
        1c:1b:81:f6:84:02:14:de:a4:63:ad:4e:4e:df:a0:5c:
        83:f6:4d:fb:95:fd:b2:1a:b6:b7:da:c5:a5:0c:21:28:
        16:32:2b:3e:ac:b4:10:bd:81:83:27:45:07:75:3c:02:
        a9:6d:a3:37:dd:b0:50:c8:d6:00:fb:f0:bb:b9:b7:c9:
        6c:0e:e2:d8:a0:80:bc:c4:90:5e:f8:18:b6:7a:32:c1:
        75:de:91:ab:05:4a:9f:6b:fd:dc:f7:b5:d5:a9:2b:e9:
        b0:95:86:a7:f2:66:72:3b:1a:95:45:c4:c1:27:16:0e:
        49:2b:88:33:74:64:d1:3a:66:f1:32:3a:92:1d:a4:03:
        56:9e:af:ca:70:fd:33:17:86:49:bf:9e:39:82:2b:09:
        c6:d7:d9:55:84:48:db:88:5d:56:0e:cf:de:d5:82:1c:
        04:46:39:90:bf:3e:bb:f6:66:dc:0b:f3:dc:32:10:af:
        a7:e0:a2:f9:0e:13:7b:ac:20:d1:97:84:89:a9:16:05:
        39:bd:7e:9c:40:c5:62:dc:92:11:b5:e2:88:d4:ef:f0:
        04:e0:7d:d0:c1:cc:28:92:ac:43:67:8d:24:21:bc:a1:
        65:09:55:d2:41:d2:74:cf:6a:88:43:ec:08:97:86:46
    Fingerprint (SHA-256):
        C0:B4:48:DF:DB:A0:0A:E6:9E:3C:C1:77:E0:9C:E5:BA:5B:BD:69:3D:25:A6:8E:6A:CE:FD:D9:33:51:A4:CB:60
    Fingerprint (SHA1):
        CA:9F:BF:D7:AC:C6:7D:A2:B4:85:69:65:83:07:15:A2:E9:78:D8:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3697: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3698: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3699: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3700: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120431 (0x1e67d1ef)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:05:54 2017
            Not After : Tue May 10 12:05:54 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:14:5f:a3:eb:dd:06:9c:1c:61:ac:86:c8:e0:65:f8:
                    5f:7d:29:f2:18:bf:cc:f5:21:8d:28:9d:4b:63:40:70:
                    76:e8:1d:61:ea:46:57:b9:b5:cb:d9:4d:74:f4:a2:0a:
                    c7:81:48:15:fd:e5:f7:10:67:9c:b3:b6:68:a9:0f:bd:
                    8d:b4:56:f5:f1:69:29:f3:e5:64:e9:74:9b:e9:10:15:
                    cf:7c:00:7a:31:f9:c7:99:ff:a4:8b:67:71:b1:dd:08:
                    9d:3a:8f:79:d3:3d:19:dc:6f:b7:f3:f7:d3:81:17:c8:
                    0a:b3:3b:e7:a3:29:37:af:85:fe:9d:ba:58:f1:42:23:
                    d7:45:72:cb:5d:5b:09:91:ba:2f:1a:21:25:66:f5:05:
                    19:25:09:c2:45:c0:51:f1:7c:f6:d4:26:5e:81:72:12:
                    4c:ca:4f:81:07:ec:30:60:c4:fb:be:6c:f1:d3:79:a8:
                    55:ff:dc:a7:e1:dd:ea:38:b5:ea:b6:0d:bb:bb:a3:af:
                    c6:a9:fd:49:7a:02:b3:5d:5b:36:9e:47:fe:d5:ac:14:
                    92:ee:ff:f0:c4:f1:ac:2a:a5:08:bc:67:21:2c:80:ca:
                    43:58:54:c5:f6:ad:ae:ec:44:ae:8f:32:a1:1f:bd:6c:
                    1b:0c:e3:a0:1c:96:b4:58:be:f2:3a:f3:f7:70:35:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:f0:bc:7b:31:7a:0d:19:63:97:90:20:7a:07:83:42:
        1c:1b:81:f6:84:02:14:de:a4:63:ad:4e:4e:df:a0:5c:
        83:f6:4d:fb:95:fd:b2:1a:b6:b7:da:c5:a5:0c:21:28:
        16:32:2b:3e:ac:b4:10:bd:81:83:27:45:07:75:3c:02:
        a9:6d:a3:37:dd:b0:50:c8:d6:00:fb:f0:bb:b9:b7:c9:
        6c:0e:e2:d8:a0:80:bc:c4:90:5e:f8:18:b6:7a:32:c1:
        75:de:91:ab:05:4a:9f:6b:fd:dc:f7:b5:d5:a9:2b:e9:
        b0:95:86:a7:f2:66:72:3b:1a:95:45:c4:c1:27:16:0e:
        49:2b:88:33:74:64:d1:3a:66:f1:32:3a:92:1d:a4:03:
        56:9e:af:ca:70:fd:33:17:86:49:bf:9e:39:82:2b:09:
        c6:d7:d9:55:84:48:db:88:5d:56:0e:cf:de:d5:82:1c:
        04:46:39:90:bf:3e:bb:f6:66:dc:0b:f3:dc:32:10:af:
        a7:e0:a2:f9:0e:13:7b:ac:20:d1:97:84:89:a9:16:05:
        39:bd:7e:9c:40:c5:62:dc:92:11:b5:e2:88:d4:ef:f0:
        04:e0:7d:d0:c1:cc:28:92:ac:43:67:8d:24:21:bc:a1:
        65:09:55:d2:41:d2:74:cf:6a:88:43:ec:08:97:86:46
    Fingerprint (SHA-256):
        C0:B4:48:DF:DB:A0:0A:E6:9E:3C:C1:77:E0:9C:E5:BA:5B:BD:69:3D:25:A6:8E:6A:CE:FD:D9:33:51:A4:CB:60
    Fingerprint (SHA1):
        CA:9F:BF:D7:AC:C6:7D:A2:B4:85:69:65:83:07:15:A2:E9:78:D8:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3701: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3702: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3703: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120438 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3705: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3707: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510120439   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510120440   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3715: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510120441   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3719: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510120442   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3723: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510120443   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510120444   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510120445   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510120446   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3739: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510120447   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3743: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510120448   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3747: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510120449   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3751: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510120450   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3752: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3753: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3754: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3755: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510120451   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3756: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3757: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3758: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3759: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510120452   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3760: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3761: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3762: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3763: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510120453   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3764: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3765: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3766: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3767: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510120454   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3768: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3769: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3770: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3771: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510120455   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3772: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3773: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3774: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3775: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510120456   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3776: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3777: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3778: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3779: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510120457   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3780: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3782: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510120458   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3786: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3787: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510120459   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3790: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510120460   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3794: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510120461   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3798: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510120462   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3802: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3803: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510120463   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3804: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3805: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3806: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3807: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510120464   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3808: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3809: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3810: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3811: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510120465   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3812: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3813: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3814: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510120466   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3816: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3817: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3818: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3819: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510120467   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3820: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3821: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3822: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3823: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3824: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3825: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3826: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3827: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3828: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3832: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3833: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3835: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3836: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3837: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3838: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3839: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3840: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3841: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3842: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3843: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3844: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120438 (0x1e67d1f6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:06:00 2017
            Not After : Tue May 10 12:06:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:2a:a6:27:01:69:f7:01:c9:5b:5e:6d:7f:58:c9:2c:
                    f7:f6:df:5d:f2:2b:91:de:5e:66:ac:b2:a5:65:0c:d3:
                    41:40:25:bf:0f:ed:8f:78:27:f3:c9:db:d4:18:c6:d8:
                    a2:19:30:19:7c:d3:44:79:a9:76:bf:40:72:9f:15:31:
                    56:94:91:01:23:32:93:05:72:e9:af:44:5e:f0:ae:99:
                    bb:9f:92:cb:ca:41:6b:64:d4:2f:4d:5d:6a:c8:fd:f2:
                    74:66:bb:f6:b6:3d:a1:f7:5e:7a:73:43:0c:35:0a:b4:
                    c3:3a:62:95:2d:71:31:ef:69:56:71:ba:16:25:9d:58:
                    67:f9:69:44:e4:a5:cf:15:30:a4:bb:95:b5:09:46:99:
                    5b:f6:7f:69:dd:64:3a:ce:5e:1d:31:f0:a6:8a:9d:e8:
                    8d:fb:61:c9:2b:21:07:e9:f4:bd:8f:4b:59:b1:ae:74:
                    61:c2:b4:15:65:6e:7e:f1:39:94:70:99:e2:ca:6b:a1:
                    34:36:3a:54:8b:32:c0:97:1a:44:6f:6c:f9:1f:38:e0:
                    1b:fa:1b:e4:ba:d3:2c:46:9d:68:26:2c:a0:11:7c:22:
                    e9:9d:85:63:34:52:22:6c:b8:6f:0e:1d:b2:49:6d:cd:
                    e6:86:86:59:ad:1e:22:b5:ed:ae:1f:b8:ef:a3:aa:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:b7:94:bf:9c:ce:ce:4e:4a:0c:a3:9c:b1:04:4f:26:
        6c:03:7e:0c:a4:44:52:2c:39:2b:ba:82:0d:3a:63:bb:
        7e:ef:5c:73:62:73:61:ad:89:ed:d3:11:08:f9:68:98:
        5a:6b:ac:ff:7d:4b:d9:6b:08:e9:4b:bc:0d:f3:6f:b6:
        ce:d4:00:d9:cc:5a:78:16:3d:94:7d:5d:18:8e:81:e7:
        cf:25:75:18:62:72:3d:2b:a6:ac:f4:fb:09:ba:57:12:
        2b:fe:4f:e3:ab:40:77:a6:0b:48:90:ef:1f:71:c2:00:
        cc:97:57:c2:ee:7d:c7:50:15:4b:e4:f4:94:4e:fc:53:
        f6:c2:8e:9a:e3:4a:a9:4c:85:f0:b6:f0:88:03:d8:b7:
        57:81:a8:5a:61:fb:2f:9c:c9:c6:6f:b4:28:38:58:c0:
        1a:09:d8:ac:30:0a:f7:6d:9a:dc:56:5e:ff:4c:32:56:
        b4:26:6c:b6:a6:85:ad:09:5b:6d:2a:da:c6:06:4d:ac:
        20:d6:11:2f:f6:2c:95:a0:27:e4:46:93:4c:bb:2a:19:
        52:7c:fa:46:f4:9f:cf:3a:90:ee:2d:42:08:7f:2d:6d:
        5e:ee:6f:54:33:d4:39:2a:27:0f:8b:2e:57:f5:4d:c9:
        7a:61:f3:b0:ef:ec:8d:98:49:7e:92:9e:c4:04:02:8c
    Fingerprint (SHA-256):
        46:B7:7D:92:91:6C:83:03:24:A8:A6:C7:73:8D:A5:79:B8:54:27:63:C6:18:59:78:0E:E5:9A:34:60:E0:E0:9F
    Fingerprint (SHA1):
        6B:EF:BC:E5:42:DE:73:E8:2A:7E:48:04:82:57:12:78:F2:F2:06:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3845: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3846: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3847: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120468 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3848: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3849: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3850: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3851: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510120469   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3852: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3854: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3855: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510120470   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3856: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3857: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3858: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3859: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510120471   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3860: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3861: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3862: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3863: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510120472   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3864: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3865: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3866: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3867: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510120473   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3868: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3869: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3870: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3871: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510120474   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3872: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3873: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3874: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120468 (0x1e67d214)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:28 2017
            Not After : Tue May 10 12:06:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c6:0f:3e:3a:7d:0f:53:d6:34:7d:53:8e:22:86:14:
                    d5:d1:4c:3a:93:bc:12:38:f2:3e:e5:17:13:43:3b:6d:
                    00:e4:fd:5d:28:e8:aa:58:14:c5:a6:ce:7c:46:1e:84:
                    99:15:b1:bb:58:58:83:99:0e:12:be:6b:50:41:5b:4f:
                    a4:dc:09:1c:a1:39:0d:ca:e0:d5:e5:09:d7:71:95:87:
                    cc:e7:24:b8:f3:3c:e4:a6:4d:09:c3:c5:f9:fc:b3:29:
                    51:67:45:2d:ba:9d:4c:15:99:9d:4b:ef:0e:43:ae:b0:
                    c3:6a:81:a0:33:ae:46:c3:ca:2c:16:f1:c5:7e:75:fa:
                    09:e8:f7:99:01:d5:19:4b:1a:85:c3:de:0c:32:61:4f:
                    a2:e3:42:40:89:07:6e:f4:dc:1b:41:50:6c:bb:d6:55:
                    68:71:30:dc:57:55:43:26:a2:2c:60:3a:95:19:ce:ce:
                    06:66:0f:46:a9:8f:33:44:f9:ad:47:09:8d:9a:be:36:
                    9e:7d:cf:77:e8:a3:42:65:61:7f:8e:fa:2c:4c:6d:4d:
                    23:88:15:f7:ef:ca:df:78:47:a7:a1:9f:92:fd:ec:d3:
                    d7:8e:f7:f6:93:55:d1:0e:d3:03:26:97:81:d1:3c:4c:
                    58:af:fe:2e:23:29:08:4d:3f:d8:81:87:ee:d2:14:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:d2:ed:3b:56:fb:a0:dd:09:7a:1e:c9:bb:39:09:7a:
        3e:c8:46:fe:4b:de:3d:65:cc:89:1d:1b:df:19:9c:d2:
        2d:dc:d2:03:34:5a:ec:33:cc:7f:4a:9c:b6:7a:67:93:
        5b:52:5c:2c:83:b9:bc:d7:01:2f:38:a7:e7:b8:97:21:
        84:a8:7a:94:bd:cd:d3:d7:bf:3e:94:36:20:db:45:5e:
        0e:98:4b:42:9d:84:08:4c:6d:6a:ec:99:9f:ba:fe:84:
        33:76:db:c0:05:ba:0b:e6:a2:93:00:b1:c9:d6:f5:eb:
        a8:4a:52:ef:7a:13:30:3f:a4:ae:1d:b3:96:e3:25:ef:
        eb:bd:6e:b9:e7:ac:72:47:94:44:dd:bb:77:bb:d4:4c:
        09:5f:fb:25:2c:29:2c:b8:3e:c5:72:d9:d8:4c:ee:e4:
        78:87:fc:56:3d:a5:b3:31:d0:9a:62:31:56:09:e9:50:
        28:41:dc:df:9d:ea:76:44:f8:ee:12:19:83:41:5b:4e:
        9e:28:00:b3:6c:c6:8a:c8:99:2f:e5:dc:60:d4:3d:8e:
        ce:ad:a1:49:c1:e1:f0:ec:5e:60:40:87:ca:1f:30:21:
        16:e4:bd:06:dd:cb:c8:53:65:42:95:fe:68:49:f3:e5:
        01:87:94:d9:ce:e4:3c:92:82:fb:04:f8:a2:38:63:0f
    Fingerprint (SHA-256):
        CF:E0:2E:CA:DD:76:C8:AA:A5:34:9C:5C:6B:DC:EE:FC:C4:07:FD:85:58:1F:B0:A2:E7:A2:FA:34:90:53:B2:8C
    Fingerprint (SHA1):
        65:64:AF:59:45:6B:FD:96:EA:0C:6F:F9:FA:DD:8C:BC:83:1F:C6:F8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3875: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3876: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3877: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3878: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120468 (0x1e67d214)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:28 2017
            Not After : Tue May 10 12:06:28 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c6:0f:3e:3a:7d:0f:53:d6:34:7d:53:8e:22:86:14:
                    d5:d1:4c:3a:93:bc:12:38:f2:3e:e5:17:13:43:3b:6d:
                    00:e4:fd:5d:28:e8:aa:58:14:c5:a6:ce:7c:46:1e:84:
                    99:15:b1:bb:58:58:83:99:0e:12:be:6b:50:41:5b:4f:
                    a4:dc:09:1c:a1:39:0d:ca:e0:d5:e5:09:d7:71:95:87:
                    cc:e7:24:b8:f3:3c:e4:a6:4d:09:c3:c5:f9:fc:b3:29:
                    51:67:45:2d:ba:9d:4c:15:99:9d:4b:ef:0e:43:ae:b0:
                    c3:6a:81:a0:33:ae:46:c3:ca:2c:16:f1:c5:7e:75:fa:
                    09:e8:f7:99:01:d5:19:4b:1a:85:c3:de:0c:32:61:4f:
                    a2:e3:42:40:89:07:6e:f4:dc:1b:41:50:6c:bb:d6:55:
                    68:71:30:dc:57:55:43:26:a2:2c:60:3a:95:19:ce:ce:
                    06:66:0f:46:a9:8f:33:44:f9:ad:47:09:8d:9a:be:36:
                    9e:7d:cf:77:e8:a3:42:65:61:7f:8e:fa:2c:4c:6d:4d:
                    23:88:15:f7:ef:ca:df:78:47:a7:a1:9f:92:fd:ec:d3:
                    d7:8e:f7:f6:93:55:d1:0e:d3:03:26:97:81:d1:3c:4c:
                    58:af:fe:2e:23:29:08:4d:3f:d8:81:87:ee:d2:14:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:d2:ed:3b:56:fb:a0:dd:09:7a:1e:c9:bb:39:09:7a:
        3e:c8:46:fe:4b:de:3d:65:cc:89:1d:1b:df:19:9c:d2:
        2d:dc:d2:03:34:5a:ec:33:cc:7f:4a:9c:b6:7a:67:93:
        5b:52:5c:2c:83:b9:bc:d7:01:2f:38:a7:e7:b8:97:21:
        84:a8:7a:94:bd:cd:d3:d7:bf:3e:94:36:20:db:45:5e:
        0e:98:4b:42:9d:84:08:4c:6d:6a:ec:99:9f:ba:fe:84:
        33:76:db:c0:05:ba:0b:e6:a2:93:00:b1:c9:d6:f5:eb:
        a8:4a:52:ef:7a:13:30:3f:a4:ae:1d:b3:96:e3:25:ef:
        eb:bd:6e:b9:e7:ac:72:47:94:44:dd:bb:77:bb:d4:4c:
        09:5f:fb:25:2c:29:2c:b8:3e:c5:72:d9:d8:4c:ee:e4:
        78:87:fc:56:3d:a5:b3:31:d0:9a:62:31:56:09:e9:50:
        28:41:dc:df:9d:ea:76:44:f8:ee:12:19:83:41:5b:4e:
        9e:28:00:b3:6c:c6:8a:c8:99:2f:e5:dc:60:d4:3d:8e:
        ce:ad:a1:49:c1:e1:f0:ec:5e:60:40:87:ca:1f:30:21:
        16:e4:bd:06:dd:cb:c8:53:65:42:95:fe:68:49:f3:e5:
        01:87:94:d9:ce:e4:3c:92:82:fb:04:f8:a2:38:63:0f
    Fingerprint (SHA-256):
        CF:E0:2E:CA:DD:76:C8:AA:A5:34:9C:5C:6B:DC:EE:FC:C4:07:FD:85:58:1F:B0:A2:E7:A2:FA:34:90:53:B2:8C
    Fingerprint (SHA1):
        65:64:AF:59:45:6B:FD:96:EA:0C:6F:F9:FA:DD:8C:BC:83:1F:C6:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3879: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3880: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3881: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3882: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120475 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3884: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3885: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3886: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120476   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3887: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3888: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3889: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3890: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120477   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3891: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3892: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3893: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3894: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510120478   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3895: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3896: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3897: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3898: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3899: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3900: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120475 (0x1e67d21b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:33 2017
            Not After : Tue May 10 12:06:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:ae:0d:a3:fb:a9:a7:cd:21:4b:02:68:9d:a5:83:af:
                    b4:7b:1d:52:a7:97:06:2a:88:3a:9c:8f:ba:10:e2:6c:
                    a1:d7:13:fc:e9:37:93:4d:a2:97:4a:e9:03:5d:a4:f5:
                    a8:7e:73:1a:7f:53:31:7c:19:4b:aa:12:99:5e:80:e0:
                    3b:47:b6:4f:c2:58:76:b6:0d:1e:46:47:88:2a:81:45:
                    d2:96:37:b7:bc:49:5f:de:60:4d:96:6e:e9:81:46:53:
                    0d:7f:ae:ec:44:96:93:38:02:45:f2:28:42:68:b9:b4:
                    c2:64:18:26:af:82:13:75:54:b7:35:3e:29:43:0b:f5:
                    a4:44:2a:6b:3d:b5:06:2c:20:c3:05:bf:75:c3:00:f9:
                    41:d8:30:3d:25:38:85:2a:8d:00:b0:c4:ff:7c:90:46:
                    3b:58:09:f5:32:92:95:ef:c2:fc:eb:2a:0e:68:f8:3c:
                    dd:dc:27:67:bc:41:2a:ec:37:3d:67:61:0f:1b:c2:7a:
                    aa:49:63:09:55:23:2f:cb:e2:41:00:25:5a:da:a8:8a:
                    1d:0e:2e:62:3d:b3:9e:d5:40:fb:86:89:a6:76:b6:e3:
                    bd:41:ab:61:c6:b7:01:93:af:e9:f0:c1:57:d6:b0:d0:
                    e3:25:1d:f8:fe:70:bc:a1:52:c4:5b:6f:b5:a1:89:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:bb:48:a5:8a:97:0c:0e:86:6f:24:7d:9b:d7:fd:47:
        1e:51:0a:de:4c:41:97:91:c2:23:82:ba:cf:e4:39:f3:
        7b:19:8c:8d:e2:d3:7b:87:39:fd:12:0a:54:a9:98:97:
        32:01:91:c0:fd:f9:38:68:d1:79:82:64:b9:82:34:a8:
        2b:bd:9d:18:77:c2:c6:01:e0:af:d3:23:e4:2e:3a:3f:
        bd:51:2a:3f:c0:09:a2:ec:9d:03:ab:30:56:8e:dc:2f:
        21:0f:23:33:9a:28:3c:f7:fa:38:3b:50:8c:ae:c6:fe:
        6d:dd:6a:e9:5e:54:66:bd:2d:e0:a1:80:02:7e:22:d5:
        c6:c0:92:f3:3f:8a:29:3d:b7:03:b2:59:13:0e:d2:ff:
        26:b4:25:22:91:89:4b:0c:3b:a4:7d:ba:c8:f4:da:2f:
        6a:7e:d9:c3:ed:5e:8a:a1:37:c3:98:a0:00:5a:96:a2:
        02:6d:27:34:8e:e6:8b:9c:b7:c9:d6:1c:8c:c1:c0:cd:
        fa:8e:72:ee:e5:f7:0f:f5:95:4b:9d:05:70:ea:06:26:
        86:4b:72:8c:3a:b0:aa:54:2e:f9:d8:f1:c4:39:58:9b:
        30:6c:dc:42:01:31:26:a7:6e:08:fd:72:8e:15:80:8e:
        a4:1e:a9:00:67:2c:e4:9b:02:c6:cc:c3:8e:e3:b5:63
    Fingerprint (SHA-256):
        EE:B2:08:99:6D:93:81:5C:A5:6D:26:82:42:57:04:19:66:EC:0C:EC:29:67:AD:9E:BB:BE:F0:78:CF:C0:1D:9D
    Fingerprint (SHA1):
        E4:9C:0C:0D:45:A3:D3:02:A8:39:2A:B5:8F:FA:A7:F4:20:2B:9B:51
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3901: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3902: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3903: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120476 (0x1e67d21c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:35 2017
            Not After : Tue May 10 12:06:35 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:a9:fa:b7:e1:37:70:52:04:8f:65:ba:73:4d:51:aa:
                    00:93:a8:31:7e:8e:08:57:ce:d3:fb:a9:d7:27:9c:2d:
                    25:ed:ee:01:02:fb:3d:91:e3:b8:9f:ff:eb:7a:be:61:
                    71:ad:19:c8:bc:88:44:04:fe:a8:7f:63:23:40:21:50:
                    d6:80:a9:e4:af:7e:e8:3e:49:16:b3:93:4a:b5:2d:1a:
                    66:7e:a8:86:36:87:54:d2:76:b0:e8:e6:e2:05:68:dd:
                    7c:f2:3c:0c:58:35:b2:5d:92:8f:a8:16:bd:a1:e7:f0:
                    1b:30:64:d7:6f:af:58:8e:10:70:b1:0b:e4:d9:93:5d:
                    86:18:21:4a:13:b2:b8:c9:14:a1:b1:38:ee:4b:59:bf:
                    ae:7a:bb:8e:ef:c7:03:c5:de:18:7d:49:ed:68:57:7f:
                    9b:90:d9:73:62:04:3d:42:c8:2c:a0:32:7f:ca:fe:a4:
                    31:f0:67:9a:c0:a2:cb:f0:8b:d0:c5:8e:4b:d0:81:6a:
                    bd:7d:5d:b2:34:e2:32:7c:17:8f:f3:9c:fa:a2:81:a9:
                    02:2c:42:e5:5f:01:1e:0f:98:d4:a1:cc:87:56:40:ab:
                    02:64:42:94:15:56:97:bf:d5:79:44:f4:19:6e:a3:ec:
                    21:9c:66:32:fe:a9:ce:c2:2e:57:0b:45:88:e4:68:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:3a:ef:22:5f:7f:26:ee:f4:b9:2d:d6:55:04:5d:88:
        7c:79:18:84:eb:42:c4:d4:eb:de:a2:2f:a6:ef:41:40:
        31:16:2f:96:10:a2:46:c1:8a:a9:8e:2c:3f:09:8e:ba:
        dc:62:b6:b1:af:0d:08:8a:79:72:34:27:e7:67:b8:2a:
        a8:8f:94:2f:8d:5c:37:ad:2c:d0:c7:ec:09:dd:80:a4:
        b1:94:86:0b:67:20:9e:53:c5:48:9d:39:0f:11:50:99:
        55:fe:5d:7a:5f:9a:5d:5c:0b:47:f0:45:b7:64:bd:3b:
        ef:6b:98:94:b7:28:f2:54:47:c0:54:81:61:eb:3c:8d:
        54:e8:eb:54:63:b2:34:e9:7b:cf:fd:ca:7a:ac:ae:d3:
        c8:78:bf:0c:18:cc:66:31:d8:41:9d:c8:c6:fd:07:ca:
        b3:34:d7:9c:3d:9d:eb:53:2f:43:c6:0e:d6:b0:d2:b5:
        b6:95:1a:94:99:15:1e:9b:cb:b8:d4:b3:a8:ee:3f:d6:
        68:26:9d:b3:26:3c:13:6a:a5:9a:df:3f:02:03:77:cf:
        92:a4:b9:8b:67:32:12:67:16:18:51:aa:19:da:52:05:
        ee:48:30:10:0b:9e:7c:0a:01:f4:1d:a4:5f:05:d8:75:
        3b:59:cb:d6:6f:25:e1:1e:11:6e:a1:97:a4:4a:74:ca
    Fingerprint (SHA-256):
        B9:CF:86:6E:D2:F9:C7:7C:E3:C8:3F:5D:C9:F6:C0:80:9D:F2:87:80:9B:B0:33:A9:9F:99:66:92:D9:1A:5A:E8
    Fingerprint (SHA1):
        C9:58:70:21:21:EC:3C:2D:14:3B:F9:82:7A:80:F8:A9:87:84:45:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3904: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3905: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120477 (0x1e67d21d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:06:35 2017
            Not After : Tue May 10 12:06:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:d0:67:21:09:f4:14:80:15:ef:d7:ad:22:82:69:34:
                    64:6e:8d:ba:f3:9f:19:f4:b8:33:e4:1c:46:2d:6a:1b:
                    85:e0:d6:19:5f:ba:6b:cb:d5:00:20:cc:0c:a7:27:2a:
                    84:1d:71:11:23:31:e9:f4:da:48:cc:62:88:6b:a5:dc:
                    6b:e7:7e:d1:fc:9f:89:71:30:d4:8f:02:d9:e6:70:f2:
                    dd:94:54:da:90:03:e5:c9:a5:94:42:1d:b2:29:14:a8:
                    d5:1d:86:4b:a6:dc:5f:3f:cd:05:11:aa:2c:0a:83:0e:
                    c3:b7:8a:3e:cc:ca:1b:96:14:3a:ba:5c:d8:fb:1e:75:
                    f4:49:a6:1c:02:3a:ac:d3:b8:62:10:35:36:ae:2f:1a:
                    79:88:5e:a2:be:00:e8:c9:4d:a3:99:2a:ab:fe:23:03:
                    35:16:f0:e9:0e:b6:3c:60:f6:23:d9:c5:bc:1f:ef:05:
                    b3:ce:e2:17:bf:90:d0:06:b0:cf:f8:72:89:f2:08:7e:
                    9d:55:08:58:d1:f1:51:2e:12:bc:0f:8c:61:86:53:88:
                    63:42:ca:9b:25:1d:42:73:de:4b:31:93:4e:f6:30:1d:
                    a2:0d:6e:88:88:ff:b4:c1:55:3b:6c:a4:24:cb:2a:39:
                    fc:c4:a5:15:fe:bb:70:40:97:13:9b:7a:e5:10:ae:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:11:e9:0f:8a:f1:84:15:17:13:d6:27:c9:24:e3:7c:
        86:d5:cf:c5:ff:4c:6c:0c:bf:86:fe:1d:9b:ff:ed:9a:
        47:30:ef:b6:8a:d8:e9:38:5c:87:a2:ce:18:8b:57:71:
        39:d3:8f:06:2c:7c:cf:f3:ee:cf:6f:22:20:34:c9:7a:
        74:2a:92:c8:2e:b2:9d:a9:80:08:60:0c:05:cb:75:3c:
        a9:04:83:78:38:e4:e5:4f:e2:ae:5a:14:39:3b:af:48:
        54:b9:f8:b7:a5:14:95:3b:b1:ff:7e:ae:11:49:bb:cc:
        f9:5b:c3:ff:29:13:52:a9:47:95:36:ca:22:d7:57:e2:
        90:75:b7:3b:e9:5b:02:54:b4:79:79:99:9d:6a:fd:70:
        c0:97:91:7f:1a:61:c1:64:2a:1d:fe:36:2a:b3:cb:f3:
        30:41:51:bf:a7:21:db:f6:f5:c2:55:4a:9b:0e:54:74:
        39:70:1b:8a:bd:95:c7:fe:97:bc:ef:9a:41:9d:a3:48:
        8c:ef:5a:37:06:78:b5:14:3e:05:8a:57:5b:8c:a1:d3:
        cf:bf:28:f9:16:c2:21:2a:7f:38:66:74:80:72:73:e9:
        03:48:ed:18:e5:cc:bd:e3:02:c8:de:cb:d3:33:25:ed:
        b3:84:f6:80:fb:91:4f:9d:00:a2:a5:6c:9a:3d:d2:e9
    Fingerprint (SHA-256):
        18:A9:E2:99:42:95:2A:77:68:4D:97:0C:D3:4F:81:7E:02:ED:F8:1C:7F:37:1C:15:94:56:0A:C8:B3:C3:22:F1
    Fingerprint (SHA1):
        35:39:60:80:E7:8E:4B:98:B0:E2:1A:1A:97:A9:FA:F9:AA:8F:DB:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3907: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120479 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3909: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3910: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3911: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120480   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3912: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3913: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3914: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3915: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120481   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3916: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3917: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3918: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3919: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510120482   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3920: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3921: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3922: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3923: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510120483   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3924: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3925: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3926: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3927: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3928: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3929: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3930: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120479 (0x1e67d21f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:38 2017
            Not After : Tue May 10 12:06:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:93:b8:bf:58:60:3a:f6:cb:71:94:80:ed:76:6f:5a:
                    a8:4b:0b:16:b5:72:35:9c:4d:0e:66:e4:ac:ad:15:bd:
                    7b:45:e3:db:d5:60:96:7f:e1:2d:c2:06:fd:ec:58:62:
                    54:49:9f:f3:79:67:40:fe:ba:dc:0c:da:79:ff:61:a6:
                    eb:d6:2b:71:df:ea:9b:c1:d1:17:ff:16:51:50:c2:b4:
                    3b:0f:68:d2:68:89:56:b3:09:4f:be:d8:53:59:93:9b:
                    4e:89:8f:1c:88:69:98:5e:df:f6:62:cf:ac:20:bd:0a:
                    b1:0d:33:ae:e1:7b:76:1b:d6:5d:d9:6a:a6:c7:49:35:
                    8f:a4:89:65:ca:44:16:a2:00:4c:a2:c5:48:52:d2:f1:
                    a3:1a:6a:62:e6:b2:7f:f1:9b:1a:e9:cf:9d:87:6e:11:
                    0a:34:6d:e4:dd:8d:00:33:d2:86:db:04:e8:75:e5:b2:
                    e1:b1:e7:8d:75:82:8d:bb:fd:3d:7b:24:11:89:6d:03:
                    a1:70:ee:f5:8a:57:1f:61:bb:e2:a3:15:3e:52:4a:b4:
                    1b:bf:d5:4f:8f:c6:19:fe:4c:12:33:f2:f8:ee:01:09:
                    67:d1:cf:25:d0:3d:df:09:ec:8e:97:c3:cc:bc:83:36:
                    72:0e:a3:86:e7:4b:57:50:c1:23:96:7c:c6:b4:f8:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:8f:16:8d:a2:ad:b2:40:cb:2c:7a:ac:c0:c8:34:bd:
        7b:33:2d:da:0f:84:77:68:40:ff:a0:6b:bd:42:05:c4:
        fd:35:d7:3b:d2:59:f2:fd:39:7b:69:e0:0a:f3:4e:cb:
        2f:4c:ed:b5:bd:91:dc:f2:7d:e3:c6:ec:25:42:a8:99:
        d3:a0:02:97:41:18:16:31:41:24:9d:ff:34:f4:df:9d:
        ba:22:9c:88:7f:7c:f0:02:05:ac:79:47:50:9c:2e:e1:
        5a:77:29:9f:e6:37:47:7b:fe:5a:f5:80:cc:98:fb:1e:
        18:b5:9d:58:c6:fd:a3:4c:23:52:b6:17:fd:a9:45:a2:
        21:4b:60:94:91:e1:61:8d:bb:0b:9d:11:23:0c:4b:2a:
        d4:83:ff:4a:a6:8d:ea:86:f5:f7:d1:be:51:31:f1:fc:
        c3:58:bd:bd:37:c8:2b:f9:0e:d4:a5:27:a5:3c:b1:83:
        cd:38:d2:3d:a9:0f:3d:30:f7:5d:93:6c:5b:2e:37:89:
        f2:1e:30:c3:fa:bf:dc:5e:6a:0f:40:61:d2:b9:4a:62:
        19:74:0b:b0:3b:c5:e8:e2:b7:81:77:36:eb:20:60:21:
        32:d6:ba:dc:cd:07:44:db:7b:c0:46:a6:92:d9:58:63:
        d2:60:51:ff:f8:88:b1:a2:2b:25:85:b9:80:f8:a9:80
    Fingerprint (SHA-256):
        48:5F:8B:7A:D3:A5:73:F9:1B:8D:05:65:5D:04:2B:4B:86:03:E5:9A:7A:5A:C7:AB:D8:BF:7B:C9:34:8A:60:86
    Fingerprint (SHA1):
        57:B0:0A:36:1C:7F:B9:A5:44:4A:CE:15:2F:31:E0:45:76:EE:8E:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3931: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3932: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120480 (0x1e67d220)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:38 2017
            Not After : Tue May 10 12:06:38 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:5c:eb:c7:3d:22:33:ad:51:eb:72:9f:9b:ad:f7:e9:
                    b8:69:c4:3e:83:4b:7d:01:19:2d:77:77:7a:a3:52:36:
                    60:3d:de:40:f8:25:de:70:92:ae:de:8b:75:de:d0:0d:
                    a9:5b:6b:eb:2b:ee:6f:f2:f3:bf:df:cd:98:79:38:a1:
                    97:d3:02:bb:95:a5:fe:bc:00:e2:ae:61:f9:9c:7a:ec:
                    90:4d:39:0f:b9:35:79:8d:ab:44:70:1b:76:87:8c:73:
                    58:80:bb:10:14:8c:6a:4d:df:b3:61:e3:bf:27:e1:de:
                    98:88:bf:d7:0f:23:fe:8d:d9:d3:70:51:f7:ac:8f:26:
                    c3:c1:4e:84:ec:6e:b3:26:c0:72:d8:7f:19:de:da:ac:
                    12:ff:f8:f0:74:76:5e:7b:11:be:00:5e:95:04:a1:5a:
                    af:17:87:06:5a:0a:2a:89:18:ff:a8:48:0b:db:30:a7:
                    90:4a:1f:5a:d4:c7:89:b2:01:93:07:05:c3:68:a1:6c:
                    e4:97:55:92:c8:d8:37:53:a6:54:81:bb:88:a5:3c:44:
                    10:86:f7:81:e3:10:8f:f2:f4:b7:11:51:34:6d:29:76:
                    b1:f5:37:9c:f2:e3:6a:60:ba:09:91:59:a1:0a:2d:f6:
                    6b:86:9b:e7:14:d4:e4:9b:4f:5f:f0:ab:4e:af:6b:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:45:d6:34:94:d7:57:9f:bc:75:f6:45:24:78:d5:0a:
        a9:2f:81:aa:aa:8a:17:56:16:61:94:31:bd:86:b6:fd:
        c2:2e:c9:1d:22:e9:db:f5:fc:02:eb:1f:d5:49:82:bc:
        22:46:10:c9:2a:cf:45:72:ba:b2:05:4d:ed:20:76:a0:
        55:52:70:43:7d:f1:c2:cb:f3:b5:ea:88:d3:4a:76:14:
        be:03:98:fa:44:2a:e1:b1:63:6e:01:83:29:14:51:74:
        96:28:50:f3:7d:3c:d5:26:72:ce:ad:60:b3:54:6a:09:
        46:44:a5:87:f2:79:e6:b1:d0:cb:ba:5c:cc:de:61:35:
        8f:66:3d:d0:c5:f2:cb:b2:fb:2e:c2:8e:20:d8:00:55:
        0c:2a:a3:48:0a:d0:1d:27:a2:a7:17:46:0c:11:05:ce:
        bc:bb:7c:93:bb:9a:ce:e8:9b:30:6f:f8:cc:c9:23:34:
        6f:7a:0d:20:8d:6a:0b:fc:7d:91:8c:03:bc:01:de:ee:
        3a:92:8f:57:96:dc:7f:3b:17:12:44:a9:50:47:ba:97:
        66:21:9b:a5:15:ce:e5:eb:ed:d5:72:eb:ae:01:c4:44:
        2a:63:3a:5f:07:31:8e:59:2d:15:a1:5a:33:61:7c:f1:
        8e:21:ec:47:c5:22:38:88:77:bd:50:44:b6:fd:3f:30
    Fingerprint (SHA-256):
        1C:53:DA:98:98:C4:C4:F4:FC:CD:A8:E4:F0:F8:38:E3:40:48:7B:BF:4A:D2:43:67:7B:9C:7E:8E:C0:E5:FD:35
    Fingerprint (SHA1):
        43:61:D3:13:97:B7:DF:89:8D:62:FB:8D:A2:78:22:CC:40:D9:04:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3933: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3934: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3935: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120481 (0x1e67d221)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:06:39 2017
            Not After : Tue May 10 12:06:39 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:51:6e:56:34:d4:c0:cd:27:14:bc:ab:9f:78:8b:58:
                    db:a6:2c:11:5d:88:3e:f1:e3:8e:7a:5a:c9:fc:54:12:
                    c4:80:b9:c9:a8:a1:e5:0d:dd:70:64:d7:1b:79:f5:32:
                    99:df:89:bd:93:90:5c:74:ae:8c:7a:25:64:39:97:bc:
                    78:e4:c2:5b:9e:6b:39:84:01:71:d2:df:48:8a:af:4a:
                    68:f4:49:9e:c6:57:57:d6:2d:5e:ca:12:11:7f:c9:a0:
                    c9:0b:eb:f3:9a:3a:d8:95:3f:31:22:5c:43:a5:f3:48:
                    93:fa:01:af:02:b1:86:11:dc:41:37:2c:2d:1e:99:f7:
                    6c:7c:38:01:71:81:43:2c:2a:1c:c8:c5:6b:01:90:b2:
                    15:d8:55:d8:1a:5c:02:74:bf:38:73:28:e9:06:ab:38:
                    1a:6c:42:5c:e3:21:71:46:3b:1f:f8:9d:7f:07:09:74:
                    11:77:d1:f5:7d:90:97:e0:ed:84:25:56:58:b2:5a:20:
                    8d:dd:3f:e5:0f:43:fc:0f:af:2d:c4:86:b7:7b:b8:23:
                    9a:aa:43:8f:d7:83:a8:c6:a5:7d:e2:c6:31:2f:35:02:
                    79:39:83:0f:cc:1e:db:34:8d:39:07:81:db:db:29:20:
                    ae:5e:b5:84:f4:fd:cd:07:e5:af:4b:45:05:31:e7:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:2b:0b:ad:c2:29:88:83:0b:05:13:5a:41:1d:2b:e5:
        81:2b:7d:13:52:43:ed:be:a4:d7:cf:37:77:eb:85:f1:
        52:01:be:07:d6:92:70:4d:de:5f:93:cd:6f:e3:e0:08:
        b4:d2:ed:04:9d:63:65:84:56:a7:c9:46:10:e3:e3:f1:
        a5:67:1e:19:06:6a:ad:eb:fb:de:ca:0a:a5:7a:5c:3d:
        d3:5a:51:93:99:28:cc:61:ef:4c:84:e9:e8:4e:a8:dd:
        35:05:67:fc:f2:ce:c1:a0:43:95:5c:8c:12:75:52:21:
        d4:09:38:df:8b:25:4b:7a:c4:75:74:3f:9d:03:e3:5c:
        41:69:82:eb:de:b3:b3:09:da:fb:f2:26:dd:0e:f0:62:
        a0:6f:75:e6:60:2c:7d:5d:3f:f9:c1:cc:81:8b:13:df:
        d8:21:1c:09:24:9d:61:e8:01:d2:3f:66:6f:cf:2d:fa:
        d8:13:a1:2d:3d:be:d9:53:45:80:6d:44:be:8e:59:8c:
        76:93:49:bf:a7:fb:02:88:97:40:60:fa:a8:30:23:c7:
        b5:f5:1e:c7:ef:18:28:f9:51:1a:d7:23:73:6c:59:a1:
        90:09:c3:1c:e3:d5:83:f5:5b:a6:c0:2b:76:67:9e:61:
        93:40:a3:75:cd:0e:3a:26:8b:bc:40:8f:c2:d0:6f:69
    Fingerprint (SHA-256):
        90:31:52:66:BF:75:89:8F:3E:7B:66:C9:E1:A1:14:FA:BB:05:71:F7:0C:47:43:21:E1:53:B9:E6:A8:EB:80:C3
    Fingerprint (SHA1):
        7F:9B:79:F7:D1:EA:61:12:9F:B4:5B:53:25:9C:FC:BD:87:AB:6C:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3936: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3937: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120484 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3938: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3939: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3940: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3941: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120485   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3942: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3943: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3944: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3945: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120486   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA1Root-510120263.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3946: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3947: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3948: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3949: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510120487   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3950: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3951: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3952: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120484 (0x1e67d224)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:06:41 2017
            Not After : Tue May 10 12:06:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:e8:a8:5b:b2:9f:c0:94:bf:c8:24:c7:8b:a3:ba:25:
                    c9:53:a0:eb:13:40:8b:2c:b1:ce:9c:3d:c5:e8:c0:ea:
                    ef:23:1b:4d:70:05:ab:78:a0:5f:05:4b:76:0d:0f:68:
                    7c:77:b2:2d:bf:e5:ff:93:d6:0b:a7:d4:af:ac:36:80:
                    52:7e:54:e8:33:c7:c2:53:49:6d:ab:de:53:d9:af:2a:
                    53:75:fe:15:40:fc:0b:09:1a:69:f3:e7:f0:ce:2a:25:
                    b7:74:4d:3e:61:f3:61:26:62:c6:19:8c:43:4d:89:de:
                    c2:fa:3f:ec:e9:59:e2:b4:b5:5e:e7:b9:b5:84:c2:fc:
                    e5:0c:b5:56:51:5e:73:c9:b9:7e:f2:aa:ac:1d:47:ef:
                    a3:0c:97:1c:30:10:91:c2:bf:0c:29:d2:aa:76:56:90:
                    67:ce:83:61:df:ff:29:6a:d5:46:b2:3b:05:f3:c4:91:
                    9d:e9:3f:b5:74:90:8c:fa:f2:6a:e3:4c:38:a2:ae:e2:
                    7a:7d:ba:ab:19:10:16:9a:a9:ef:c7:f7:18:d0:00:b1:
                    36:1d:19:59:9b:91:e7:4f:ee:d5:de:f3:3d:c7:90:af:
                    39:2f:f3:cd:0b:0d:99:83:60:57:5f:ff:f6:81:1b:8a:
                    d7:eb:f4:5f:7c:72:c8:73:93:de:81:c4:bd:68:80:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:60:74:f3:67:fe:08:83:a4:cb:1e:12:fc:67:7e:12:
        b1:b6:f3:1f:3c:bb:ef:28:c0:96:32:a6:5e:a8:b9:ad:
        c6:76:a4:9a:a4:f2:3c:0b:8d:63:a4:59:52:99:36:ea:
        d0:63:30:48:d3:71:79:13:0f:e3:b4:a9:cd:07:1a:d1:
        69:64:f3:bb:1f:7f:22:88:b5:c8:82:0f:78:7d:b4:a2:
        82:d7:b2:a8:5f:99:ac:28:8f:da:22:ee:d3:08:eb:8a:
        95:61:75:5c:75:7f:03:22:29:6b:7d:b9:77:1a:c4:93:
        69:b4:a9:a8:c8:b8:62:2f:bd:4f:1c:60:bd:c5:1e:cc:
        1d:05:91:77:fc:63:93:b3:dd:8d:41:78:b4:3f:f1:14:
        a4:29:82:de:e4:50:b2:19:e2:e7:8c:b9:cb:40:40:78:
        3e:08:a1:7e:4f:3e:53:f4:b1:35:74:53:f7:ba:98:f0:
        1d:a1:d8:c3:32:21:1e:93:68:cf:9e:13:fe:e3:b6:b3:
        d3:33:01:9f:1c:92:de:07:61:11:93:6e:bd:aa:7f:1f:
        c2:54:ba:d8:e7:47:1c:fc:f2:05:56:41:6b:1f:89:ff:
        3b:68:50:27:74:db:fa:0b:67:e6:dc:ab:68:01:24:84:
        cc:d9:95:95:43:fd:81:4d:e6:77:04:3b:cd:a8:e4:01
    Fingerprint (SHA-256):
        8A:11:8D:69:D1:90:FE:C8:EF:14:77:71:43:50:18:52:8A:9C:E5:AD:09:F4:53:7D:C1:BB:0E:D6:00:D8:BF:2D
    Fingerprint (SHA1):
        3E:16:E8:DB:75:00:39:08:1B:1E:E0:DC:2C:85:4C:5B:0C:80:4E:C3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3953: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3954: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120488 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3956: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3957: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120489 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3958: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3959: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3960: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3961: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510120490 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3962: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510120491 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3964: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3965: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3966: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3967: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3968: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510120492   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510120264.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3969: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3970: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3971: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3972: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120493   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3973: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3974: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3975: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3976: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120489 (0x1e67d229)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:44 2017
            Not After : Tue May 10 12:06:44 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:48:76:9c:f2:c0:28:d9:3e:e5:4e:99:c4:f3:df:17:
                    67:7d:3f:a4:a5:74:1f:f0:8f:7b:ca:bf:ed:a3:12:12:
                    39:f5:46:18:d9:2c:4d:82:7d:4c:15:0f:97:89:79:24:
                    0f:75:1c:90:82:c8:b2:6a:eb:dd:79:10:b7:74:f0:67:
                    45:47:7e:e4:ed:88:00:09:2d:c3:6a:38:5d:c9:7e:47:
                    32:da:30:7e:cb:48:23:14:a0:a6:3b:ef:0a:aa:16:25:
                    45:af:2f:51:c6:fd:c1:ea:9e:d3:bf:47:ef:ec:84:a0:
                    b0:49:93:d3:a9:44:29:26:a9:36:4d:3b:75:ca:02:7d:
                    8f:22:ce:19:4e:2c:90:53:9a:31:d8:40:10:e6:a3:04:
                    9e:a5:59:6c:24:ae:12:4e:64:d3:66:e1:f1:0c:52:93:
                    8a:7c:77:99:6c:81:af:05:68:50:97:1f:d1:da:c4:bc:
                    a9:86:00:35:70:07:1c:f1:24:c4:89:f6:de:ed:9f:72:
                    fb:ea:fd:d5:b4:54:7a:cb:10:14:64:99:e7:e5:b8:ac:
                    53:cf:5d:05:6f:e5:87:f8:0d:2b:32:e2:c4:45:99:62:
                    fa:bd:fa:e6:fd:3b:22:72:70:17:8d:c9:60:09:19:3d:
                    c2:c4:c9:83:a0:5a:64:7f:6a:81:3b:55:ec:41:8b:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:a0:d3:9c:d3:3d:31:e9:b9:b2:cc:9f:b9:13:8d:85:
        6d:ef:40:b7:01:ca:bf:fa:24:b6:94:a0:f5:1c:14:9b:
        55:fd:ae:1b:f6:6b:a3:6c:df:bd:bd:54:1a:aa:a7:57:
        eb:6f:f8:a7:30:3d:04:13:18:3c:98:7f:aa:25:96:d6:
        65:06:c1:b2:0c:fd:2b:93:4b:f7:bc:8e:c6:f3:8a:88:
        64:b8:20:be:5a:75:6c:27:d2:6d:2b:90:ff:d0:c5:d9:
        fb:80:57:7d:77:4a:ec:1c:b1:e8:dc:37:2c:e2:69:91:
        e6:72:ac:b1:6d:8b:dd:8d:d6:48:4d:d3:54:cc:52:6f:
        36:e0:89:fa:51:8e:61:42:1d:89:84:60:e5:ee:56:e2:
        3d:5e:ec:55:d8:3c:4a:b9:d8:cd:f3:c4:d5:d6:5c:b9:
        2a:66:3f:0f:54:41:16:41:8f:03:61:8a:86:db:f1:e6:
        55:ec:3a:be:35:19:a9:39:6e:ba:34:b2:2e:60:08:ac:
        33:a2:fb:a9:ba:c8:31:59:ff:f5:f6:58:a2:22:5a:99:
        59:3e:6c:bb:c5:f4:db:ff:26:e9:a7:61:60:38:e7:5e:
        32:8e:c9:d7:48:6a:13:9c:05:b6:6e:cd:cf:2c:39:78:
        ac:37:25:58:bb:0b:3c:ba:ad:ea:04:db:89:be:ac:72
    Fingerprint (SHA-256):
        3C:BD:D1:6C:FC:40:01:90:40:97:7C:1A:A5:E0:9C:AC:1B:DD:FB:1C:13:85:C3:E0:8B:80:3D:DB:4B:BF:5E:FC
    Fingerprint (SHA1):
        88:A7:C5:EF:D1:16:C2:0A:5A:D7:5F:59:7A:C7:95:F6:91:BB:61:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3977: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120489 (0x1e67d229)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:44 2017
            Not After : Tue May 10 12:06:44 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:48:76:9c:f2:c0:28:d9:3e:e5:4e:99:c4:f3:df:17:
                    67:7d:3f:a4:a5:74:1f:f0:8f:7b:ca:bf:ed:a3:12:12:
                    39:f5:46:18:d9:2c:4d:82:7d:4c:15:0f:97:89:79:24:
                    0f:75:1c:90:82:c8:b2:6a:eb:dd:79:10:b7:74:f0:67:
                    45:47:7e:e4:ed:88:00:09:2d:c3:6a:38:5d:c9:7e:47:
                    32:da:30:7e:cb:48:23:14:a0:a6:3b:ef:0a:aa:16:25:
                    45:af:2f:51:c6:fd:c1:ea:9e:d3:bf:47:ef:ec:84:a0:
                    b0:49:93:d3:a9:44:29:26:a9:36:4d:3b:75:ca:02:7d:
                    8f:22:ce:19:4e:2c:90:53:9a:31:d8:40:10:e6:a3:04:
                    9e:a5:59:6c:24:ae:12:4e:64:d3:66:e1:f1:0c:52:93:
                    8a:7c:77:99:6c:81:af:05:68:50:97:1f:d1:da:c4:bc:
                    a9:86:00:35:70:07:1c:f1:24:c4:89:f6:de:ed:9f:72:
                    fb:ea:fd:d5:b4:54:7a:cb:10:14:64:99:e7:e5:b8:ac:
                    53:cf:5d:05:6f:e5:87:f8:0d:2b:32:e2:c4:45:99:62:
                    fa:bd:fa:e6:fd:3b:22:72:70:17:8d:c9:60:09:19:3d:
                    c2:c4:c9:83:a0:5a:64:7f:6a:81:3b:55:ec:41:8b:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:a0:d3:9c:d3:3d:31:e9:b9:b2:cc:9f:b9:13:8d:85:
        6d:ef:40:b7:01:ca:bf:fa:24:b6:94:a0:f5:1c:14:9b:
        55:fd:ae:1b:f6:6b:a3:6c:df:bd:bd:54:1a:aa:a7:57:
        eb:6f:f8:a7:30:3d:04:13:18:3c:98:7f:aa:25:96:d6:
        65:06:c1:b2:0c:fd:2b:93:4b:f7:bc:8e:c6:f3:8a:88:
        64:b8:20:be:5a:75:6c:27:d2:6d:2b:90:ff:d0:c5:d9:
        fb:80:57:7d:77:4a:ec:1c:b1:e8:dc:37:2c:e2:69:91:
        e6:72:ac:b1:6d:8b:dd:8d:d6:48:4d:d3:54:cc:52:6f:
        36:e0:89:fa:51:8e:61:42:1d:89:84:60:e5:ee:56:e2:
        3d:5e:ec:55:d8:3c:4a:b9:d8:cd:f3:c4:d5:d6:5c:b9:
        2a:66:3f:0f:54:41:16:41:8f:03:61:8a:86:db:f1:e6:
        55:ec:3a:be:35:19:a9:39:6e:ba:34:b2:2e:60:08:ac:
        33:a2:fb:a9:ba:c8:31:59:ff:f5:f6:58:a2:22:5a:99:
        59:3e:6c:bb:c5:f4:db:ff:26:e9:a7:61:60:38:e7:5e:
        32:8e:c9:d7:48:6a:13:9c:05:b6:6e:cd:cf:2c:39:78:
        ac:37:25:58:bb:0b:3c:ba:ad:ea:04:db:89:be:ac:72
    Fingerprint (SHA-256):
        3C:BD:D1:6C:FC:40:01:90:40:97:7C:1A:A5:E0:9C:AC:1B:DD:FB:1C:13:85:C3:E0:8B:80:3D:DB:4B:BF:5E:FC
    Fingerprint (SHA1):
        88:A7:C5:EF:D1:16:C2:0A:5A:D7:5F:59:7A:C7:95:F6:91:BB:61:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3978: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3979: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120494 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3980: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3981: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3982: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120495 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3983: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3984: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3985: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3986: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510120496 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3987: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3988: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510120497 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3989: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3990: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3991: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3992: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3993: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510120498   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510120265.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3994: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3995: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3996: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3997: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120499   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3998: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3999: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4000: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4001: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510120500   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-BridgeNavy-510120266.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4002: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4003: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4004: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4005: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510120501   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4006: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4007: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #4008: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #4009: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120495 (0x1e67d22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:50 2017
            Not After : Tue May 10 12:06:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2d:f9:a1:a7:c2:1b:4c:10:a8:0f:f7:b4:e6:56:52:
                    87:dd:44:52:1a:e6:e4:78:fb:2a:0d:7f:33:1a:db:d3:
                    53:1b:cf:72:2d:15:24:ae:dc:a9:3d:0e:a9:e8:31:ca:
                    77:7a:41:17:b7:86:72:5d:a7:d8:f4:b5:69:94:bf:a4:
                    44:25:05:f5:9f:68:4b:08:7a:44:8f:58:d8:62:42:ed:
                    35:60:41:ac:a6:d2:91:9c:68:10:c5:31:39:bd:c1:5c:
                    59:26:cc:3a:1f:10:aa:74:2c:7e:88:c1:9e:63:86:68:
                    52:77:b2:0f:e1:da:bd:ef:71:c2:b5:04:3e:81:68:f6:
                    a7:42:52:a4:f0:49:53:58:b3:b1:09:a7:35:fd:c0:3a:
                    ee:2a:35:46:e4:29:a5:9a:26:81:ee:3a:d5:7f:1c:56:
                    76:4a:cb:6a:d2:b5:83:7d:78:c4:90:b7:31:36:37:7d:
                    26:65:cb:6f:25:f6:2c:0c:65:d1:9e:9a:bb:fa:f8:66:
                    a6:3d:e3:85:6f:61:5b:a8:69:e0:7c:9b:cb:76:1d:f4:
                    30:a2:2c:9f:93:e9:6b:b6:df:e3:1c:ff:f1:8d:f8:ec:
                    5e:6a:77:4d:d8:c8:14:d0:88:ce:31:cb:f7:67:d1:fa:
                    de:6d:ae:50:9b:95:ec:7f:1e:e4:60:fe:4f:18:3f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:ca:a9:6a:99:60:46:cc:5b:73:af:aa:db:c2:8f:29:
        75:62:31:43:c9:af:4a:ce:2d:00:6c:70:89:00:0e:38:
        a0:ff:f7:f4:73:ef:c4:c1:f5:ea:5a:f0:e6:e3:cf:41:
        6e:16:8a:42:e8:78:92:6c:89:09:62:21:2d:a8:b3:36:
        bf:19:d3:85:15:90:fc:43:f0:7e:c9:44:38:a5:27:62:
        68:09:90:51:e2:48:bf:2c:c9:7f:40:c4:f0:8d:47:aa:
        bb:df:0f:97:06:ce:df:12:b5:ff:1a:03:2b:a6:96:bb:
        3c:c7:a9:0a:3e:01:43:79:ae:a9:77:f8:a5:b5:5e:0e:
        9c:53:25:21:36:d3:9f:9f:b8:5a:b8:90:c2:86:dd:73:
        0b:30:dc:43:33:ad:6e:ab:a0:39:02:b8:41:24:56:fd:
        c0:d6:4b:86:94:34:70:0c:82:60:57:51:90:ab:22:6a:
        69:f5:0e:17:5f:76:2b:d9:74:94:ae:90:f1:4b:b9:0f:
        18:bf:80:33:57:6c:6e:c6:5b:42:e5:f8:df:9c:ce:4e:
        f2:98:c0:94:35:ea:43:15:ac:05:82:85:f8:27:53:5a:
        dc:e8:19:2f:84:b1:86:ca:6b:5f:a5:9f:ea:b2:93:6d:
        e1:f2:bd:6a:54:0c:54:19:77:45:03:42:08:2e:2f:b9
    Fingerprint (SHA-256):
        C7:93:F0:A4:CC:46:6D:F7:73:F6:6C:8C:DE:83:86:BD:43:64:D5:7C:6F:DE:65:34:D4:97:AA:3A:4F:2E:5F:F9
    Fingerprint (SHA1):
        EC:40:F0:D2:7A:0D:56:66:DA:56:DB:09:D5:E4:07:A5:CE:75:E5:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4010: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120495 (0x1e67d22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:50 2017
            Not After : Tue May 10 12:06:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2d:f9:a1:a7:c2:1b:4c:10:a8:0f:f7:b4:e6:56:52:
                    87:dd:44:52:1a:e6:e4:78:fb:2a:0d:7f:33:1a:db:d3:
                    53:1b:cf:72:2d:15:24:ae:dc:a9:3d:0e:a9:e8:31:ca:
                    77:7a:41:17:b7:86:72:5d:a7:d8:f4:b5:69:94:bf:a4:
                    44:25:05:f5:9f:68:4b:08:7a:44:8f:58:d8:62:42:ed:
                    35:60:41:ac:a6:d2:91:9c:68:10:c5:31:39:bd:c1:5c:
                    59:26:cc:3a:1f:10:aa:74:2c:7e:88:c1:9e:63:86:68:
                    52:77:b2:0f:e1:da:bd:ef:71:c2:b5:04:3e:81:68:f6:
                    a7:42:52:a4:f0:49:53:58:b3:b1:09:a7:35:fd:c0:3a:
                    ee:2a:35:46:e4:29:a5:9a:26:81:ee:3a:d5:7f:1c:56:
                    76:4a:cb:6a:d2:b5:83:7d:78:c4:90:b7:31:36:37:7d:
                    26:65:cb:6f:25:f6:2c:0c:65:d1:9e:9a:bb:fa:f8:66:
                    a6:3d:e3:85:6f:61:5b:a8:69:e0:7c:9b:cb:76:1d:f4:
                    30:a2:2c:9f:93:e9:6b:b6:df:e3:1c:ff:f1:8d:f8:ec:
                    5e:6a:77:4d:d8:c8:14:d0:88:ce:31:cb:f7:67:d1:fa:
                    de:6d:ae:50:9b:95:ec:7f:1e:e4:60:fe:4f:18:3f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:ca:a9:6a:99:60:46:cc:5b:73:af:aa:db:c2:8f:29:
        75:62:31:43:c9:af:4a:ce:2d:00:6c:70:89:00:0e:38:
        a0:ff:f7:f4:73:ef:c4:c1:f5:ea:5a:f0:e6:e3:cf:41:
        6e:16:8a:42:e8:78:92:6c:89:09:62:21:2d:a8:b3:36:
        bf:19:d3:85:15:90:fc:43:f0:7e:c9:44:38:a5:27:62:
        68:09:90:51:e2:48:bf:2c:c9:7f:40:c4:f0:8d:47:aa:
        bb:df:0f:97:06:ce:df:12:b5:ff:1a:03:2b:a6:96:bb:
        3c:c7:a9:0a:3e:01:43:79:ae:a9:77:f8:a5:b5:5e:0e:
        9c:53:25:21:36:d3:9f:9f:b8:5a:b8:90:c2:86:dd:73:
        0b:30:dc:43:33:ad:6e:ab:a0:39:02:b8:41:24:56:fd:
        c0:d6:4b:86:94:34:70:0c:82:60:57:51:90:ab:22:6a:
        69:f5:0e:17:5f:76:2b:d9:74:94:ae:90:f1:4b:b9:0f:
        18:bf:80:33:57:6c:6e:c6:5b:42:e5:f8:df:9c:ce:4e:
        f2:98:c0:94:35:ea:43:15:ac:05:82:85:f8:27:53:5a:
        dc:e8:19:2f:84:b1:86:ca:6b:5f:a5:9f:ea:b2:93:6d:
        e1:f2:bd:6a:54:0c:54:19:77:45:03:42:08:2e:2f:b9
    Fingerprint (SHA-256):
        C7:93:F0:A4:CC:46:6D:F7:73:F6:6C:8C:DE:83:86:BD:43:64:D5:7C:6F:DE:65:34:D4:97:AA:3A:4F:2E:5F:F9
    Fingerprint (SHA1):
        EC:40:F0:D2:7A:0D:56:66:DA:56:DB:09:D5:E4:07:A5:CE:75:E5:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4011: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #4012: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120494 (0x1e67d22e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:06:49 2017
            Not After : Tue May 10 12:06:49 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:86:9e:e6:ac:91:3e:55:76:2b:e9:32:95:ff:d8:00:
                    9e:46:36:8d:d4:d5:4f:1a:70:36:a4:85:6b:d1:ba:8d:
                    21:cd:b3:57:01:f8:62:3a:60:cf:88:56:44:69:39:96:
                    a8:4e:12:84:ae:0a:09:cc:ec:3c:bd:ef:91:d9:2d:bc:
                    a8:81:35:8d:bf:26:d6:b6:ad:82:8e:14:bb:3b:b7:02:
                    10:4e:dc:52:d6:49:44:de:a8:af:41:6f:b0:1f:65:7b:
                    68:d0:a4:65:8a:3c:f7:9c:00:de:ac:92:a4:41:3a:7d:
                    2d:3d:2f:30:85:df:73:21:54:b0:37:d0:86:6a:9f:bd:
                    74:5f:ae:17:15:7e:a7:5e:02:8b:d3:6e:54:80:72:a0:
                    7b:1d:da:43:c4:0e:97:6c:01:ff:d8:33:f1:90:d6:9f:
                    0e:63:e3:fa:20:a5:1b:87:ec:5b:bc:09:11:68:f2:86:
                    e1:07:c9:4b:41:ea:52:65:62:8d:9a:dc:9c:a7:6c:8b:
                    21:82:94:e7:2d:ea:62:3a:df:44:f3:4d:c6:a0:68:b8:
                    ee:2b:67:e2:b5:7d:5b:0e:94:1c:17:37:5b:6b:2e:47:
                    cd:97:f0:0f:f9:cb:00:56:6f:6b:12:a7:b6:52:c5:17:
                    a9:87:d3:c4:0f:95:a1:57:13:fe:ad:bb:f7:0b:64:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:ac:5e:af:d5:6f:54:bf:28:10:6b:6c:26:7b:31:be:
        cd:01:e3:ae:d7:78:34:d1:bb:62:65:af:4d:bd:a0:d5:
        ca:be:c8:86:b7:37:96:f4:7a:e3:10:8b:82:65:d7:05:
        fd:eb:1c:93:97:1d:d9:08:d1:5a:9b:c7:1d:a5:0b:93:
        e8:07:fc:4a:0c:d4:d6:96:17:7c:5f:35:d1:38:04:e9:
        38:2b:17:46:2d:55:4d:0a:25:c1:c8:48:fa:ef:99:02:
        cb:d5:bc:4f:6a:f7:8e:cc:17:10:7f:93:a9:0e:24:90:
        44:46:8f:6e:90:09:3e:c0:01:74:c6:ce:3f:b3:4b:87:
        b4:94:80:93:11:f3:22:98:d5:81:b6:27:e9:68:65:92:
        81:bd:c1:e0:21:ac:be:59:86:20:9a:19:f6:7f:ac:05:
        91:47:5d:f1:49:64:0b:80:37:96:4b:04:38:fa:29:dc:
        c1:6f:ae:eb:7e:a0:0a:d8:6f:92:92:1f:79:11:c6:cd:
        f8:30:f0:8b:e4:99:71:cd:36:4b:3e:21:f5:7f:42:68:
        dc:92:3b:07:13:ca:7d:2d:25:a0:c8:f1:37:7a:86:99:
        f5:52:c3:5c:3c:cd:5e:90:c5:f5:b7:a0:28:bf:a9:85:
        ab:76:2f:f0:35:19:6a:c2:7b:95:b5:f7:3d:ee:53:d6
    Fingerprint (SHA-256):
        6A:3A:61:9A:CC:E8:30:51:AC:58:22:AC:DD:C7:14:4E:B9:84:09:E9:BA:FC:05:E1:45:3E:AC:6A:6C:C5:7C:14
    Fingerprint (SHA1):
        57:79:E5:C4:45:A4:D6:52:5A:E0:AD:67:08:8A:37:1E:19:A4:2B:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4013: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120495 (0x1e67d22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:50 2017
            Not After : Tue May 10 12:06:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2d:f9:a1:a7:c2:1b:4c:10:a8:0f:f7:b4:e6:56:52:
                    87:dd:44:52:1a:e6:e4:78:fb:2a:0d:7f:33:1a:db:d3:
                    53:1b:cf:72:2d:15:24:ae:dc:a9:3d:0e:a9:e8:31:ca:
                    77:7a:41:17:b7:86:72:5d:a7:d8:f4:b5:69:94:bf:a4:
                    44:25:05:f5:9f:68:4b:08:7a:44:8f:58:d8:62:42:ed:
                    35:60:41:ac:a6:d2:91:9c:68:10:c5:31:39:bd:c1:5c:
                    59:26:cc:3a:1f:10:aa:74:2c:7e:88:c1:9e:63:86:68:
                    52:77:b2:0f:e1:da:bd:ef:71:c2:b5:04:3e:81:68:f6:
                    a7:42:52:a4:f0:49:53:58:b3:b1:09:a7:35:fd:c0:3a:
                    ee:2a:35:46:e4:29:a5:9a:26:81:ee:3a:d5:7f:1c:56:
                    76:4a:cb:6a:d2:b5:83:7d:78:c4:90:b7:31:36:37:7d:
                    26:65:cb:6f:25:f6:2c:0c:65:d1:9e:9a:bb:fa:f8:66:
                    a6:3d:e3:85:6f:61:5b:a8:69:e0:7c:9b:cb:76:1d:f4:
                    30:a2:2c:9f:93:e9:6b:b6:df:e3:1c:ff:f1:8d:f8:ec:
                    5e:6a:77:4d:d8:c8:14:d0:88:ce:31:cb:f7:67:d1:fa:
                    de:6d:ae:50:9b:95:ec:7f:1e:e4:60:fe:4f:18:3f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:ca:a9:6a:99:60:46:cc:5b:73:af:aa:db:c2:8f:29:
        75:62:31:43:c9:af:4a:ce:2d:00:6c:70:89:00:0e:38:
        a0:ff:f7:f4:73:ef:c4:c1:f5:ea:5a:f0:e6:e3:cf:41:
        6e:16:8a:42:e8:78:92:6c:89:09:62:21:2d:a8:b3:36:
        bf:19:d3:85:15:90:fc:43:f0:7e:c9:44:38:a5:27:62:
        68:09:90:51:e2:48:bf:2c:c9:7f:40:c4:f0:8d:47:aa:
        bb:df:0f:97:06:ce:df:12:b5:ff:1a:03:2b:a6:96:bb:
        3c:c7:a9:0a:3e:01:43:79:ae:a9:77:f8:a5:b5:5e:0e:
        9c:53:25:21:36:d3:9f:9f:b8:5a:b8:90:c2:86:dd:73:
        0b:30:dc:43:33:ad:6e:ab:a0:39:02:b8:41:24:56:fd:
        c0:d6:4b:86:94:34:70:0c:82:60:57:51:90:ab:22:6a:
        69:f5:0e:17:5f:76:2b:d9:74:94:ae:90:f1:4b:b9:0f:
        18:bf:80:33:57:6c:6e:c6:5b:42:e5:f8:df:9c:ce:4e:
        f2:98:c0:94:35:ea:43:15:ac:05:82:85:f8:27:53:5a:
        dc:e8:19:2f:84:b1:86:ca:6b:5f:a5:9f:ea:b2:93:6d:
        e1:f2:bd:6a:54:0c:54:19:77:45:03:42:08:2e:2f:b9
    Fingerprint (SHA-256):
        C7:93:F0:A4:CC:46:6D:F7:73:F6:6C:8C:DE:83:86:BD:43:64:D5:7C:6F:DE:65:34:D4:97:AA:3A:4F:2E:5F:F9
    Fingerprint (SHA1):
        EC:40:F0:D2:7A:0D:56:66:DA:56:DB:09:D5:E4:07:A5:CE:75:E5:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4014: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120495 (0x1e67d22f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:50 2017
            Not After : Tue May 10 12:06:50 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:2d:f9:a1:a7:c2:1b:4c:10:a8:0f:f7:b4:e6:56:52:
                    87:dd:44:52:1a:e6:e4:78:fb:2a:0d:7f:33:1a:db:d3:
                    53:1b:cf:72:2d:15:24:ae:dc:a9:3d:0e:a9:e8:31:ca:
                    77:7a:41:17:b7:86:72:5d:a7:d8:f4:b5:69:94:bf:a4:
                    44:25:05:f5:9f:68:4b:08:7a:44:8f:58:d8:62:42:ed:
                    35:60:41:ac:a6:d2:91:9c:68:10:c5:31:39:bd:c1:5c:
                    59:26:cc:3a:1f:10:aa:74:2c:7e:88:c1:9e:63:86:68:
                    52:77:b2:0f:e1:da:bd:ef:71:c2:b5:04:3e:81:68:f6:
                    a7:42:52:a4:f0:49:53:58:b3:b1:09:a7:35:fd:c0:3a:
                    ee:2a:35:46:e4:29:a5:9a:26:81:ee:3a:d5:7f:1c:56:
                    76:4a:cb:6a:d2:b5:83:7d:78:c4:90:b7:31:36:37:7d:
                    26:65:cb:6f:25:f6:2c:0c:65:d1:9e:9a:bb:fa:f8:66:
                    a6:3d:e3:85:6f:61:5b:a8:69:e0:7c:9b:cb:76:1d:f4:
                    30:a2:2c:9f:93:e9:6b:b6:df:e3:1c:ff:f1:8d:f8:ec:
                    5e:6a:77:4d:d8:c8:14:d0:88:ce:31:cb:f7:67:d1:fa:
                    de:6d:ae:50:9b:95:ec:7f:1e:e4:60:fe:4f:18:3f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:ca:a9:6a:99:60:46:cc:5b:73:af:aa:db:c2:8f:29:
        75:62:31:43:c9:af:4a:ce:2d:00:6c:70:89:00:0e:38:
        a0:ff:f7:f4:73:ef:c4:c1:f5:ea:5a:f0:e6:e3:cf:41:
        6e:16:8a:42:e8:78:92:6c:89:09:62:21:2d:a8:b3:36:
        bf:19:d3:85:15:90:fc:43:f0:7e:c9:44:38:a5:27:62:
        68:09:90:51:e2:48:bf:2c:c9:7f:40:c4:f0:8d:47:aa:
        bb:df:0f:97:06:ce:df:12:b5:ff:1a:03:2b:a6:96:bb:
        3c:c7:a9:0a:3e:01:43:79:ae:a9:77:f8:a5:b5:5e:0e:
        9c:53:25:21:36:d3:9f:9f:b8:5a:b8:90:c2:86:dd:73:
        0b:30:dc:43:33:ad:6e:ab:a0:39:02:b8:41:24:56:fd:
        c0:d6:4b:86:94:34:70:0c:82:60:57:51:90:ab:22:6a:
        69:f5:0e:17:5f:76:2b:d9:74:94:ae:90:f1:4b:b9:0f:
        18:bf:80:33:57:6c:6e:c6:5b:42:e5:f8:df:9c:ce:4e:
        f2:98:c0:94:35:ea:43:15:ac:05:82:85:f8:27:53:5a:
        dc:e8:19:2f:84:b1:86:ca:6b:5f:a5:9f:ea:b2:93:6d:
        e1:f2:bd:6a:54:0c:54:19:77:45:03:42:08:2e:2f:b9
    Fingerprint (SHA-256):
        C7:93:F0:A4:CC:46:6D:F7:73:F6:6C:8C:DE:83:86:BD:43:64:D5:7C:6F:DE:65:34:D4:97:AA:3A:4F:2E:5F:F9
    Fingerprint (SHA1):
        EC:40:F0:D2:7A:0D:56:66:DA:56:DB:09:D5:E4:07:A5:CE:75:E5:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #4015: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #4016: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120502 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4017: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #4018: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #4019: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120503 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4020: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #4021: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #4022: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4023: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510120504   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4024: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4025: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #4026: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4027: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510120505   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4028: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4029: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #4030: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4031: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510120506 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4032: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4033: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510120507 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #4034: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #4036: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4037: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4038: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510120508   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4039: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4040: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4041: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4042: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510120509   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4043: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4044: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4045: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4046: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120510   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4047: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4048: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4049: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4050: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510120511   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4051: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4052: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4053: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120502 (0x1e67d236)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:06:55 2017
            Not After : Tue May 10 12:06:55 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:83:0b:eb:41:52:a6:78:d9:9d:32:68:85:34:b4:d6:
                    ff:d6:a7:44:69:be:37:1e:8a:bb:75:6e:f4:23:05:47:
                    16:20:33:4e:a5:55:a6:5c:86:99:dd:e2:d6:ca:17:3e:
                    c8:03:84:a2:a5:8f:5e:ad:7b:85:ee:ce:3c:43:ea:cd:
                    d3:f7:e6:c8:f6:0f:63:d1:5f:17:ee:92:14:35:6c:46:
                    a5:65:4a:18:11:07:95:32:6e:e6:e8:24:cd:5d:6a:2a:
                    59:0d:f0:43:5e:d3:06:34:60:38:04:ec:9e:e5:2c:95:
                    68:6e:d5:67:df:3a:5e:83:49:30:8d:17:9e:be:e2:33:
                    7a:25:b2:df:f8:b3:27:ce:25:6c:89:4f:2b:13:58:39:
                    e1:5d:e1:e8:3e:fd:e5:65:7b:c9:8d:fc:0d:b8:9e:65:
                    4a:d1:2d:d9:10:79:5b:22:13:10:8f:cf:df:60:99:3a:
                    46:a2:83:d0:dc:09:8c:ce:db:e1:30:7a:64:ba:73:9d:
                    75:b7:17:6e:93:26:91:cf:f4:ae:2a:7a:c5:c6:e7:e7:
                    36:db:dc:7a:37:9f:d6:be:f6:de:d3:c5:71:34:2a:08:
                    ad:34:eb:5f:9b:bf:63:0d:d3:98:eb:89:c0:d5:c2:77:
                    27:5e:80:1a:b9:48:ff:9e:23:36:6a:51:23:79:61:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:d5:4c:35:ea:90:d0:68:33:a6:69:c4:7c:06:32:e6:
        0d:eb:ed:c5:59:13:39:a4:26:6a:46:b2:42:6d:6f:e4:
        ac:8c:61:a1:da:42:28:23:09:3c:b9:b2:34:8b:b3:1a:
        c6:d0:ca:d0:23:d7:1c:81:55:a8:81:2a:a0:72:13:10:
        78:b6:0b:44:3f:47:49:03:0a:00:d5:88:bf:8d:35:38:
        73:ba:0f:74:ef:84:73:05:02:b3:eb:e1:d9:b6:75:a4:
        b0:22:86:1c:53:9f:e8:8e:04:b1:ae:36:5d:8c:3f:a2:
        62:5e:63:15:10:fd:2a:b1:12:0e:75:70:5e:d5:0a:80:
        9d:ca:5e:d6:bc:13:d4:f6:78:d6:1c:b5:18:d7:a4:d4:
        48:71:2f:86:30:0a:5e:ca:bc:31:19:0c:48:13:cc:88:
        b2:c1:f3:89:19:4a:94:69:f7:48:74:23:2b:09:49:70:
        71:15:f1:8f:e1:fa:d2:ca:be:77:b9:13:7f:bd:88:df:
        4d:be:0f:9e:41:a7:b1:fe:3f:25:97:7a:dd:de:98:51:
        c0:14:ec:0b:ae:df:76:e3:53:f9:b8:34:5d:4c:75:1d:
        49:4e:af:9f:e9:23:bf:b8:fa:a0:0c:b2:e0:50:58:7f:
        8e:47:a7:09:5f:d3:8c:ea:69:94:c4:55:a8:5d:d0:6a
    Fingerprint (SHA-256):
        88:D8:BF:3B:B8:EA:FF:73:2D:A6:B4:30:6C:66:35:D8:81:64:42:77:4B:86:BF:44:76:D5:F1:51:43:A8:A8:7A
    Fingerprint (SHA1):
        0E:B2:D8:CC:CB:1B:E3:F1:8E:9A:AF:D0:38:90:B2:59:7B:7A:84:1B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4054: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4055: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4056: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4057: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4058: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4059: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4060: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4061: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4062: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120503 (0x1e67d237)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:06:56 2017
            Not After : Tue May 10 12:06:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:27:ce:e4:89:51:a7:3e:c2:d7:25:69:65:06:c7:b1:
                    eb:28:09:d7:2f:ed:52:5d:d8:2b:e7:b2:9c:ef:e2:25:
                    a3:24:8e:37:cc:47:43:a6:b8:45:d5:f9:71:60:77:c8:
                    b9:e9:01:be:8b:3f:95:b2:be:90:78:db:d3:7e:ab:89:
                    86:c5:14:0c:65:1c:8b:50:aa:20:da:0b:45:92:77:2e:
                    e2:26:49:06:fe:53:f9:1d:54:ac:e5:94:cb:a5:ab:bf:
                    c9:dd:51:f3:b5:db:62:f9:bd:bb:b3:da:18:a2:10:d0:
                    29:3d:3a:c1:a1:8c:a8:8d:b7:51:83:89:9f:ef:bb:9f:
                    95:fd:24:9e:6c:3e:08:28:2e:8a:49:bb:e4:ac:2a:ea:
                    a6:27:2c:7d:c1:6a:bd:65:4c:6c:16:2b:81:9c:27:02:
                    4c:c8:5b:e8:08:e8:18:75:cb:d4:b0:50:24:b0:9f:21:
                    1c:fa:73:c9:db:83:8e:26:5e:54:16:5f:a9:00:d5:a7:
                    6b:3f:81:6e:dc:4f:98:01:a2:e5:13:bd:ce:be:36:bd:
                    30:23:c7:3b:63:97:eb:1c:b4:66:ea:8d:53:47:33:fa:
                    76:a7:34:e5:ca:4d:f8:2e:6e:5c:47:5c:4c:3b:a3:89:
                    d2:a7:9f:a0:d0:88:0f:ba:61:57:e3:cf:5a:83:f7:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:e2:24:3a:4b:75:c3:f0:03:c5:cf:97:26:db:4a:1e:
        ff:2a:96:74:6e:74:73:ad:f4:99:0d:ba:61:46:8d:20:
        54:85:4a:d2:fd:5f:bb:4b:ed:dd:f0:83:f3:c3:2d:ed:
        42:80:e0:35:21:a6:70:a8:31:c5:7a:08:19:ba:76:9c:
        8d:af:29:64:c2:5d:34:ae:38:d0:05:66:ef:ad:19:b6:
        2f:d6:7a:b3:e9:c5:4f:05:aa:8d:c5:37:8c:4a:82:f9:
        2e:13:27:56:64:0f:31:bf:18:ac:14:1a:bd:37:c7:30:
        5b:cd:5e:54:83:21:a3:d6:69:b2:bd:98:af:93:72:f1:
        2e:b7:70:81:47:d1:d6:43:ff:49:27:73:fa:f1:c8:fe:
        da:d4:8a:60:e8:fe:00:fd:21:35:d9:c8:e9:79:bf:3f:
        09:30:c2:8d:e6:29:83:bd:c9:39:ba:2b:27:3c:f3:41:
        a6:69:53:b0:dd:f7:98:c4:6d:ac:8c:ba:ba:27:bd:65:
        61:1a:54:a4:33:fd:88:97:97:22:c7:ce:67:d6:dc:dc:
        4d:c6:2b:9e:d0:54:e9:34:ad:58:58:bd:d9:9e:aa:9b:
        83:59:b9:33:e2:02:1f:06:a1:e8:8b:82:e6:b4:43:e5:
        54:dc:be:5b:d4:99:ad:b8:4d:81:90:1f:f5:bc:0b:0d
    Fingerprint (SHA-256):
        DC:09:87:05:90:BB:55:BE:6B:07:2C:66:DD:1C:BF:96:D5:41:5D:B7:BE:15:49:B1:28:C5:3A:0E:6B:B8:FE:48
    Fingerprint (SHA1):
        1B:EB:E7:A0:3E:86:44:AE:7E:DF:ED:CB:70:F3:1B:FA:E6:17:41:04
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #4063: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4064: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4065: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4066: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4067: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #4068: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4069: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #4070: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #4071: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4072: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4073: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4074: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4075: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4076: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4077: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4078: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4079: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4080: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4081: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120512 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4082: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4083: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4084: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4085: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510120513   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4086: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4087: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4088: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4089: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510120514   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4090: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4091: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4092: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4093: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510120515   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4094: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4095: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4096: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4097: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510120516   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4098: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4099: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4100: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4101: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510120517   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4102: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4103: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4104: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4105: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510120518   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4106: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4107: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4108: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4109: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510120519   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4110: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4111: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4112: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4113: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510120520   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4114: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4115: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4116: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120512 (0x1e67d240)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:04 2017
            Not After : Tue May 10 12:07:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9b:05:ec:ab:79:b7:b0:75:f0:c7:4c:b3:24:44:71:50:
                    a3:51:fc:e7:3e:4a:d9:45:58:3b:5b:1d:55:bd:fa:91:
                    64:29:67:c2:ae:22:19:f4:2e:16:14:22:3c:4f:41:bb:
                    38:d5:5f:fa:c0:c3:7d:cb:25:a2:2b:0a:a7:bc:8d:8e:
                    f4:5d:c3:ad:3d:08:fc:dd:c9:82:83:08:d7:fa:89:2b:
                    e4:56:63:bd:66:01:79:dc:49:56:38:6c:76:9e:bd:a7:
                    9d:9f:5c:9d:7b:ff:be:2b:fe:61:78:1e:92:ad:83:94:
                    10:07:26:f4:26:dd:4e:3b:aa:5e:80:64:46:fa:4f:11:
                    35:99:9a:02:44:75:76:0a:7d:3a:a9:60:3a:58:42:73:
                    24:7e:2e:a2:77:37:19:6d:5f:32:6d:ae:c6:45:77:1c:
                    23:f5:2a:fc:52:58:b5:8c:17:5f:47:56:f7:4d:c2:4a:
                    ab:c8:4a:7a:b5:22:23:9e:6d:23:5e:ec:a4:20:6d:bc:
                    01:02:cf:b2:72:d4:7f:0d:f5:8f:15:e0:3e:de:58:5b:
                    c3:bd:28:56:ec:8d:77:15:65:a6:5b:f4:40:c4:aa:ac:
                    b5:e6:7d:58:13:b2:6e:55:92:7a:a3:fc:7e:a7:4f:57:
                    0c:ca:6a:b2:04:00:9b:33:70:46:2b:fe:97:a5:4b:03
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:11:3e:5d:f3:fd:12:8b:6d:a9:c3:05:69:
        ac:17:17:66:43:d1:9c:58:f3:2d:c0:17:2f:42:45:f4:
        02:1c:3c:b4:d0:c1:3c:13:12:3a:06:2b:db:07:cb:f4:
        d8:68:89:d2:30:a5:70:4e:56:ba:95:39:a0:e0
    Fingerprint (SHA-256):
        CD:C3:DE:31:DD:44:91:2B:9B:84:B3:0E:48:2D:FC:4D:73:4D:75:D0:27:B6:15:F0:53:32:2A:5C:1C:67:58:C1
    Fingerprint (SHA1):
        BF:D8:2C:A3:E4:F5:F4:69:02:BB:54:AC:39:15:3A:9F:3F:CE:17:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4117: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120512 (0x1e67d240)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:04 2017
            Not After : Tue May 10 12:07:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9b:05:ec:ab:79:b7:b0:75:f0:c7:4c:b3:24:44:71:50:
                    a3:51:fc:e7:3e:4a:d9:45:58:3b:5b:1d:55:bd:fa:91:
                    64:29:67:c2:ae:22:19:f4:2e:16:14:22:3c:4f:41:bb:
                    38:d5:5f:fa:c0:c3:7d:cb:25:a2:2b:0a:a7:bc:8d:8e:
                    f4:5d:c3:ad:3d:08:fc:dd:c9:82:83:08:d7:fa:89:2b:
                    e4:56:63:bd:66:01:79:dc:49:56:38:6c:76:9e:bd:a7:
                    9d:9f:5c:9d:7b:ff:be:2b:fe:61:78:1e:92:ad:83:94:
                    10:07:26:f4:26:dd:4e:3b:aa:5e:80:64:46:fa:4f:11:
                    35:99:9a:02:44:75:76:0a:7d:3a:a9:60:3a:58:42:73:
                    24:7e:2e:a2:77:37:19:6d:5f:32:6d:ae:c6:45:77:1c:
                    23:f5:2a:fc:52:58:b5:8c:17:5f:47:56:f7:4d:c2:4a:
                    ab:c8:4a:7a:b5:22:23:9e:6d:23:5e:ec:a4:20:6d:bc:
                    01:02:cf:b2:72:d4:7f:0d:f5:8f:15:e0:3e:de:58:5b:
                    c3:bd:28:56:ec:8d:77:15:65:a6:5b:f4:40:c4:aa:ac:
                    b5:e6:7d:58:13:b2:6e:55:92:7a:a3:fc:7e:a7:4f:57:
                    0c:ca:6a:b2:04:00:9b:33:70:46:2b:fe:97:a5:4b:03
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:11:3e:5d:f3:fd:12:8b:6d:a9:c3:05:69:
        ac:17:17:66:43:d1:9c:58:f3:2d:c0:17:2f:42:45:f4:
        02:1c:3c:b4:d0:c1:3c:13:12:3a:06:2b:db:07:cb:f4:
        d8:68:89:d2:30:a5:70:4e:56:ba:95:39:a0:e0
    Fingerprint (SHA-256):
        CD:C3:DE:31:DD:44:91:2B:9B:84:B3:0E:48:2D:FC:4D:73:4D:75:D0:27:B6:15:F0:53:32:2A:5C:1C:67:58:C1
    Fingerprint (SHA1):
        BF:D8:2C:A3:E4:F5:F4:69:02:BB:54:AC:39:15:3A:9F:3F:CE:17:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4118: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120512 (0x1e67d240)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:04 2017
            Not After : Tue May 10 12:07:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9b:05:ec:ab:79:b7:b0:75:f0:c7:4c:b3:24:44:71:50:
                    a3:51:fc:e7:3e:4a:d9:45:58:3b:5b:1d:55:bd:fa:91:
                    64:29:67:c2:ae:22:19:f4:2e:16:14:22:3c:4f:41:bb:
                    38:d5:5f:fa:c0:c3:7d:cb:25:a2:2b:0a:a7:bc:8d:8e:
                    f4:5d:c3:ad:3d:08:fc:dd:c9:82:83:08:d7:fa:89:2b:
                    e4:56:63:bd:66:01:79:dc:49:56:38:6c:76:9e:bd:a7:
                    9d:9f:5c:9d:7b:ff:be:2b:fe:61:78:1e:92:ad:83:94:
                    10:07:26:f4:26:dd:4e:3b:aa:5e:80:64:46:fa:4f:11:
                    35:99:9a:02:44:75:76:0a:7d:3a:a9:60:3a:58:42:73:
                    24:7e:2e:a2:77:37:19:6d:5f:32:6d:ae:c6:45:77:1c:
                    23:f5:2a:fc:52:58:b5:8c:17:5f:47:56:f7:4d:c2:4a:
                    ab:c8:4a:7a:b5:22:23:9e:6d:23:5e:ec:a4:20:6d:bc:
                    01:02:cf:b2:72:d4:7f:0d:f5:8f:15:e0:3e:de:58:5b:
                    c3:bd:28:56:ec:8d:77:15:65:a6:5b:f4:40:c4:aa:ac:
                    b5:e6:7d:58:13:b2:6e:55:92:7a:a3:fc:7e:a7:4f:57:
                    0c:ca:6a:b2:04:00:9b:33:70:46:2b:fe:97:a5:4b:03
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:11:3e:5d:f3:fd:12:8b:6d:a9:c3:05:69:
        ac:17:17:66:43:d1:9c:58:f3:2d:c0:17:2f:42:45:f4:
        02:1c:3c:b4:d0:c1:3c:13:12:3a:06:2b:db:07:cb:f4:
        d8:68:89:d2:30:a5:70:4e:56:ba:95:39:a0:e0
    Fingerprint (SHA-256):
        CD:C3:DE:31:DD:44:91:2B:9B:84:B3:0E:48:2D:FC:4D:73:4D:75:D0:27:B6:15:F0:53:32:2A:5C:1C:67:58:C1
    Fingerprint (SHA1):
        BF:D8:2C:A3:E4:F5:F4:69:02:BB:54:AC:39:15:3A:9F:3F:CE:17:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4119: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120512 (0x1e67d240)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:04 2017
            Not After : Tue May 10 12:07:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    9b:05:ec:ab:79:b7:b0:75:f0:c7:4c:b3:24:44:71:50:
                    a3:51:fc:e7:3e:4a:d9:45:58:3b:5b:1d:55:bd:fa:91:
                    64:29:67:c2:ae:22:19:f4:2e:16:14:22:3c:4f:41:bb:
                    38:d5:5f:fa:c0:c3:7d:cb:25:a2:2b:0a:a7:bc:8d:8e:
                    f4:5d:c3:ad:3d:08:fc:dd:c9:82:83:08:d7:fa:89:2b:
                    e4:56:63:bd:66:01:79:dc:49:56:38:6c:76:9e:bd:a7:
                    9d:9f:5c:9d:7b:ff:be:2b:fe:61:78:1e:92:ad:83:94:
                    10:07:26:f4:26:dd:4e:3b:aa:5e:80:64:46:fa:4f:11:
                    35:99:9a:02:44:75:76:0a:7d:3a:a9:60:3a:58:42:73:
                    24:7e:2e:a2:77:37:19:6d:5f:32:6d:ae:c6:45:77:1c:
                    23:f5:2a:fc:52:58:b5:8c:17:5f:47:56:f7:4d:c2:4a:
                    ab:c8:4a:7a:b5:22:23:9e:6d:23:5e:ec:a4:20:6d:bc:
                    01:02:cf:b2:72:d4:7f:0d:f5:8f:15:e0:3e:de:58:5b:
                    c3:bd:28:56:ec:8d:77:15:65:a6:5b:f4:40:c4:aa:ac:
                    b5:e6:7d:58:13:b2:6e:55:92:7a:a3:fc:7e:a7:4f:57:
                    0c:ca:6a:b2:04:00:9b:33:70:46:2b:fe:97:a5:4b:03
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:11:3e:5d:f3:fd:12:8b:6d:a9:c3:05:69:
        ac:17:17:66:43:d1:9c:58:f3:2d:c0:17:2f:42:45:f4:
        02:1c:3c:b4:d0:c1:3c:13:12:3a:06:2b:db:07:cb:f4:
        d8:68:89:d2:30:a5:70:4e:56:ba:95:39:a0:e0
    Fingerprint (SHA-256):
        CD:C3:DE:31:DD:44:91:2B:9B:84:B3:0E:48:2D:FC:4D:73:4D:75:D0:27:B6:15:F0:53:32:2A:5C:1C:67:58:C1
    Fingerprint (SHA1):
        BF:D8:2C:A3:E4:F5:F4:69:02:BB:54:AC:39:15:3A:9F:3F:CE:17:17
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4120: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4121: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4122: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4123: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4124: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4125: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4126: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4127: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4128: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4129: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4130: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4131: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4132: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4133: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4134: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4135: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4136: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4137: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4138: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4139: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4140: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4141: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4142: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4143: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4144: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4145: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4146: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4147: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510120714Z
nextupdate=20180510120714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:07:14 2017
    Next Update: Thu May 10 12:07:14 2018
    CRL Extensions:
chains.sh: #4148: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120714Z
nextupdate=20180510120714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:07:14 2017
    Next Update: Thu May 10 12:07:14 2018
    CRL Extensions:
chains.sh: #4149: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510120714Z
nextupdate=20180510120714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:07:14 2017
    Next Update: Thu May 10 12:07:14 2018
    CRL Extensions:
chains.sh: #4150: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510120714Z
nextupdate=20180510120714Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:07:14 2017
    Next Update: Thu May 10 12:07:14 2018
    CRL Extensions:
chains.sh: #4151: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510120715Z
addcert 14 20170510120715Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:07:15 2017
    Next Update: Thu May 10 12:07:14 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:07:15 2017
    CRL Extensions:
chains.sh: #4152: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120716Z
addcert 15 20170510120716Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:07:16 2017
    Next Update: Thu May 10 12:07:14 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:07:16 2017
    CRL Extensions:
chains.sh: #4153: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4154: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4155: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4156: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4157: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4158: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4159: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4160: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4161: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4162: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:10 2017
            Not After : Tue May 10 12:07:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:01:f8:5c:82:61:3a:20:ba:e2:db:13:52:87:c4:b0:
                    f6:e6:3a:e4:1c:5a:3c:83:c4:47:7b:95:68:6f:13:d4:
                    3d:87:5c:2d:6b:02:c6:75:79:9c:6f:a3:b7:1e:71:bf:
                    55:a6:e6:1a:aa:48:9c:27:c0:54:e1:7b:a0:d6:84:15:
                    0e:c4:18:1e:6b:46:93:c8:85:02:01:e5:9b:75:a1:12:
                    0c:f1:4a:3c:80:e4:c4:90:15:99:e9:ad:14:7c:5d:11:
                    c3:b9:7f:04:95:28:df:57:0f:f4:6d:91:cc:11:3f:69:
                    44:4f:b9:f1:0c:e8:03:06:db:4f:75:ce:77:d5:c1:24:
                    09:9c:e6:e5:f3:6a:7e:92:d4:4d:89:f0:8f:75:2c:1c:
                    35:7f:05:e4:05:93:fb:2b:87:fd:7c:f2:9e:49:b3:ae:
                    fc:cf:0a:2e:cb:39:c5:1a:34:6f:25:24:2f:b6:3d:08:
                    ac:b6:0d:db:db:52:3e:3e:d2:54:f5:b3:6b:8f:99:e7:
                    c8:9f:19:f8:3e:2b:e5:36:66:57:d4:62:9e:95:37:fe:
                    35:5a:2c:47:80:99:54:f3:ba:f3:3a:2b:71:78:54:3a:
                    e9:c8:3c:6c:9c:7c:25:5c:88:87:ad:48:c2:a2:28:93:
                    6c:87:40:ee:91:6b:61:58:7b:57:d6:46:ff:01:ce:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:00:b4:2b:11:9b:ad:83:0c:66:b4:79:82:a8:bb:a6:
        24:ad:2a:3b:fc:9f:cf:24:5f:11:f4:d8:74:15:b6:2b:
        93:2e:05:39:81:5b:d0:bc:1b:34:19:95:68:48:33:cf:
        aa:a9:c5:2e:19:f4:f3:c0:ba:76:1a:6f:cf:e4:4c:43:
        77:d0:a6:bd:a0:56:1d:17:b1:1c:ad:e0:ab:89:97:d1:
        5a:cb:a5:47:3e:2f:d7:14:f5:02:5c:c7:d1:bf:2e:a8:
        dc:1f:a2:77:51:7e:74:55:97:cc:e2:96:26:32:97:f9:
        54:76:e3:31:c1:cd:a1:4e:46:2f:d7:e5:15:70:cf:f3:
        ab:99:fa:3f:62:5c:a2:85:08:d6:27:ec:6b:61:8a:f0:
        00:4d:a9:29:78:ad:e5:e4:d0:8a:96:74:35:12:3d:2a:
        82:7c:64:02:08:7b:52:7a:e9:70:09:69:81:a5:46:d9:
        e4:c5:d0:b6:7b:b0:bf:f2:44:0b:ff:8b:ce:63:45:e4:
        57:01:9d:21:65:26:c4:2e:50:60:78:97:2b:53:3b:53:
        4f:63:d4:84:37:49:ca:ab:45:5a:9f:50:68:44:9e:e7:
        a3:cb:14:9e:45:77:96:0e:63:aa:83:df:c5:ae:1e:9f:
        5a:df:e9:24:37:23:6b:58:2d:66:fe:d8:fd:b7:2f:9c
    Fingerprint (SHA-256):
        A2:1C:8A:3F:9B:EE:25:13:04:83:9B:52:47:76:46:E4:B9:E2:0A:07:2B:8D:51:B0:75:46:8E:23:0A:21:F8:CF
    Fingerprint (SHA1):
        17:E0:5A:DC:67:CD:8B:8B:93:CC:25:33:F8:A7:CA:48:6D:0F:4D:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4163: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4164: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:10 2017
            Not After : Tue May 10 12:07:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:01:f8:5c:82:61:3a:20:ba:e2:db:13:52:87:c4:b0:
                    f6:e6:3a:e4:1c:5a:3c:83:c4:47:7b:95:68:6f:13:d4:
                    3d:87:5c:2d:6b:02:c6:75:79:9c:6f:a3:b7:1e:71:bf:
                    55:a6:e6:1a:aa:48:9c:27:c0:54:e1:7b:a0:d6:84:15:
                    0e:c4:18:1e:6b:46:93:c8:85:02:01:e5:9b:75:a1:12:
                    0c:f1:4a:3c:80:e4:c4:90:15:99:e9:ad:14:7c:5d:11:
                    c3:b9:7f:04:95:28:df:57:0f:f4:6d:91:cc:11:3f:69:
                    44:4f:b9:f1:0c:e8:03:06:db:4f:75:ce:77:d5:c1:24:
                    09:9c:e6:e5:f3:6a:7e:92:d4:4d:89:f0:8f:75:2c:1c:
                    35:7f:05:e4:05:93:fb:2b:87:fd:7c:f2:9e:49:b3:ae:
                    fc:cf:0a:2e:cb:39:c5:1a:34:6f:25:24:2f:b6:3d:08:
                    ac:b6:0d:db:db:52:3e:3e:d2:54:f5:b3:6b:8f:99:e7:
                    c8:9f:19:f8:3e:2b:e5:36:66:57:d4:62:9e:95:37:fe:
                    35:5a:2c:47:80:99:54:f3:ba:f3:3a:2b:71:78:54:3a:
                    e9:c8:3c:6c:9c:7c:25:5c:88:87:ad:48:c2:a2:28:93:
                    6c:87:40:ee:91:6b:61:58:7b:57:d6:46:ff:01:ce:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:00:b4:2b:11:9b:ad:83:0c:66:b4:79:82:a8:bb:a6:
        24:ad:2a:3b:fc:9f:cf:24:5f:11:f4:d8:74:15:b6:2b:
        93:2e:05:39:81:5b:d0:bc:1b:34:19:95:68:48:33:cf:
        aa:a9:c5:2e:19:f4:f3:c0:ba:76:1a:6f:cf:e4:4c:43:
        77:d0:a6:bd:a0:56:1d:17:b1:1c:ad:e0:ab:89:97:d1:
        5a:cb:a5:47:3e:2f:d7:14:f5:02:5c:c7:d1:bf:2e:a8:
        dc:1f:a2:77:51:7e:74:55:97:cc:e2:96:26:32:97:f9:
        54:76:e3:31:c1:cd:a1:4e:46:2f:d7:e5:15:70:cf:f3:
        ab:99:fa:3f:62:5c:a2:85:08:d6:27:ec:6b:61:8a:f0:
        00:4d:a9:29:78:ad:e5:e4:d0:8a:96:74:35:12:3d:2a:
        82:7c:64:02:08:7b:52:7a:e9:70:09:69:81:a5:46:d9:
        e4:c5:d0:b6:7b:b0:bf:f2:44:0b:ff:8b:ce:63:45:e4:
        57:01:9d:21:65:26:c4:2e:50:60:78:97:2b:53:3b:53:
        4f:63:d4:84:37:49:ca:ab:45:5a:9f:50:68:44:9e:e7:
        a3:cb:14:9e:45:77:96:0e:63:aa:83:df:c5:ae:1e:9f:
        5a:df:e9:24:37:23:6b:58:2d:66:fe:d8:fd:b7:2f:9c
    Fingerprint (SHA-256):
        A2:1C:8A:3F:9B:EE:25:13:04:83:9B:52:47:76:46:E4:B9:E2:0A:07:2B:8D:51:B0:75:46:8E:23:0A:21:F8:CF
    Fingerprint (SHA1):
        17:E0:5A:DC:67:CD:8B:8B:93:CC:25:33:F8:A7:CA:48:6D:0F:4D:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4165: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4166: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4167: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120521 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4168: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4169: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4170: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4171: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510120522   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4172: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4173: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4174: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120293.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4175: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120267.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4176: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4177: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4178: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120293.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4179: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510120523   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4180: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4181: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4182: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120293.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4183: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120268.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4184: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4185: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4186: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4187: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510120524   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4188: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4189: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4190: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120293.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4191: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120269.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4192: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4193: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4194: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510120293.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4195: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510120270.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4196: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4197: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510120723Z
nextupdate=20180510120723Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:07:23 2017
    Next Update: Thu May 10 12:07:23 2018
    CRL Extensions:
chains.sh: #4198: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120723Z
nextupdate=20180510120723Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:07:23 2017
    Next Update: Thu May 10 12:07:23 2018
    CRL Extensions:
chains.sh: #4199: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510120723Z
nextupdate=20180510120723Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:07:23 2017
    Next Update: Thu May 10 12:07:23 2018
    CRL Extensions:
chains.sh: #4200: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510120723Z
nextupdate=20180510120723Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:07:23 2017
    Next Update: Thu May 10 12:07:23 2018
    CRL Extensions:
chains.sh: #4201: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120724Z
addcert 20 20170510120724Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:07:24 2017
    Next Update: Thu May 10 12:07:23 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:07:24 2017
    CRL Extensions:
chains.sh: #4202: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510120725Z
addcert 40 20170510120725Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:07:25 2017
    Next Update: Thu May 10 12:07:23 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:07:24 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:07:25 2017
    CRL Extensions:
chains.sh: #4203: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4204: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4205: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4206: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120521 (0x1e67d249)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:17 2017
            Not After : Tue May 10 12:07:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:6a:6a:d5:ad:ef:b3:a8:2f:27:cb:ab:6f:6a:51:cb:
                    f4:9c:b1:f1:5e:ba:f2:c8:1c:7e:39:47:21:7e:43:57:
                    7f:d9:76:02:06:57:ad:59:19:dc:c8:50:74:c9:80:87:
                    12:a6:be:3d:12:70:64:59:78:38:bd:23:e5:2b:4f:4d:
                    ee:14:66:f2:32:dd:63:b9:92:ed:2d:96:d9:ee:6a:b5:
                    1f:a3:30:c4:4a:1e:4a:d7:5e:25:ac:23:68:5a:68:aa:
                    0f:b3:cd:1b:90:82:9b:cd:8c:c3:47:a7:e2:62:31:f6:
                    b7:9f:11:32:24:2f:4b:37:33:de:2f:d5:3f:80:7f:a1:
                    ac:6e:5a:9b:f3:ea:b6:b0:71:4a:f3:44:d3:79:11:72:
                    67:61:f7:aa:e5:d9:9d:4f:cc:ed:c0:f8:32:20:20:62:
                    79:c0:12:37:22:33:1a:26:2b:1b:64:5f:e5:11:1a:46:
                    97:a1:25:64:67:48:24:e9:b1:57:78:b9:a2:93:79:1f:
                    69:ac:71:0a:bd:1f:30:c7:8e:36:c9:b7:b0:05:e7:8b:
                    0e:07:91:c3:37:79:69:00:e9:57:2f:20:65:6a:b5:ae:
                    92:d5:f7:9e:43:c8:e2:8e:3d:e8:be:35:69:b2:33:41:
                    d9:0b:7d:47:fd:9d:1d:87:1e:e6:c0:36:f3:15:d0:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:ea:f9:5e:8e:fe:1d:7d:2a:c1:5e:22:59:03:7a:db:
        84:c4:01:c9:3f:36:be:5d:29:82:ff:87:16:9d:40:37:
        5e:b1:40:56:ff:4b:86:d6:03:bc:bd:cf:5a:5a:15:ba:
        d6:b1:04:d8:19:07:e3:2f:ed:7e:44:23:15:39:d3:21:
        81:ca:59:1b:03:b4:85:ca:28:77:54:c4:b3:6f:e4:9f:
        c6:81:7d:4a:fb:b4:26:28:94:7a:d4:90:db:cb:91:51:
        a6:66:60:36:82:d9:f4:bd:3c:53:d7:4c:7a:1c:8d:88:
        7a:29:b5:60:e4:4d:90:11:82:c5:d3:cb:56:e9:01:8a:
        1c:d2:79:0b:0b:45:13:e4:26:9b:8d:a1:9d:a6:93:95:
        f7:c1:02:54:39:43:08:35:fc:7e:ea:7d:16:e9:7f:ef:
        1a:c2:c2:55:d8:c3:d1:e0:6d:49:6e:fa:07:63:3c:3c:
        9b:aa:3c:27:0d:63:97:ae:33:84:ac:ca:a8:5e:e1:ed:
        1c:0e:34:4b:47:59:23:a5:8e:40:98:2f:3e:b8:fa:23:
        51:26:df:6f:2f:b3:0e:dd:16:c2:ce:f0:03:bb:90:8d:
        e6:28:53:9c:d3:f1:10:98:81:39:55:ca:0a:ab:56:ef:
        3f:a0:70:46:dd:34:90:33:fc:89:7c:ac:2f:9f:cc:5d
    Fingerprint (SHA-256):
        09:68:F4:6F:76:13:8D:DA:82:FA:34:7C:63:73:A9:82:68:A6:A4:12:3B:BA:B8:62:69:BD:97:E1:15:F7:3E:74
    Fingerprint (SHA1):
        0D:20:3C:BB:6C:FA:36:03:80:35:F5:2D:E6:62:45:E1:E8:C9:DA:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4207: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4208: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120521 (0x1e67d249)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:07:17 2017
            Not After : Tue May 10 12:07:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:6a:6a:d5:ad:ef:b3:a8:2f:27:cb:ab:6f:6a:51:cb:
                    f4:9c:b1:f1:5e:ba:f2:c8:1c:7e:39:47:21:7e:43:57:
                    7f:d9:76:02:06:57:ad:59:19:dc:c8:50:74:c9:80:87:
                    12:a6:be:3d:12:70:64:59:78:38:bd:23:e5:2b:4f:4d:
                    ee:14:66:f2:32:dd:63:b9:92:ed:2d:96:d9:ee:6a:b5:
                    1f:a3:30:c4:4a:1e:4a:d7:5e:25:ac:23:68:5a:68:aa:
                    0f:b3:cd:1b:90:82:9b:cd:8c:c3:47:a7:e2:62:31:f6:
                    b7:9f:11:32:24:2f:4b:37:33:de:2f:d5:3f:80:7f:a1:
                    ac:6e:5a:9b:f3:ea:b6:b0:71:4a:f3:44:d3:79:11:72:
                    67:61:f7:aa:e5:d9:9d:4f:cc:ed:c0:f8:32:20:20:62:
                    79:c0:12:37:22:33:1a:26:2b:1b:64:5f:e5:11:1a:46:
                    97:a1:25:64:67:48:24:e9:b1:57:78:b9:a2:93:79:1f:
                    69:ac:71:0a:bd:1f:30:c7:8e:36:c9:b7:b0:05:e7:8b:
                    0e:07:91:c3:37:79:69:00:e9:57:2f:20:65:6a:b5:ae:
                    92:d5:f7:9e:43:c8:e2:8e:3d:e8:be:35:69:b2:33:41:
                    d9:0b:7d:47:fd:9d:1d:87:1e:e6:c0:36:f3:15:d0:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:ea:f9:5e:8e:fe:1d:7d:2a:c1:5e:22:59:03:7a:db:
        84:c4:01:c9:3f:36:be:5d:29:82:ff:87:16:9d:40:37:
        5e:b1:40:56:ff:4b:86:d6:03:bc:bd:cf:5a:5a:15:ba:
        d6:b1:04:d8:19:07:e3:2f:ed:7e:44:23:15:39:d3:21:
        81:ca:59:1b:03:b4:85:ca:28:77:54:c4:b3:6f:e4:9f:
        c6:81:7d:4a:fb:b4:26:28:94:7a:d4:90:db:cb:91:51:
        a6:66:60:36:82:d9:f4:bd:3c:53:d7:4c:7a:1c:8d:88:
        7a:29:b5:60:e4:4d:90:11:82:c5:d3:cb:56:e9:01:8a:
        1c:d2:79:0b:0b:45:13:e4:26:9b:8d:a1:9d:a6:93:95:
        f7:c1:02:54:39:43:08:35:fc:7e:ea:7d:16:e9:7f:ef:
        1a:c2:c2:55:d8:c3:d1:e0:6d:49:6e:fa:07:63:3c:3c:
        9b:aa:3c:27:0d:63:97:ae:33:84:ac:ca:a8:5e:e1:ed:
        1c:0e:34:4b:47:59:23:a5:8e:40:98:2f:3e:b8:fa:23:
        51:26:df:6f:2f:b3:0e:dd:16:c2:ce:f0:03:bb:90:8d:
        e6:28:53:9c:d3:f1:10:98:81:39:55:ca:0a:ab:56:ef:
        3f:a0:70:46:dd:34:90:33:fc:89:7c:ac:2f:9f:cc:5d
    Fingerprint (SHA-256):
        09:68:F4:6F:76:13:8D:DA:82:FA:34:7C:63:73:A9:82:68:A6:A4:12:3B:BA:B8:62:69:BD:97:E1:15:F7:3E:74
    Fingerprint (SHA1):
        0D:20:3C:BB:6C:FA:36:03:80:35:F5:2D:E6:62:45:E1:E8:C9:DA:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4209: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4210: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4211: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120525 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4212: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4213: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4214: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4215: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510120526   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4216: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4217: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4218: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4219: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510120527   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4220: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4221: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4222: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4223: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510120528   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4224: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4225: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4226: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -m 510120529 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4227: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4228: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4229: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4230: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510120530   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4231: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4232: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4233: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4234: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510120531   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4235: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4236: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4237: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4238: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4239: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120525 (0x1e67d24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:07:26 2017
            Not After : Tue May 10 12:07:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:57:32:5c:c1:60:3f:3d:1b:d3:27:db:44:b3:e2:95:
                    07:39:da:98:df:6b:36:93:52:f3:9e:f1:71:ce:b1:aa:
                    68:87:77:58:17:35:58:72:d9:ae:2c:89:e6:0e:ab:d3:
                    d0:40:42:05:23:8b:5b:d1:eb:c6:0f:03:5d:72:52:e4:
                    87:5f:1c:0c:3d:5b:bb:7e:6c:c2:d2:dc:b0:5b:20:c7:
                    b4:1f:2c:fe:64:7e:74:e2:7b:3b:f2:58:5c:66:aa:d7:
                    3f:a7:29:9a:88:20:48:8e:6c:fc:14:1d:d7:fa:58:7b:
                    6a:e5:86:50:2f:78:c4:9e:5a:b9:2c:3b:bf:56:15:3c:
                    62:f8:8a:7d:02:dd:fa:ff:7d:91:3a:ac:dd:fb:70:4d:
                    8b:33:c4:8b:8d:43:25:89:67:e5:b7:32:88:25:c7:03:
                    27:9a:e2:54:dd:54:81:3c:9e:ef:24:60:d0:70:8a:87:
                    b3:65:82:c0:a6:2d:a3:48:81:1f:b9:91:40:9e:ce:37:
                    6e:e9:12:61:f4:10:13:96:c7:64:b4:79:d1:b7:28:d8:
                    06:75:66:c5:17:b8:4f:9b:41:38:86:4c:8e:2a:fd:4b:
                    cc:23:9c:4e:ba:35:54:65:a7:79:6f:94:62:78:95:81:
                    2f:dd:6c:fe:75:70:28:28:60:f6:12:b7:d6:bb:c0:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:de:04:db:81:23:ec:c0:42:a0:75:fe:48:93:5f:41:
        39:ff:2c:63:33:f3:06:67:86:97:0a:58:44:55:df:11:
        b4:dd:e7:34:df:91:ce:0a:6e:29:5c:2d:48:d2:db:f0:
        e9:a7:c3:b2:91:b6:db:1d:f4:be:03:be:f2:e4:15:b2:
        4b:b1:30:a8:af:65:bc:a1:77:3c:8c:5c:58:62:0d:01:
        ef:4b:29:d2:b5:dd:e3:fd:08:c7:ca:b0:ff:79:d2:bc:
        ac:42:78:7c:28:9f:c5:64:84:5d:35:f9:52:59:5c:51:
        e9:1e:f6:b4:52:82:1e:5d:83:9c:4a:1e:b1:58:10:db:
        59:0c:84:eb:30:95:8d:d5:26:bf:89:57:71:03:19:af:
        4c:01:46:69:be:77:bf:80:57:ec:ca:79:a2:eb:cc:71:
        09:eb:17:60:5c:48:d0:9a:ef:b1:a4:34:7e:41:37:43:
        92:ef:bc:77:5d:cd:c9:55:1d:cf:d9:f0:65:24:26:0f:
        86:bf:12:6f:b8:47:2a:7f:43:14:21:69:c5:a0:3e:c5:
        1e:31:5f:5e:41:6e:36:95:9a:22:55:bf:cf:ce:ec:b0:
        22:07:65:53:3b:c3:67:f1:e5:2b:78:17:e0:29:5b:b0:
        d5:8e:79:97:a2:6b:26:a3:32:fd:44:b1:9d:1d:ca:2c
    Fingerprint (SHA-256):
        48:D1:E1:C1:FC:01:C9:5E:9B:D0:8D:27:6A:79:AF:B9:91:44:AF:4D:A4:F8:0D:8E:D3:7B:FF:57:C4:C8:F6:4A
    Fingerprint (SHA1):
        D1:59:28:6D:5C:E4:2D:87:8B:11:00:C0:48:7E:79:4A:FE:23:D4:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4240: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120527 (0x1e67d24f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:07:27 2017
            Not After : Tue May 10 12:07:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:6f:9c:53:9e:12:75:92:e8:16:ef:7b:92:16:d4:b0:
                    4b:41:be:9c:3c:12:33:b0:f1:2d:61:2a:df:83:5a:01:
                    36:7b:57:93:47:54:08:68:70:9b:98:cb:66:1b:c1:aa:
                    2b:1d:b3:72:18:4b:05:59:e1:cc:b2:fc:f0:f0:40:d6:
                    22:db:2d:d2:80:b2:c7:00:11:1e:0e:4b:d9:d7:35:f6:
                    55:42:1c:e7:3d:d4:b0:d7:ab:5e:9d:52:af:ec:99:4a:
                    75:82:64:2c:c0:4f:6e:3e:0e:e2:07:7b:23:45:8d:bf:
                    52:82:23:98:c1:37:60:aa:65:07:c0:1e:66:b3:35:7c:
                    f7:0d:64:ab:f0:e8:7d:34:84:07:c8:c7:24:54:4f:28:
                    53:eb:7a:28:78:a5:f2:87:d3:a4:3a:77:87:3f:dd:9c:
                    7f:11:3d:af:55:9e:e2:c0:9e:65:1b:e0:ac:27:5d:03:
                    98:7c:87:64:05:65:66:4d:0b:d0:d8:d3:11:a7:95:57:
                    81:26:c0:83:ab:28:74:31:f5:0a:f8:e9:b4:64:93:d3:
                    db:1f:80:61:0d:e4:26:8f:f7:96:ad:e3:48:2b:61:cb:
                    7b:1a:5c:00:27:8b:ff:55:fb:c9:0d:50:fa:a8:be:74:
                    ed:2d:b2:dd:cc:dc:b8:e5:6f:ae:8c:86:b4:dc:a6:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:b8:33:5a:0f:71:e8:f4:53:59:cd:cd:7c:d2:db:18:
        c6:c0:ca:e5:eb:02:28:64:82:05:f8:02:c3:4b:9e:4c:
        3e:28:92:ba:7e:57:1a:28:c2:e2:e2:19:55:17:56:06:
        99:da:c2:fe:50:2d:81:fb:b2:f0:22:8a:e2:ed:8d:02:
        a8:4a:f8:9e:0a:ca:39:ec:e1:77:aa:62:26:cd:f8:68:
        fb:f3:7f:ea:4f:29:1b:1f:21:3e:1a:42:3b:08:79:94:
        34:92:ab:e9:7f:8b:a5:7b:6b:56:47:35:44:3e:8e:e7:
        62:68:6d:16:af:1e:13:fe:b7:99:3e:3e:11:95:97:90:
        8c:dc:98:71:54:2c:a8:37:b8:71:e5:63:25:e7:ba:26:
        4b:84:d1:f5:1c:37:67:49:74:fd:c1:c6:d5:44:1d:f5:
        11:db:6d:ac:88:cd:0d:bf:ab:31:a3:b6:f2:e2:9c:9d:
        ed:ae:c2:b8:46:09:ae:1d:8f:22:2e:56:a6:20:95:46:
        56:c6:46:1d:08:ae:4a:10:0a:cd:32:f0:13:e4:d6:f1:
        89:11:9d:04:a1:1d:c6:07:48:1f:4c:64:48:9a:00:f3:
        58:51:a4:a6:8d:fa:50:94:c6:d9:d9:53:04:ec:89:8a:
        3b:71:44:73:49:94:2d:fd:ac:5a:73:5b:ae:1b:cf:9d
    Fingerprint (SHA-256):
        35:B2:81:C5:F7:4C:3D:61:1E:ED:D3:58:48:DD:84:A4:55:28:50:1F:FC:E4:FB:4D:C4:C4:70:56:03:1F:9F:AE
    Fingerprint (SHA1):
        76:54:23:6A:75:CD:4D:1B:8A:E1:21:39:85:96:C0:28:20:DD:0B:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4241: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120525 (0x1e67d24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:07:26 2017
            Not After : Tue May 10 12:07:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:57:32:5c:c1:60:3f:3d:1b:d3:27:db:44:b3:e2:95:
                    07:39:da:98:df:6b:36:93:52:f3:9e:f1:71:ce:b1:aa:
                    68:87:77:58:17:35:58:72:d9:ae:2c:89:e6:0e:ab:d3:
                    d0:40:42:05:23:8b:5b:d1:eb:c6:0f:03:5d:72:52:e4:
                    87:5f:1c:0c:3d:5b:bb:7e:6c:c2:d2:dc:b0:5b:20:c7:
                    b4:1f:2c:fe:64:7e:74:e2:7b:3b:f2:58:5c:66:aa:d7:
                    3f:a7:29:9a:88:20:48:8e:6c:fc:14:1d:d7:fa:58:7b:
                    6a:e5:86:50:2f:78:c4:9e:5a:b9:2c:3b:bf:56:15:3c:
                    62:f8:8a:7d:02:dd:fa:ff:7d:91:3a:ac:dd:fb:70:4d:
                    8b:33:c4:8b:8d:43:25:89:67:e5:b7:32:88:25:c7:03:
                    27:9a:e2:54:dd:54:81:3c:9e:ef:24:60:d0:70:8a:87:
                    b3:65:82:c0:a6:2d:a3:48:81:1f:b9:91:40:9e:ce:37:
                    6e:e9:12:61:f4:10:13:96:c7:64:b4:79:d1:b7:28:d8:
                    06:75:66:c5:17:b8:4f:9b:41:38:86:4c:8e:2a:fd:4b:
                    cc:23:9c:4e:ba:35:54:65:a7:79:6f:94:62:78:95:81:
                    2f:dd:6c:fe:75:70:28:28:60:f6:12:b7:d6:bb:c0:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:de:04:db:81:23:ec:c0:42:a0:75:fe:48:93:5f:41:
        39:ff:2c:63:33:f3:06:67:86:97:0a:58:44:55:df:11:
        b4:dd:e7:34:df:91:ce:0a:6e:29:5c:2d:48:d2:db:f0:
        e9:a7:c3:b2:91:b6:db:1d:f4:be:03:be:f2:e4:15:b2:
        4b:b1:30:a8:af:65:bc:a1:77:3c:8c:5c:58:62:0d:01:
        ef:4b:29:d2:b5:dd:e3:fd:08:c7:ca:b0:ff:79:d2:bc:
        ac:42:78:7c:28:9f:c5:64:84:5d:35:f9:52:59:5c:51:
        e9:1e:f6:b4:52:82:1e:5d:83:9c:4a:1e:b1:58:10:db:
        59:0c:84:eb:30:95:8d:d5:26:bf:89:57:71:03:19:af:
        4c:01:46:69:be:77:bf:80:57:ec:ca:79:a2:eb:cc:71:
        09:eb:17:60:5c:48:d0:9a:ef:b1:a4:34:7e:41:37:43:
        92:ef:bc:77:5d:cd:c9:55:1d:cf:d9:f0:65:24:26:0f:
        86:bf:12:6f:b8:47:2a:7f:43:14:21:69:c5:a0:3e:c5:
        1e:31:5f:5e:41:6e:36:95:9a:22:55:bf:cf:ce:ec:b0:
        22:07:65:53:3b:c3:67:f1:e5:2b:78:17:e0:29:5b:b0:
        d5:8e:79:97:a2:6b:26:a3:32:fd:44:b1:9d:1d:ca:2c
    Fingerprint (SHA-256):
        48:D1:E1:C1:FC:01:C9:5E:9B:D0:8D:27:6A:79:AF:B9:91:44:AF:4D:A4:F8:0D:8E:D3:7B:FF:57:C4:C8:F6:4A
    Fingerprint (SHA1):
        D1:59:28:6D:5C:E4:2D:87:8B:11:00:C0:48:7E:79:4A:FE:23:D4:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4242: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4243: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120525 (0x1e67d24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:07:26 2017
            Not After : Tue May 10 12:07:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:57:32:5c:c1:60:3f:3d:1b:d3:27:db:44:b3:e2:95:
                    07:39:da:98:df:6b:36:93:52:f3:9e:f1:71:ce:b1:aa:
                    68:87:77:58:17:35:58:72:d9:ae:2c:89:e6:0e:ab:d3:
                    d0:40:42:05:23:8b:5b:d1:eb:c6:0f:03:5d:72:52:e4:
                    87:5f:1c:0c:3d:5b:bb:7e:6c:c2:d2:dc:b0:5b:20:c7:
                    b4:1f:2c:fe:64:7e:74:e2:7b:3b:f2:58:5c:66:aa:d7:
                    3f:a7:29:9a:88:20:48:8e:6c:fc:14:1d:d7:fa:58:7b:
                    6a:e5:86:50:2f:78:c4:9e:5a:b9:2c:3b:bf:56:15:3c:
                    62:f8:8a:7d:02:dd:fa:ff:7d:91:3a:ac:dd:fb:70:4d:
                    8b:33:c4:8b:8d:43:25:89:67:e5:b7:32:88:25:c7:03:
                    27:9a:e2:54:dd:54:81:3c:9e:ef:24:60:d0:70:8a:87:
                    b3:65:82:c0:a6:2d:a3:48:81:1f:b9:91:40:9e:ce:37:
                    6e:e9:12:61:f4:10:13:96:c7:64:b4:79:d1:b7:28:d8:
                    06:75:66:c5:17:b8:4f:9b:41:38:86:4c:8e:2a:fd:4b:
                    cc:23:9c:4e:ba:35:54:65:a7:79:6f:94:62:78:95:81:
                    2f:dd:6c:fe:75:70:28:28:60:f6:12:b7:d6:bb:c0:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:de:04:db:81:23:ec:c0:42:a0:75:fe:48:93:5f:41:
        39:ff:2c:63:33:f3:06:67:86:97:0a:58:44:55:df:11:
        b4:dd:e7:34:df:91:ce:0a:6e:29:5c:2d:48:d2:db:f0:
        e9:a7:c3:b2:91:b6:db:1d:f4:be:03:be:f2:e4:15:b2:
        4b:b1:30:a8:af:65:bc:a1:77:3c:8c:5c:58:62:0d:01:
        ef:4b:29:d2:b5:dd:e3:fd:08:c7:ca:b0:ff:79:d2:bc:
        ac:42:78:7c:28:9f:c5:64:84:5d:35:f9:52:59:5c:51:
        e9:1e:f6:b4:52:82:1e:5d:83:9c:4a:1e:b1:58:10:db:
        59:0c:84:eb:30:95:8d:d5:26:bf:89:57:71:03:19:af:
        4c:01:46:69:be:77:bf:80:57:ec:ca:79:a2:eb:cc:71:
        09:eb:17:60:5c:48:d0:9a:ef:b1:a4:34:7e:41:37:43:
        92:ef:bc:77:5d:cd:c9:55:1d:cf:d9:f0:65:24:26:0f:
        86:bf:12:6f:b8:47:2a:7f:43:14:21:69:c5:a0:3e:c5:
        1e:31:5f:5e:41:6e:36:95:9a:22:55:bf:cf:ce:ec:b0:
        22:07:65:53:3b:c3:67:f1:e5:2b:78:17:e0:29:5b:b0:
        d5:8e:79:97:a2:6b:26:a3:32:fd:44:b1:9d:1d:ca:2c
    Fingerprint (SHA-256):
        48:D1:E1:C1:FC:01:C9:5E:9B:D0:8D:27:6A:79:AF:B9:91:44:AF:4D:A4:F8:0D:8E:D3:7B:FF:57:C4:C8:F6:4A
    Fingerprint (SHA1):
        D1:59:28:6D:5C:E4:2D:87:8B:11:00:C0:48:7E:79:4A:FE:23:D4:62
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4244: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120527 (0x1e67d24f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:07:27 2017
            Not After : Tue May 10 12:07:27 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:6f:9c:53:9e:12:75:92:e8:16:ef:7b:92:16:d4:b0:
                    4b:41:be:9c:3c:12:33:b0:f1:2d:61:2a:df:83:5a:01:
                    36:7b:57:93:47:54:08:68:70:9b:98:cb:66:1b:c1:aa:
                    2b:1d:b3:72:18:4b:05:59:e1:cc:b2:fc:f0:f0:40:d6:
                    22:db:2d:d2:80:b2:c7:00:11:1e:0e:4b:d9:d7:35:f6:
                    55:42:1c:e7:3d:d4:b0:d7:ab:5e:9d:52:af:ec:99:4a:
                    75:82:64:2c:c0:4f:6e:3e:0e:e2:07:7b:23:45:8d:bf:
                    52:82:23:98:c1:37:60:aa:65:07:c0:1e:66:b3:35:7c:
                    f7:0d:64:ab:f0:e8:7d:34:84:07:c8:c7:24:54:4f:28:
                    53:eb:7a:28:78:a5:f2:87:d3:a4:3a:77:87:3f:dd:9c:
                    7f:11:3d:af:55:9e:e2:c0:9e:65:1b:e0:ac:27:5d:03:
                    98:7c:87:64:05:65:66:4d:0b:d0:d8:d3:11:a7:95:57:
                    81:26:c0:83:ab:28:74:31:f5:0a:f8:e9:b4:64:93:d3:
                    db:1f:80:61:0d:e4:26:8f:f7:96:ad:e3:48:2b:61:cb:
                    7b:1a:5c:00:27:8b:ff:55:fb:c9:0d:50:fa:a8:be:74:
                    ed:2d:b2:dd:cc:dc:b8:e5:6f:ae:8c:86:b4:dc:a6:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:b8:33:5a:0f:71:e8:f4:53:59:cd:cd:7c:d2:db:18:
        c6:c0:ca:e5:eb:02:28:64:82:05:f8:02:c3:4b:9e:4c:
        3e:28:92:ba:7e:57:1a:28:c2:e2:e2:19:55:17:56:06:
        99:da:c2:fe:50:2d:81:fb:b2:f0:22:8a:e2:ed:8d:02:
        a8:4a:f8:9e:0a:ca:39:ec:e1:77:aa:62:26:cd:f8:68:
        fb:f3:7f:ea:4f:29:1b:1f:21:3e:1a:42:3b:08:79:94:
        34:92:ab:e9:7f:8b:a5:7b:6b:56:47:35:44:3e:8e:e7:
        62:68:6d:16:af:1e:13:fe:b7:99:3e:3e:11:95:97:90:
        8c:dc:98:71:54:2c:a8:37:b8:71:e5:63:25:e7:ba:26:
        4b:84:d1:f5:1c:37:67:49:74:fd:c1:c6:d5:44:1d:f5:
        11:db:6d:ac:88:cd:0d:bf:ab:31:a3:b6:f2:e2:9c:9d:
        ed:ae:c2:b8:46:09:ae:1d:8f:22:2e:56:a6:20:95:46:
        56:c6:46:1d:08:ae:4a:10:0a:cd:32:f0:13:e4:d6:f1:
        89:11:9d:04:a1:1d:c6:07:48:1f:4c:64:48:9a:00:f3:
        58:51:a4:a6:8d:fa:50:94:c6:d9:d9:53:04:ec:89:8a:
        3b:71:44:73:49:94:2d:fd:ac:5a:73:5b:ae:1b:cf:9d
    Fingerprint (SHA-256):
        35:B2:81:C5:F7:4C:3D:61:1E:ED:D3:58:48:DD:84:A4:55:28:50:1F:FC:E4:FB:4D:C4:C4:70:56:03:1F:9F:AE
    Fingerprint (SHA1):
        76:54:23:6A:75:CD:4D:1B:8A:E1:21:39:85:96:C0:28:20:DD:0B:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4245: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4246: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4247: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4248: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120525 (0x1e67d24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:07:26 2017
            Not After : Tue May 10 12:07:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:57:32:5c:c1:60:3f:3d:1b:d3:27:db:44:b3:e2:95:
                    07:39:da:98:df:6b:36:93:52:f3:9e:f1:71:ce:b1:aa:
                    68:87:77:58:17:35:58:72:d9:ae:2c:89:e6:0e:ab:d3:
                    d0:40:42:05:23:8b:5b:d1:eb:c6:0f:03:5d:72:52:e4:
                    87:5f:1c:0c:3d:5b:bb:7e:6c:c2:d2:dc:b0:5b:20:c7:
                    b4:1f:2c:fe:64:7e:74:e2:7b:3b:f2:58:5c:66:aa:d7:
                    3f:a7:29:9a:88:20:48:8e:6c:fc:14:1d:d7:fa:58:7b:
                    6a:e5:86:50:2f:78:c4:9e:5a:b9:2c:3b:bf:56:15:3c:
                    62:f8:8a:7d:02:dd:fa:ff:7d:91:3a:ac:dd:fb:70:4d:
                    8b:33:c4:8b:8d:43:25:89:67:e5:b7:32:88:25:c7:03:
                    27:9a:e2:54:dd:54:81:3c:9e:ef:24:60:d0:70:8a:87:
                    b3:65:82:c0:a6:2d:a3:48:81:1f:b9:91:40:9e:ce:37:
                    6e:e9:12:61:f4:10:13:96:c7:64:b4:79:d1:b7:28:d8:
                    06:75:66:c5:17:b8:4f:9b:41:38:86:4c:8e:2a:fd:4b:
                    cc:23:9c:4e:ba:35:54:65:a7:79:6f:94:62:78:95:81:
                    2f:dd:6c:fe:75:70:28:28:60:f6:12:b7:d6:bb:c0:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:de:04:db:81:23:ec:c0:42:a0:75:fe:48:93:5f:41:
        39:ff:2c:63:33:f3:06:67:86:97:0a:58:44:55:df:11:
        b4:dd:e7:34:df:91:ce:0a:6e:29:5c:2d:48:d2:db:f0:
        e9:a7:c3:b2:91:b6:db:1d:f4:be:03:be:f2:e4:15:b2:
        4b:b1:30:a8:af:65:bc:a1:77:3c:8c:5c:58:62:0d:01:
        ef:4b:29:d2:b5:dd:e3:fd:08:c7:ca:b0:ff:79:d2:bc:
        ac:42:78:7c:28:9f:c5:64:84:5d:35:f9:52:59:5c:51:
        e9:1e:f6:b4:52:82:1e:5d:83:9c:4a:1e:b1:58:10:db:
        59:0c:84:eb:30:95:8d:d5:26:bf:89:57:71:03:19:af:
        4c:01:46:69:be:77:bf:80:57:ec:ca:79:a2:eb:cc:71:
        09:eb:17:60:5c:48:d0:9a:ef:b1:a4:34:7e:41:37:43:
        92:ef:bc:77:5d:cd:c9:55:1d:cf:d9:f0:65:24:26:0f:
        86:bf:12:6f:b8:47:2a:7f:43:14:21:69:c5:a0:3e:c5:
        1e:31:5f:5e:41:6e:36:95:9a:22:55:bf:cf:ce:ec:b0:
        22:07:65:53:3b:c3:67:f1:e5:2b:78:17:e0:29:5b:b0:
        d5:8e:79:97:a2:6b:26:a3:32:fd:44:b1:9d:1d:ca:2c
    Fingerprint (SHA-256):
        48:D1:E1:C1:FC:01:C9:5E:9B:D0:8D:27:6A:79:AF:B9:91:44:AF:4D:A4:F8:0D:8E:D3:7B:FF:57:C4:C8:F6:4A
    Fingerprint (SHA1):
        D1:59:28:6D:5C:E4:2D:87:8B:11:00:C0:48:7E:79:4A:FE:23:D4:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4249: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120529 (0x1e67d251)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:07:29 2017
            Not After : Tue May 10 12:07:29 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:7d:b0:2c:49:35:45:af:17:df:b1:e3:26:16:ec:35:
                    0f:f9:98:df:49:b5:58:15:24:42:d5:1a:94:47:04:46:
                    ad:37:6c:8e:99:c3:7c:66:63:95:61:a3:9e:af:99:64:
                    02:18:fe:50:a8:8e:ad:1d:3b:86:7d:69:f0:4b:79:12:
                    97:46:38:28:1c:62:85:e3:09:a3:bb:17:e0:ee:1e:d6:
                    1d:61:8d:fa:c9:26:18:a7:cd:b1:0d:3a:93:59:b6:fe:
                    08:76:71:35:3e:59:ce:9c:d4:41:37:cd:75:cd:d2:77:
                    51:49:20:b4:77:5d:cd:66:f4:10:9d:41:4a:f4:b8:02:
                    1d:31:5f:9a:e7:f2:5a:e6:96:ea:36:65:6e:41:ea:6c:
                    33:4c:c4:03:cd:ea:bf:49:f8:cc:76:c9:14:bf:5e:15:
                    c2:7a:a6:94:54:63:46:f8:61:c5:3d:4a:d7:ef:16:1f:
                    6d:3a:d9:62:5d:e8:c7:d8:5c:e7:73:43:76:e4:ca:a4:
                    b5:d9:b4:d7:8e:3d:ad:89:d3:8b:8b:8d:69:f0:65:8a:
                    73:fc:57:a4:70:05:e5:2a:aa:30:1f:6a:81:93:70:c2:
                    a3:30:c2:62:b4:d3:00:0e:3a:d9:88:40:47:36:be:1d:
                    d4:12:98:fc:48:94:c9:2f:85:03:40:9d:f8:72:de:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:c1:cd:ff:e6:15:16:78:7b:c6:45:d5:16:92:12:2d:
        4b:cf:2a:6b:cb:aa:9d:82:ec:63:e1:f6:50:20:5d:e8:
        8d:41:bd:13:6f:50:ac:16:4b:d7:de:6c:5f:0a:f4:a7:
        42:e5:56:c4:e5:7d:af:1e:01:f6:82:6d:72:01:f8:a3:
        a7:95:da:92:d6:7b:ee:4e:f0:ec:df:82:fb:95:a1:99:
        8c:0f:b1:6f:1c:dc:aa:a7:28:2a:ad:f5:59:6d:95:a7:
        70:99:38:4e:1c:a6:4a:ba:93:73:f9:a3:c3:aa:bf:6e:
        28:18:65:06:49:6a:47:af:db:45:cd:72:9c:da:c1:77:
        b1:1e:51:10:10:80:e7:6f:cb:dc:83:0a:a9:b1:df:29:
        4c:af:dc:d7:fd:3c:6c:84:c8:f6:6c:ee:31:16:a4:a7:
        a0:15:7a:d5:dc:40:60:fc:2d:0c:b5:d5:28:06:5a:83:
        9b:22:79:e5:c6:aa:78:45:5d:48:8d:37:9f:ec:73:be:
        fc:72:38:50:ed:a7:56:68:2f:11:06:85:7a:fb:06:24:
        89:c1:a9:14:b8:75:93:55:c0:18:17:f1:c7:7d:23:6a:
        ae:20:a1:98:16:83:e0:a7:ad:a0:0e:a8:8f:77:f2:fb:
        d3:24:fb:93:df:31:56:a3:7b:ef:43:34:e4:79:e7:7e
    Fingerprint (SHA-256):
        94:0A:B0:7C:14:FF:39:3A:2A:0D:13:6F:40:53:5B:7A:95:C9:2C:5A:96:15:26:8B:C6:7F:0C:EF:3D:71:2D:1F
    Fingerprint (SHA1):
        55:89:41:15:C3:F8:33:0E:F6:12:DF:71:FC:14:29:33:A0:45:01:93
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4250: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120525 (0x1e67d24d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:07:26 2017
            Not After : Tue May 10 12:07:26 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:57:32:5c:c1:60:3f:3d:1b:d3:27:db:44:b3:e2:95:
                    07:39:da:98:df:6b:36:93:52:f3:9e:f1:71:ce:b1:aa:
                    68:87:77:58:17:35:58:72:d9:ae:2c:89:e6:0e:ab:d3:
                    d0:40:42:05:23:8b:5b:d1:eb:c6:0f:03:5d:72:52:e4:
                    87:5f:1c:0c:3d:5b:bb:7e:6c:c2:d2:dc:b0:5b:20:c7:
                    b4:1f:2c:fe:64:7e:74:e2:7b:3b:f2:58:5c:66:aa:d7:
                    3f:a7:29:9a:88:20:48:8e:6c:fc:14:1d:d7:fa:58:7b:
                    6a:e5:86:50:2f:78:c4:9e:5a:b9:2c:3b:bf:56:15:3c:
                    62:f8:8a:7d:02:dd:fa:ff:7d:91:3a:ac:dd:fb:70:4d:
                    8b:33:c4:8b:8d:43:25:89:67:e5:b7:32:88:25:c7:03:
                    27:9a:e2:54:dd:54:81:3c:9e:ef:24:60:d0:70:8a:87:
                    b3:65:82:c0:a6:2d:a3:48:81:1f:b9:91:40:9e:ce:37:
                    6e:e9:12:61:f4:10:13:96:c7:64:b4:79:d1:b7:28:d8:
                    06:75:66:c5:17:b8:4f:9b:41:38:86:4c:8e:2a:fd:4b:
                    cc:23:9c:4e:ba:35:54:65:a7:79:6f:94:62:78:95:81:
                    2f:dd:6c:fe:75:70:28:28:60:f6:12:b7:d6:bb:c0:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:de:04:db:81:23:ec:c0:42:a0:75:fe:48:93:5f:41:
        39:ff:2c:63:33:f3:06:67:86:97:0a:58:44:55:df:11:
        b4:dd:e7:34:df:91:ce:0a:6e:29:5c:2d:48:d2:db:f0:
        e9:a7:c3:b2:91:b6:db:1d:f4:be:03:be:f2:e4:15:b2:
        4b:b1:30:a8:af:65:bc:a1:77:3c:8c:5c:58:62:0d:01:
        ef:4b:29:d2:b5:dd:e3:fd:08:c7:ca:b0:ff:79:d2:bc:
        ac:42:78:7c:28:9f:c5:64:84:5d:35:f9:52:59:5c:51:
        e9:1e:f6:b4:52:82:1e:5d:83:9c:4a:1e:b1:58:10:db:
        59:0c:84:eb:30:95:8d:d5:26:bf:89:57:71:03:19:af:
        4c:01:46:69:be:77:bf:80:57:ec:ca:79:a2:eb:cc:71:
        09:eb:17:60:5c:48:d0:9a:ef:b1:a4:34:7e:41:37:43:
        92:ef:bc:77:5d:cd:c9:55:1d:cf:d9:f0:65:24:26:0f:
        86:bf:12:6f:b8:47:2a:7f:43:14:21:69:c5:a0:3e:c5:
        1e:31:5f:5e:41:6e:36:95:9a:22:55:bf:cf:ce:ec:b0:
        22:07:65:53:3b:c3:67:f1:e5:2b:78:17:e0:29:5b:b0:
        d5:8e:79:97:a2:6b:26:a3:32:fd:44:b1:9d:1d:ca:2c
    Fingerprint (SHA-256):
        48:D1:E1:C1:FC:01:C9:5E:9B:D0:8D:27:6A:79:AF:B9:91:44:AF:4D:A4:F8:0D:8E:D3:7B:FF:57:C4:C8:F6:4A
    Fingerprint (SHA1):
        D1:59:28:6D:5C:E4:2D:87:8B:11:00:C0:48:7E:79:4A:FE:23:D4:62
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4251: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4252: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4253: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4254: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4255: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4256: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510120530 (0x1e67d252)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:07:30 2017
            Not After : Tue May 10 12:07:30 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:5e:14:4a:39:06:40:4d:a5:bd:24:c0:70:cd:02:88:
                    23:50:8f:bb:d4:c7:72:93:d7:48:10:43:d7:d0:e4:1b:
                    37:e7:ac:f4:9c:8e:5b:2b:85:88:37:b6:f7:62:fb:5e:
                    20:14:d2:77:79:7c:b5:45:ee:a4:08:68:b2:72:92:58:
                    47:f1:2f:02:5f:20:d5:6a:94:15:44:93:18:3d:68:53:
                    0c:1b:31:e5:30:4a:5f:bb:a7:ad:40:20:94:e7:02:b8:
                    3f:56:0f:d4:87:82:6a:3d:06:fa:72:f9:83:00:b8:9d:
                    ba:ff:93:43:48:4e:a2:e6:e6:1f:3f:a7:33:b1:a6:4c:
                    a1:6f:ec:9c:13:bd:6b:60:80:d7:9a:2c:25:8c:ba:78:
                    91:6f:f8:7d:24:2a:74:1c:fb:9d:67:eb:1c:e3:87:2b:
                    8c:1e:84:da:dd:01:fc:42:22:fe:ea:b3:cc:f2:cb:0e:
                    e2:f3:6e:c8:bf:f3:72:92:71:94:4f:0e:f8:91:ec:f6:
                    b0:92:1a:92:b7:2f:54:18:2a:55:44:e1:1b:43:d2:2b:
                    c8:1b:db:da:aa:2f:c6:62:63:30:9b:8a:68:5d:21:cb:
                    70:c3:97:3c:93:07:00:5d:c5:f0:03:65:e3:e6:fc:22:
                    f8:6b:c9:75:ce:52:b0:20:56:63:76:c6:79:51:17:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:ef:0f:f7:69:2b:8f:73:d7:41:8b:ea:46:b2:08:2c:
        3f:e3:a5:0b:bf:33:96:7f:41:68:13:06:d7:3e:f0:33:
        e1:e3:c7:16:66:a6:21:93:f4:be:fc:df:b0:ac:87:a4:
        4a:86:63:db:d7:4d:c7:e5:c5:c7:60:78:6c:27:fb:d8:
        6d:e8:dd:28:69:ef:46:a9:f8:05:5d:47:c1:3e:bc:a4:
        b0:52:12:fb:8d:7a:ff:54:9a:0b:c9:d7:cf:6d:fa:70:
        15:d6:3a:d9:9c:a3:1b:e3:07:05:fa:8b:db:3b:5e:fd:
        5b:c5:9c:6c:04:4d:60:c9:1a:9b:37:30:d8:cd:05:59:
        a3:ae:ea:a8:cc:dd:3a:fd:25:74:e0:3a:ce:89:4a:93:
        ca:dc:d9:b9:47:f2:c1:b6:3d:1b:4d:bc:0b:dc:cf:7c:
        c9:3f:76:66:ed:54:d1:fe:50:48:c2:02:1a:3a:09:53:
        b8:84:39:d4:9d:07:cc:0a:a5:db:c7:58:9c:ec:6a:30:
        c3:7d:f1:b1:83:93:1e:b7:d3:b0:d7:d1:72:00:3a:86:
        db:a0:60:d9:7d:68:ba:d3:c1:93:9d:c7:99:1a:73:fd:
        8c:82:6a:08:c6:c9:ab:23:bf:c2:5e:1d:70:c5:8d:b4:
        d0:77:5a:3e:56:dd:f1:a6:28:33:c8:11:7f:4f:00:62
    Fingerprint (SHA-256):
        55:38:CD:7E:E7:5D:2A:6C:0A:01:8B:A0:B0:9D:78:F4:CE:1D:7F:CF:FB:AC:63:6F:59:81:6E:DA:39:50:AB:38
    Fingerprint (SHA1):
        F1:7B:A6:F9:BC:32:DF:54:B6:98:6D:2F:C5:EE:56:A2:99:29:D3:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4257: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4258: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4259: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4260: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4261: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4262: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4263: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4264: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4265: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4266: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4267: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4268: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4269: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4270: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4271: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4272: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4273: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4274: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4275: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4276: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4277: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4278: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4279: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4280: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 9251 at Wed May 10 12:07:33 UTC 2017
kill -USR1 9251
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 9251 killed at Wed May 10 12:07:33 UTC 2017
TIMESTAMP chains END: Wed May 10 12:07:33 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 12:07:33 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 12:07:33 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4281: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 12:07:33 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 12:07:33 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4282: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4283: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4284: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4285: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4286: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4287: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 12:07:34 UTC 2017
TIMESTAMP ec END: Wed May 10 12:07:34 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 12:07:34 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #4288: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4289: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4290: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4291: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4292: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4293: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4294: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4295: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4296: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4297: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4298: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4299: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4300: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4301: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4302: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4303: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4304: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4305: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #4306: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #4307: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 12:07:34 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 12:07:34 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4308: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4309: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4310: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4311: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4312: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4313: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4314: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4315: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4316: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4317: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4318: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4319: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4320: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4321: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4322: create certificate: sign  - PASSED
ssl_gtest.sh: #4323: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 12:07:36 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Wed May 10 12:07:36 UTC 2017
TIMESTAMP libpkix END: Wed May 10 12:07:36 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Wed May 10 12:07:36 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #4324: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #4325: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4326: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4327: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4328: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #4329: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4330: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4331: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4332: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4333: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4334: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4335: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4336: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #4337: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4338: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4339: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4340: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4341: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4342: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4343: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4344: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4345: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4346: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4347: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4348: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4349: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4350: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4351: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4352: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4353: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4354: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4355: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4356: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4357: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4358: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4359: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #4360: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4361: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4362: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4363: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4364: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4365: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4366: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4367: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4368: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4369: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4370: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4371: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4372: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #4373: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4374: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4375: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #4376: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4377: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4378: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4379: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #4380: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4381: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4382: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4383: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #4384: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4385: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4386: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #4387: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4388: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4389: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4390: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #4391: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4392: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4393: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4394: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4395: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4396: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4397: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4398: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4399: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4400: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4401: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #4402: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4403: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4404: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #4405: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4406: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4407: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4408: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #4409: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4410: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4411: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4412: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #4413: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4414: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4415: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #4416: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4417: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4418: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4419: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #4420: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4421: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4422: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4423: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4424: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4425: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4426: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4427: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4428: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4429: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4430: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #4431: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4432: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #4433: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4434: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #4435: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4436: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #4437: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4438: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4439: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #4440: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4441: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4442: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #4443: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4444: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4445: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #4446: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4447: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4448: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #4449: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4450: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4451: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4452: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #4453: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4454: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #4455: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4456: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #4457: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4458: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4459: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4460: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4461: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4462: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4463: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4464: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4465: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4466: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4467: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4468: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4469: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4470: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4471: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #4472: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4473: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4474: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4475: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4476: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4477: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4478: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4479: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4480: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4481: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4482: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4483: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4484: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4485: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4486: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4487: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4488: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #4489: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4490: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #4491: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4492: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4493: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4494: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #4495: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4496: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4497: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #4498: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4499: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4500: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #4501: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4502: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4503: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #4504: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4505: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4506: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #4507: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4508: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #4509: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4510: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #4511: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4512: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4513: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4514: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #4515: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4516: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4517: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #4518: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4519: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4520: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #4521: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4522: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4523: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #4524: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4525: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4526: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #4527: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4528: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #4529: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4530: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #4531: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4532: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #4533: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4534: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #4535: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4536: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4537: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #4538: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4539: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4540: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #4541: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4542: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4543: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #4544: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4545: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4546: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #4547: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4548: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #4549: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4550: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #4551: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4552: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #4553: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4554: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4555: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4556: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4557: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4558: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4559: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4560: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4561: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4562: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4563: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4564: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4565: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4566: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4567: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4568: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #4569: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4570: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4571: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4572: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4573: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #4574: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4575: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4576: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #4577: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4578: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #4579: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4580: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #4581: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4582: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #4583: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4584: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #4585: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4586: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4587: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #4588: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4589: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4590: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #4591: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4592: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #4593: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4594: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #4595: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4596: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #4597: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4598: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #4599: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4600: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4601: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #4602: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4603: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4604: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #4605: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4606: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4607: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #4608: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4609: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4610: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #4611: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4612: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:52
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:56 2017
            Not After : Thu Aug 10 12:07:56 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:49:38:9d:e0:44:2a:1f:8b:1d:04:83:b9:65:11:b8:
                    47:cd:43:ae:b8:d0:5b:3f:a8:b5:58:bb:10:4f:22:4c:
                    71:7f:ea:c5:57:17:c2:9b:3a:46:4c:b3:af:4c:a9:24:
                    17:88:97:24:3f:6d:d2:b3:66:4d:19:eb:30:8c:8f:91:
                    10:43:99:d5:6e:3a:19:f0:fd:3d:a1:cb:e2:0a:6b:8f:
                    ac:00:67:e9:c5:11:d7:7e:cf:1d:31:e0:76:44:ad:50:
                    ff:ab:e8:c8:4d:8d:c0:53:8f:4e:ea:b2:b1:d6:e0:13:
                    f7:ce:6b:a9:f7:af:2b:86:fa:32:8d:52:fc:28:1f:28:
                    87:29:db:14:36:3a:32:4c:71:35:96:07:91:c3:84:20:
                    c3:b5:27:23:69:38:54:1c:5d:b3:94:e5:5b:21:d6:2a:
                    8e:ea:a3:68:07:c3:da:76:d5:51:b2:26:1d:7b:5e:4f:
                    0f:eb:9c:63:a2:9f:64:fe:59:3f:12:e2:af:cc:35:e5:
                    68:48:9e:f9:6c:13:a9:4a:54:6a:d2:c1:5e:a1:ef:f1:
                    b0:6a:2e:ba:7a:33:3e:45:f0:f4:8a:79:e6:2d:dc:4f:
                    b0:c5:3b:18:f8:54:e6:c4:66:13:20:6d:88:83:c5:f8:
                    80:0f:7e:f5:11:47:ee:72:e4:d7:b2:c8:02:3c:c3:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:a5:6d:93:b8:09:18:d4:1b:39:71:b6:47:05:2f:f2:
        f7:0d:6f:2c:ca:45:41:77:cf:4c:2a:8f:25:45:fb:91:
        67:02:cc:69:ee:5b:ef:23:7e:be:bb:46:f1:3b:c4:91:
        9f:98:f5:a2:bb:30:a6:8f:2b:ed:61:44:d0:33:37:e6:
        55:94:a2:57:f9:98:bc:cd:bd:96:4f:2f:5a:b5:a4:d7:
        aa:75:f0:79:d1:0f:33:5d:17:af:3c:38:e3:78:a5:6a:
        20:f6:55:e2:c6:ac:9d:97:87:95:22:7b:da:4f:6d:87:
        99:85:33:e4:13:ec:9f:47:b7:0f:3f:51:78:1e:57:e7:
        21:a7:cd:36:4c:25:a9:a8:53:96:da:f4:38:7e:7d:93:
        34:44:93:c4:a5:13:cf:65:f4:b9:f3:c0:81:65:c6:00:
        3a:33:10:df:cd:a3:45:8f:1b:d7:01:97:d6:fe:ad:0b:
        4c:23:d4:2b:c7:5b:6f:80:60:e7:e0:6e:05:51:f9:7f:
        02:58:94:68:d3:10:b3:3a:6d:be:f9:e9:82:46:6f:3c:
        be:70:a9:0e:27:b3:93:2b:f2:48:72:ae:d0:20:34:b4:
        5d:19:fe:49:5b:e8:61:e8:39:63:71:b1:d8:95:39:a2:
        c3:69:4f:0a:53:87:99:ae:d9:60:24:ef:ea:18:5c:f1
    Fingerprint (SHA-256):
        D2:15:FA:9A:35:0C:E5:05:92:83:74:A9:22:9D:B3:68:22:74:8F:1C:A4:61:B4:E5:42:C0:2A:8D:DA:F6:D7:2F
    Fingerprint (SHA1):
        E2:2B:97:13:D1:7B:BF:3D:54:DB:EC:B8:B4:CC:58:D5:F0:7C:06:21
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4613: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:53
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:57 2017
            Not After : Thu Aug 10 12:07:57 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:a2:f7:62:b8:ee:67:36:a7:26:0f:20:2c:1a:1c:62:
                    de:16:1e:10:ae:ae:3d:86:80:86:78:3f:8e:e7:ae:ce:
                    9f:4a:61:54:e2:a0:da:99:9f:48:f0:ef:78:78:fa:e5:
                    79:d4:d6:2c:c9:16:b8:58:6d:76:ef:bc:ed:87:93:b7:
                    f1:17:4b:50:f9:d3:15:8f:e1:a0:6d:11:67:38:ae:e0:
                    a1:16:9a:6e:39:6d:01:a5:b3:e3:9a:c4:1f:d3:8e:f3:
                    ec:3c:39:cf:6b:ff:83:48:16:87:b4:b2:89:e3:81:7f:
                    7a:39:1f:76:66:af:bc:b6:72:67:68:39:6c:63:55:e7:
                    dc:05:17:2f:05:cf:2b:24:d3:ea:12:c8:33:7d:a8:b2:
                    9e:70:d6:04:32:09:56:f6:fc:b4:0c:85:60:fa:fb:11:
                    d5:97:4d:40:2d:61:79:68:d7:58:c7:32:2d:9b:30:80:
                    be:11:cb:ae:24:17:a3:62:d2:d8:3b:12:f9:42:d0:6a:
                    91:92:b8:32:92:28:26:a7:c4:f0:0e:a4:c9:12:df:27:
                    89:64:59:70:08:f8:0a:6c:77:91:05:89:55:7a:d0:64:
                    40:0d:e9:31:9a:8d:28:01:33:6a:1d:1f:f3:f5:0a:ce:
                    23:0a:22:f5:dd:56:98:a5:f2:b6:91:8a:62:83:2b:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:4d:fe:59:1f:90:ef:94:05:20:5b:69:45:25:b5:39:
        b8:31:82:47:a8:f7:1c:43:9b:4f:10:aa:29:78:d5:94:
        39:bf:e0:44:39:da:1f:59:d1:f3:b0:e2:40:f5:cc:ff:
        1a:5f:db:44:c5:21:ff:73:81:d4:b7:9a:bf:5b:c2:7a:
        58:b9:a9:54:b3:04:b8:54:c0:18:dd:ba:cc:0e:e4:3c:
        1b:12:3b:26:62:1c:b1:5d:31:77:83:d2:2f:33:8f:20:
        44:25:98:f2:69:cc:84:96:0d:46:d7:8e:e9:d4:b8:d4:
        8a:2e:e0:f1:0c:09:7f:c6:ff:cd:4d:d1:5a:8b:ba:77:
        f3:12:fd:35:9a:19:92:ff:94:13:41:0b:4a:4c:32:c2:
        76:4c:b6:a1:b6:5a:0b:98:81:63:09:53:42:3c:2a:d4:
        e6:3b:de:b5:5a:0d:4b:54:b0:db:0f:25:7e:42:34:20:
        8d:43:d4:b8:d0:89:c5:27:07:bb:3c:d9:fd:a6:ee:54:
        8e:e7:36:6b:f9:95:d8:e1:4c:18:35:9c:a8:b3:38:c1:
        13:d0:47:ba:df:4b:a5:b5:11:86:f0:60:2b:93:20:1d:
        26:7d:26:71:a3:46:2d:4a:15:7f:3b:d0:3a:be:85:f1:
        00:96:64:31:01:8e:73:15:fc:b0:90:fe:bb:37:71:4d
    Fingerprint (SHA-256):
        D4:5D:F2:87:E4:F6:98:D6:2C:57:B7:D3:92:49:0D:0D:20:1A:C0:06:ED:9B:A1:59:1A:C4:F5:EE:A5:D9:87:A3
    Fingerprint (SHA1):
        09:CD:AF:E9:E8:5A:C0:A0:17:77:4D:64:83:1A:1C:1A:E5:C2:9C:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4614: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:54
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:57 2017
            Not After : Thu Aug 10 12:07:57 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:db:57:f4:d6:b9:61:9c:66:54:57:45:63:56:08:bb:
                    2f:af:d6:22:51:87:ef:aa:01:f1:b4:20:31:7b:2d:46:
                    2f:06:e5:2b:cd:51:19:f0:87:2b:e4:75:64:18:32:06:
                    29:a9:38:c7:5d:33:a9:12:a3:39:2b:c0:74:4f:0f:f2:
                    2a:31:a8:ff:2c:e5:48:90:57:55:eb:1e:3e:48:cd:30:
                    53:df:6d:5d:47:ea:19:91:67:77:77:c0:d5:c8:14:c8:
                    00:70:e7:1e:d3:a3:e7:17:1d:e1:3b:4f:46:f2:9d:3c:
                    d5:72:9a:d8:54:0d:36:41:50:54:90:1f:d6:09:17:d3:
                    ca:00:54:ea:e2:48:c6:24:00:c0:a9:14:a8:54:6b:79:
                    08:c0:98:3c:28:13:30:71:0f:57:4c:c7:3b:fa:2b:0c:
                    6a:a4:db:13:d2:da:69:0e:12:11:88:00:04:23:57:ee:
                    3e:b8:5e:31:ac:fa:7c:36:6f:92:ab:90:44:51:18:d8:
                    9f:a7:db:7f:96:43:1c:b2:bb:41:a1:1c:49:63:4b:4d:
                    f9:96:53:53:29:cd:5f:e2:70:e2:d1:f1:86:1d:4c:8e:
                    9b:26:67:81:0b:b1:38:dd:11:45:68:4c:d7:aa:d4:02:
                    b9:fd:2c:52:5e:d4:b1:76:c4:c3:99:e3:e7:30:6d:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:de:5d:ac:4f:75:77:36:9f:c1:92:e1:14:b9:46:64:
        f0:86:67:3e:da:fd:b6:b4:49:d7:fd:2f:67:2a:73:a1:
        b7:e8:c4:6c:4b:5c:e3:25:10:63:bc:b4:b3:8a:82:b5:
        2b:96:47:1c:d3:ab:1d:ea:2b:2e:c1:8a:e0:13:1e:dd:
        a1:09:84:c3:9a:41:ae:7d:6c:59:d5:2f:6d:48:34:53:
        d4:5b:91:8a:5d:4c:e2:55:b1:a6:ea:13:09:de:a6:4b:
        43:8a:99:ff:d5:9b:3d:50:1d:d5:80:85:6a:50:72:66:
        f5:d5:b0:2f:3d:aa:1e:87:dd:31:8b:e4:e9:f4:e7:67:
        f8:32:b5:7d:c6:ae:1f:40:c3:a0:0c:16:c6:a6:e4:9a:
        fd:85:3e:f5:54:b2:f7:8d:5f:9c:15:69:91:66:a5:5e:
        a8:ac:4a:61:82:d9:4d:b8:f8:55:a4:2d:20:e8:79:aa:
        9c:07:b4:17:f6:aa:b7:65:4d:7b:eb:b7:a1:12:c4:56:
        dc:4b:29:4e:6d:14:d1:51:34:cd:68:e1:02:be:e1:9c:
        ec:dc:54:94:bc:f4:61:4a:26:f0:ec:7c:8b:76:61:f0:
        b2:43:52:72:c9:d7:52:32:3c:10:5c:e8:7a:c3:2f:d7:
        5c:8a:e8:1e:69:29:44:61:c0:15:24:0b:01:9c:ff:d4
    Fingerprint (SHA-256):
        C9:26:D4:F2:75:59:9F:8C:C0:F1:91:A0:1C:14:84:5A:AB:2D:D2:18:C5:23:D1:E4:52:7D:86:F4:90:12:8D:29
    Fingerprint (SHA1):
        29:4A:8D:1F:9E:D4:4F:73:AD:6F:00:CC:C7:58:42:0B:83:F2:78:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4615: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:55
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:58 2017
            Not After : Thu Aug 10 12:07:58 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:5f:ed:89:7a:ca:61:cf:3f:23:41:12:60:c1:29:2a:
                    3e:ed:9f:87:a0:69:a1:2e:67:cc:c0:5f:dc:f9:8e:24:
                    92:c9:79:df:8d:c2:c6:12:d0:3d:af:34:35:4a:c6:b4:
                    94:63:2a:48:82:83:aa:9b:93:ec:5d:e7:f4:a6:cb:89:
                    bb:a8:91:93:7c:7b:7b:5f:c2:0d:08:d2:fa:5e:fc:da:
                    eb:61:d8:3a:40:2a:10:7c:9d:c0:ae:7e:4e:cd:6e:b6:
                    64:1c:2c:72:c6:92:0d:6e:4c:76:fe:10:93:3d:cb:26:
                    72:0d:44:8a:a4:50:cd:6d:56:b8:9f:8d:56:ea:61:38:
                    45:c6:e1:a5:41:d0:f7:d3:b1:83:c5:14:1e:3f:72:6c:
                    a3:2e:fd:e6:59:e3:f5:62:5b:9c:4f:75:ef:a6:82:27:
                    7d:f0:c1:6f:49:bf:16:b5:83:90:bf:8c:a7:5d:86:99:
                    87:bd:e0:a5:1e:cc:ed:0a:6a:88:ca:19:d9:54:11:a2:
                    56:3c:d1:c5:9c:a8:c8:84:dc:fd:82:a6:4e:10:34:9a:
                    7a:7a:cd:0c:3b:f2:f3:06:96:99:ab:c1:19:8a:55:b2:
                    11:61:ee:7b:af:7b:c6:8b:21:e9:ff:bb:0d:26:0b:ac:
                    42:15:7d:90:dd:31:6d:42:a5:80:e8:07:19:a2:8c:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:3d:50:7a:12:66:af:d9:16:3f:f9:db:74:8c:75:87:
        10:61:a1:14:ae:e3:ae:a3:5d:f5:5d:82:5c:86:82:16:
        7c:5a:c5:8e:bd:bc:17:e0:72:66:16:3c:58:6d:e3:c2:
        f6:74:b8:9a:1a:cb:5b:a0:c0:10:6d:ec:be:20:8a:a2:
        cd:5c:60:5a:d6:f0:57:64:8c:08:39:f7:96:ab:2e:e5:
        5a:6a:80:82:be:c4:bd:8d:3f:64:15:9a:a3:48:4d:14:
        b0:56:28:e9:fd:42:55:8d:d4:bc:eb:bd:05:f4:fc:48:
        a3:f2:97:eb:69:d9:5a:59:41:bd:ec:0a:24:80:9e:4f:
        4a:c0:41:7c:72:4e:b0:18:3e:3a:98:d2:61:c2:aa:e8:
        38:64:f0:1b:ee:40:87:48:12:98:3f:66:21:92:6e:a8:
        b5:3a:ce:2f:fe:0b:be:d1:47:d3:76:bb:3c:e7:c0:be:
        5a:06:ca:7a:5a:12:81:cf:ee:ab:60:ed:01:ae:ab:67:
        ce:e3:2a:8c:a4:2e:fd:07:9d:f2:05:62:34:69:61:de:
        0d:20:de:58:3c:41:f9:87:82:5c:a8:80:f5:92:ec:e7:
        33:51:f3:7c:6e:44:be:90:7d:e6:b0:0f:4c:9d:f4:84:
        9a:33:d4:5e:30:e2:37:04:9e:9a:18:75:a8:87:95:b4
    Fingerprint (SHA-256):
        45:97:5B:A7:8C:3D:AE:F2:6A:AD:18:80:7D:1D:D3:55:2D:B0:9C:7B:B8:0D:9D:A1:7F:E0:67:70:6B:FF:76:92
    Fingerprint (SHA1):
        A4:A2:9C:7D:1B:EA:E2:0E:62:9A:AB:ED:36:F7:62:E9:23:CC:F2:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4616: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:56
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:58 2017
            Not After : Thu Aug 10 12:07:58 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:37:8f:bc:38:15:2c:c2:b2:0a:53:94:2c:77:34:cd:
                    ca:ec:65:b3:75:12:eb:d9:f9:18:9a:86:10:e1:5c:69:
                    f0:d8:45:80:6f:01:05:31:f9:ce:ba:21:70:79:39:30:
                    43:4a:4c:16:35:f0:34:5e:ab:c9:b1:b1:cc:fa:38:e4:
                    5a:d6:b4:0d:5d:46:5c:71:54:e4:c6:0f:91:fc:09:2e:
                    41:42:87:9f:1a:69:ff:2b:35:ae:d0:28:2e:70:1e:d9:
                    94:8e:20:19:d5:15:74:e1:36:0c:72:d3:0d:b8:43:6f:
                    e9:7f:7b:3b:ab:f7:ab:15:77:45:83:b4:95:64:49:76:
                    d5:46:7a:5b:d4:e1:2d:af:f2:0b:09:4a:ca:f4:a3:02:
                    09:75:ae:5e:97:47:5e:4f:ea:53:b1:9d:bb:cc:4f:b5:
                    6f:7e:9f:13:8a:50:cc:8a:31:b3:e9:bd:a8:9b:16:30:
                    a7:be:2d:61:f0:1e:20:41:da:a0:91:74:84:88:ab:d1:
                    d2:02:63:f8:ca:4c:8a:c8:1a:39:d9:c0:be:8f:92:aa:
                    2b:69:68:fc:cb:62:53:3d:47:71:c3:34:e2:0c:5c:70:
                    83:8b:b0:cc:86:05:9c:06:df:13:3c:87:6a:52:8a:4f:
                    30:5b:70:62:f8:a0:39:b2:b1:8b:e6:70:9c:df:ad:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:cb:12:42:61:f6:3b:44:9b:87:42:7f:2c:42:05:66:
        dc:da:89:a1:39:98:f4:3f:c9:40:8d:be:73:4b:17:f9:
        35:aa:c8:5a:04:ca:58:cd:ad:cf:40:ac:52:48:6a:b5:
        5b:fb:3c:f4:51:9f:94:05:24:86:ce:54:a3:f9:3e:c2:
        ee:0e:d6:b5:81:f6:01:c3:0d:47:54:83:cc:b0:8d:f2:
        cd:0c:f3:3c:a4:ef:64:4d:74:ef:bd:88:33:7b:83:e2:
        4a:22:e8:53:4a:54:2c:07:7d:34:f9:e8:48:2f:a2:38:
        ec:44:58:35:95:28:6e:53:1f:94:f8:5e:25:70:68:1d:
        1f:5f:06:84:0d:05:39:19:a2:62:7e:31:be:fa:49:f7:
        56:75:71:fa:2f:11:00:d1:ba:cf:d7:36:e7:e3:bd:a7:
        be:73:95:5e:15:30:8a:66:83:08:f8:ee:ee:11:da:2e:
        c6:3a:22:b5:fd:3a:93:3f:14:0e:f9:d2:fe:b7:54:69:
        47:46:28:c0:97:88:38:81:45:56:de:b2:89:c9:d6:0c:
        cf:39:cc:25:1a:b2:75:c5:3b:5e:9b:43:41:92:f5:b7:
        c4:17:80:0f:ee:4e:db:02:6f:77:dc:40:b7:fa:43:54:
        89:4c:53:0a:b3:78:e0:cc:c2:89:d4:7a:1a:b7:f4:65
    Fingerprint (SHA-256):
        92:09:A7:69:BD:AD:F4:2D:7B:28:5A:AC:D7:A2:0A:01:3F:CA:40:2B:7F:86:F8:17:62:B6:73:84:3B:E2:7B:A7
    Fingerprint (SHA1):
        30:3B:B1:8A:5A:FF:CA:24:AD:ED:DB:DF:D8:F4:23:0A:DA:B1:F1:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4617: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:57
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:59 2017
            Not After : Thu Aug 10 12:07:59 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:28:9e:c6:e8:86:9e:b6:97:b7:5e:1d:b4:fb:47:31:
                    6d:ca:ca:c9:75:fa:96:50:e6:30:7f:0c:10:a1:a4:bc:
                    99:90:b9:85:89:58:de:f4:cf:83:ce:31:c7:5b:ec:1a:
                    ea:9b:44:66:a8:07:ac:e4:f9:12:91:cc:fc:ba:1f:55:
                    ad:ee:61:06:ca:a9:64:b2:bc:0d:0f:32:e7:62:56:ce:
                    15:20:b5:c2:cd:01:66:46:7e:fd:1b:68:6b:b3:d8:41:
                    7e:3a:7f:01:71:20:c2:85:1a:46:74:f0:e6:60:68:e1:
                    bd:fc:31:46:dc:a0:d0:1d:62:bc:43:8e:ae:73:f7:3d:
                    1f:28:17:b9:1f:bd:6b:60:7e:12:c3:20:10:03:d5:7c:
                    03:c5:2f:8c:35:3d:63:05:4f:29:bb:ad:4f:ec:7b:30:
                    9d:31:83:a8:f5:87:84:f9:4d:e8:0d:b9:ac:d6:bf:3f:
                    61:0d:82:54:e0:04:15:1a:2e:00:10:4f:6b:9b:c1:3d:
                    f2:ec:a6:2f:16:5e:c4:6a:eb:f0:a9:29:34:ef:7e:18:
                    bc:d5:ff:48:6f:48:a2:e7:53:c5:b8:88:60:f4:cd:0d:
                    cf:0a:53:08:1a:6a:d9:04:87:6b:9b:7a:71:79:d2:af:
                    7b:02:df:0b:1b:0a:cd:80:48:f6:af:95:fa:77:03:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:da:18:e0:ce:54:26:2c:56:9f:6d:60:1a:1c:31:99:
        a1:d6:64:bf:e4:b4:d5:5f:9d:84:c8:10:be:9d:b5:07:
        0e:c0:fc:1f:17:b6:59:b0:a4:1b:43:58:e5:db:fc:55:
        1e:82:99:ed:c9:f9:d5:11:e6:42:55:ce:bc:5e:3d:ad:
        d2:d7:9a:a3:29:b7:71:39:fc:1e:1a:87:10:08:9c:1a:
        97:a5:9b:85:31:23:71:21:5b:97:33:ab:fa:0e:7a:fd:
        c3:9c:5f:60:04:52:71:c8:44:db:dc:a7:d4:70:86:b3:
        3f:4d:14:2f:e3:11:d7:c7:d0:b8:ce:e9:d7:15:a7:ec:
        03:8a:5e:4f:8c:4d:9b:44:e4:76:c1:0d:b1:98:80:63:
        b9:6b:70:bc:f0:0e:c8:eb:04:77:94:b3:26:ad:7c:4f:
        91:29:44:76:5a:3c:33:52:6f:81:99:eb:6f:df:18:14:
        26:87:22:bb:5f:79:cf:76:c5:e2:88:f2:6e:f8:9f:f0:
        88:34:45:71:da:c7:53:a6:11:2c:65:ba:4e:58:bb:29:
        18:f4:c8:fa:f4:9b:74:43:19:36:62:2b:9f:9c:4f:ec:
        e7:11:5d:7d:45:6e:11:c0:9a:46:7a:8e:c5:a5:62:22:
        72:ec:6c:75:62:af:dd:c8:f5:ac:b1:96:83:7e:34:49
    Fingerprint (SHA-256):
        B7:ED:61:51:D1:76:1B:FC:2D:B0:20:80:8A:70:5F:3F:EF:E2:29:68:42:94:F0:E5:5F:FD:5B:3D:D0:3C:02:B3
    Fingerprint (SHA1):
        A3:63:B0:54:72:9D:67:82:23:37:B9:C5:1A:86:C2:DE:96:79:AE:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4618: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:58
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:07:59 2017
            Not After : Thu Aug 10 12:07:59 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:c9:db:b7:a1:d0:cb:ea:c7:2a:8f:43:ac:91:42:a6:
                    77:e3:b8:0d:53:17:3b:cd:be:d2:c6:fa:78:d9:4f:ba:
                    6f:62:77:fd:9f:4a:fb:1b:82:cd:17:bb:ee:57:94:2c:
                    24:1c:89:7f:a1:db:d3:59:74:21:fe:66:08:de:8f:38:
                    86:21:a4:7a:b2:57:53:f3:87:60:fe:03:bf:38:4c:ef:
                    b9:c5:58:66:37:d7:cd:8a:11:4d:cc:43:74:a5:87:c6:
                    78:a1:74:0a:bd:52:9d:dd:86:f5:84:fd:05:56:c8:48:
                    4a:22:ef:5b:95:3e:a4:41:22:8e:99:95:37:83:44:5d:
                    02:62:24:c8:14:da:32:e4:c8:9b:48:fd:22:fa:62:f9:
                    36:3c:16:c5:1d:c2:18:de:aa:86:f1:c0:64:ef:3a:2f:
                    6b:dc:20:33:2b:ec:6f:c1:ae:97:c0:6e:78:5c:fd:01:
                    40:b6:fc:61:79:41:ec:5c:e1:2b:4c:db:75:a3:62:c2:
                    b3:c4:21:47:b1:55:1e:6c:b4:87:44:ec:e0:82:fc:6e:
                    8d:ae:fe:88:fb:73:c5:5a:b3:ba:76:fc:63:64:b3:45:
                    69:fe:03:10:8a:6a:6e:11:96:2a:dc:75:0f:02:4a:bc:
                    20:af:42:c9:11:9b:fb:f8:46:47:82:60:1e:df:66:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:e7:6e:c1:9b:ec:f8:e0:f9:dc:87:d5:54:66:a0:f7:
        8c:61:c6:42:78:4a:93:5d:be:90:d0:36:94:33:11:88:
        35:cd:f8:03:2f:71:31:10:a5:47:a5:a4:d6:cc:32:45:
        0c:5d:d7:ba:4f:36:60:1e:4b:45:e0:cd:50:21:fa:13:
        4c:b0:c5:35:95:2f:e4:29:39:02:50:f8:94:ad:e3:0d:
        f5:4d:b6:4e:49:b1:28:4d:6a:d0:c6:f6:7e:70:2f:1b:
        cd:df:c3:fb:e6:c2:f1:99:82:c0:21:ea:45:d2:65:9d:
        56:b1:5d:eb:9c:30:19:ca:5a:a0:ce:eb:56:c2:96:68:
        03:5e:c0:01:e5:4b:a3:74:4d:9c:57:f6:1b:cd:0f:b9:
        fa:87:14:25:8b:59:00:1d:cf:c4:fa:50:fe:3f:6a:e7:
        b5:ef:68:04:33:26:43:f4:c8:67:a3:05:7f:91:1a:50:
        4f:49:14:c5:59:28:7e:ec:45:9d:e7:b7:e0:30:88:c7:
        ec:f7:c2:b3:0f:3c:39:15:3a:e3:0d:6c:73:e5:db:9e:
        08:2c:5a:97:3b:c5:ba:89:e3:3f:b8:06:6c:a0:c2:16:
        e6:e1:06:5b:8f:3a:eb:25:33:78:63:2c:0b:3c:29:25:
        44:24:81:f9:ed:9d:b6:47:e5:fa:36:a2:41:48:ce:0e
    Fingerprint (SHA-256):
        EC:B9:A1:BC:13:9D:1C:8E:AB:BD:3D:06:6C:C6:48:7D:42:C9:E3:0C:58:99:B9:8B:B7:7B:BE:0D:12:4D:7F:A9
    Fingerprint (SHA1):
        8A:1D:5D:BA:74:A1:52:93:15:22:CC:D0:80:BC:3B:41:4F:56:DB:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4619: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:59
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:08:00 2017
            Not After : Thu Aug 10 12:08:00 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:46:c3:81:6a:60:4a:d4:94:4f:4d:41:55:c9:5d:70:
                    91:39:a5:0d:1b:33:a1:8b:73:79:95:93:be:0d:b7:6e:
                    15:98:65:3c:c2:04:80:69:a1:09:42:52:4e:e4:3f:bf:
                    89:07:86:4a:a2:87:4e:69:01:3b:8d:a0:76:24:c3:3a:
                    f2:0c:90:2f:70:83:6f:c5:dd:54:29:6f:42:89:ed:db:
                    98:84:d9:91:19:a9:0d:d5:94:0c:3a:4c:97:3f:d4:95:
                    d0:a5:26:3e:a6:30:b5:16:e3:04:3c:a1:9c:e3:11:a1:
                    25:03:90:54:b3:00:69:40:3b:d8:31:70:d1:45:32:48:
                    8a:de:17:f5:50:81:33:c0:f3:3c:d8:e7:d5:c1:fd:5f:
                    75:d3:44:17:fa:ee:8e:21:93:0e:4c:9f:14:e8:ef:c6:
                    b0:03:ac:03:ba:59:9a:bc:73:f8:2a:4e:a9:4a:54:45:
                    d9:60:cc:49:3c:6c:3f:41:15:51:4a:43:36:29:4f:ec:
                    10:f2:6b:5a:11:1a:b1:9d:da:0b:9f:16:3d:ef:c9:80:
                    9c:f7:2b:2b:de:50:ff:99:83:64:5d:c9:7e:36:14:f6:
                    de:1a:8f:9b:82:8e:6c:cc:4f:b3:b3:c1:80:28:0a:40:
                    b0:06:84:c5:34:34:64:c2:98:5b:2a:1e:9c:b3:00:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:fe:1d:b7:9c:e9:2b:46:f3:17:8c:35:f6:62:dd:3b:
        75:cc:ad:97:f9:3f:5f:7d:79:e7:85:13:bd:b9:66:c7:
        23:73:25:b6:7c:c1:22:5b:b7:8e:1a:0e:b6:c1:29:c8:
        39:fc:52:32:ec:71:14:01:51:c5:97:73:1c:97:fd:2b:
        be:e7:50:4c:d2:0a:a4:a7:fe:b2:07:c1:bd:e9:1b:e2:
        f1:b7:95:a5:96:1b:a5:6d:cb:33:84:ed:95:42:a8:68:
        9e:ac:61:51:aa:52:4a:3e:5b:e3:53:87:a2:be:b2:d1:
        f5:d5:b2:4e:8a:fd:ff:46:20:93:8a:f5:dd:df:60:e9:
        b2:5c:1b:a2:be:c0:71:52:ea:54:a8:4e:47:74:8f:25:
        b0:08:f2:3c:8d:a7:3b:55:fa:1e:b1:51:8f:2b:4f:73:
        33:02:bc:15:89:06:3f:71:ec:86:e4:6a:e4:85:36:09:
        d5:56:fa:ef:35:c4:18:73:70:cf:6c:d5:fb:4e:c0:2c:
        f8:46:3d:f1:de:a8:ef:bb:34:d2:b1:13:1f:f0:9d:98:
        84:65:b3:5a:11:58:da:22:6d:06:08:c9:c1:de:ae:77:
        5a:61:22:6e:6a:4d:bf:53:fa:bc:48:47:d1:5e:38:e4:
        42:5b:98:e8:90:4d:e2:c1:ef:65:34:52:e8:58:21:29
    Fingerprint (SHA-256):
        24:25:82:66:28:4B:87:58:97:CE:FF:4C:B0:D7:CB:89:A0:F8:D6:01:E1:59:2B:CB:84:85:D7:61:27:C0:65:48
    Fingerprint (SHA1):
        A2:AB:B0:46:A1:5B:23:DD:86:75:46:5C:CC:D6:0B:B6:0B:8C:84:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4620: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:5a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:08:00 2017
            Not After : Thu Aug 10 12:08:00 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:05:f8:d4:02:51:bd:92:d2:e9:8f:ce:6e:e9:5a:be:
                    c0:92:d6:08:1e:d6:ce:54:48:65:e8:56:b5:36:96:7d:
                    e4:3c:d9:75:81:1c:6b:14:aa:05:d4:d8:7f:c5:da:dd:
                    c4:99:e3:99:e8:0e:6e:1a:2b:e9:4e:91:a9:58:77:04:
                    ee:06:e6:6d:f3:0b:5a:40:91:8a:ec:e2:01:5d:bf:c9:
                    85:8b:a0:0b:aa:64:d3:09:8b:31:33:b7:ea:c4:3c:56:
                    63:88:c2:f5:ae:d9:25:92:b0:37:99:d3:d5:86:34:19:
                    9d:a1:07:ab:c5:4f:d6:28:15:0a:19:de:9e:69:ae:d7:
                    51:b7:93:7c:ee:f7:d5:3e:3d:8e:9a:a4:d1:b7:0e:1c:
                    07:65:5e:2a:d2:19:5a:fc:28:c8:d5:07:b5:a6:b5:95:
                    b7:e0:c7:2c:3d:5b:d6:c5:fe:74:6b:98:dc:ec:68:f7:
                    4f:67:24:8a:d8:86:83:7f:6d:be:8a:4b:8c:bd:52:57:
                    08:fd:44:9f:6e:69:6a:38:18:c0:5e:ed:6b:b5:d0:8a:
                    e4:17:d1:c7:af:3c:e2:d3:ec:a2:2d:99:dd:50:1d:ed:
                    cf:18:70:85:88:9b:ff:7d:2f:71:73:2c:17:2f:1a:be:
                    ce:23:b6:18:40:36:e7:1e:0e:a0:6f:65:0f:5c:0a:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:e9:83:b5:c5:02:6c:bf:06:63:89:9d:f5:4b:e0:6a:
        1c:94:c2:a3:89:5c:97:fe:8a:71:8d:86:93:1a:05:d0:
        33:a0:8b:11:9a:d5:62:1f:c9:a9:9a:e2:d9:b6:76:3b:
        36:71:9c:ee:75:ae:51:e8:a6:9d:54:d2:05:aa:f5:57:
        4b:4c:a8:d2:c6:44:67:12:77:46:ae:65:87:d0:b3:38:
        5b:0d:d9:2d:12:b3:68:2d:e5:28:70:37:fe:64:08:c6:
        25:54:87:4f:6e:cf:9b:cc:2d:7e:d6:98:91:12:14:03:
        cc:68:6d:1b:0c:b6:5e:ee:36:78:17:7e:a1:88:ae:03:
        cc:c0:74:3b:0d:d4:2e:b6:1a:78:3d:92:0e:83:a5:1d:
        4f:7d:71:22:09:d6:b1:b7:1f:86:05:a4:a2:61:ad:0b:
        33:44:ec:ec:95:43:08:a5:ab:9e:1c:94:98:6e:4b:d0:
        61:bd:d6:63:7f:50:d7:a4:77:e8:e0:6d:9a:6a:f5:e9:
        0f:98:74:9d:dd:f1:c1:d8:30:33:e6:1a:fb:1c:10:c8:
        c9:0e:32:a2:77:0a:77:24:23:12:ab:09:d8:20:01:11:
        dd:f5:f7:e1:2f:5b:dd:9a:b7:c8:ba:b7:38:52:65:39:
        72:8b:9f:61:16:34:4e:1c:6c:da:7f:fb:29:48:38:b4
    Fingerprint (SHA-256):
        41:24:81:69:67:D0:04:1F:1A:FC:E1:B0:39:0C:32:0C:19:97:0D:8C:04:F1:2E:25:6C:99:15:2E:2F:D1:DD:FA
    Fingerprint (SHA1):
        6A:28:E8:43:29:66:4E:75:BE:1B:E0:4C:57:05:C9:5E:AE:50:57:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4621: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:5b
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:08:01 2017
            Not After : Thu Aug 10 12:08:01 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:bd:19:6c:c9:b8:0c:75:b3:18:37:41:b7:0f:c9:4b:
                    11:4c:eb:75:98:1c:cd:df:87:fe:64:6b:2a:bc:88:9e:
                    17:1a:2b:71:1e:86:11:8c:3a:8d:d7:0c:bf:c0:31:c2:
                    4b:0b:54:eb:9d:ae:98:a1:4c:96:59:e4:ef:ff:d6:fc:
                    f9:9c:c8:5e:8e:0e:9d:f4:1f:08:89:e5:cc:cb:d7:bf:
                    cb:3b:83:32:ef:11:60:dc:31:b3:fa:89:c7:88:9a:5b:
                    ba:50:a1:cf:f5:48:dd:26:20:45:33:60:ad:f8:cd:57:
                    99:f0:fb:bc:13:90:18:24:0f:21:bb:40:f9:f2:58:ce:
                    8a:e6:0b:e0:1c:98:23:a1:c7:c9:4d:f0:31:dc:22:14:
                    0a:0f:b3:ed:a8:07:29:ea:2d:6a:6b:db:68:77:26:63:
                    f3:e9:5a:f7:c6:e6:e6:e8:e1:21:52:fe:25:7d:ba:88:
                    eb:c4:84:c4:6a:58:e7:4f:c4:8d:b2:1d:28:97:ef:71:
                    62:c9:ce:5a:7f:91:18:e3:9c:29:45:61:2d:61:99:a0:
                    ad:c5:ab:01:2d:ee:b8:1b:16:ba:db:74:d0:b9:8b:64:
                    b3:af:51:bb:cf:6c:0e:cc:df:fe:2d:f9:4c:cc:6e:49:
                    2e:f5:6c:fc:4c:37:ea:a0:5b:c7:b4:78:3c:50:1e:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:77:65:b0:f7:67:74:42:74:a8:a0:89:d7:b1:a3:cd:
        a6:86:ca:15:61:ea:e5:50:cc:60:fc:b3:3c:77:cf:70:
        53:5b:83:ef:5d:5b:8d:4b:6b:9d:78:c7:60:df:4d:1a:
        4a:8b:9a:81:2c:09:56:53:b8:d7:10:fc:b1:2e:8e:ba:
        0d:95:13:b7:74:a5:64:68:b1:26:b2:0d:fc:60:8a:9d:
        9c:0b:0e:07:66:66:a8:44:5a:84:96:60:01:1c:34:5a:
        95:76:8b:3e:5e:82:62:31:1d:ba:7a:dc:99:3b:50:59:
        c0:7c:8f:9d:a8:9a:db:6f:5d:60:2c:3b:46:b3:da:98:
        65:46:00:16:9e:ee:1a:86:3a:91:b6:00:d5:fe:4f:00:
        67:22:80:9c:db:56:6e:aa:5b:d1:bc:c4:e5:21:fe:49:
        c5:a0:2a:ed:22:cb:02:25:36:11:15:9a:7d:22:88:d9:
        85:1d:4e:66:d6:b5:79:4c:b1:bb:6c:3e:d9:08:3d:52:
        0f:dd:85:24:39:c6:9b:51:8c:81:3c:8d:82:20:05:e4:
        59:1f:12:9c:d3:b3:4a:af:93:79:f5:29:f0:a3:39:bf:
        93:7c:1d:23:c3:c8:39:ef:cb:af:04:f3:d7:8a:4a:a3:
        8c:d9:72:fd:cc:c5:79:78:a2:87:98:f0:51:6f:cc:b7
    Fingerprint (SHA-256):
        DD:28:8B:63:2D:98:9D:21:A5:6D:72:22:49:83:18:3F:FF:F5:19:94:45:3B:40:4A:6E:D3:FD:65:85:28:60:08
    Fingerprint (SHA1):
        6D:21:88:D0:D9:19:53:54:72:7C:68:E5:DD:9D:2E:FF:CD:E8:A0:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4622: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:5c
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:08:01 2017
            Not After : Thu Aug 10 12:08:01 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:ae:4a:de:18:3e:26:6d:c4:6d:9d:c3:b2:80:51:fe:
                    0d:26:5f:7e:e2:e4:ff:c7:7d:d4:35:63:17:08:7f:9c:
                    24:9f:52:08:bc:9b:2b:14:0d:ff:88:e6:1d:62:a2:fe:
                    a7:39:aa:74:e8:a5:04:a4:15:78:3f:35:e5:17:fb:2d:
                    df:1f:05:57:7b:d2:54:51:78:2d:d1:d5:03:c3:a7:0c:
                    5c:83:4f:62:1c:f6:25:0a:16:78:73:97:1f:96:dc:f4:
                    4e:09:aa:30:ab:e7:6a:d6:db:0e:c9:be:28:83:3d:61:
                    80:74:ef:57:0a:51:61:92:96:e2:53:06:b2:33:fd:93:
                    62:cd:a1:fc:fa:89:56:73:b5:5a:c8:c1:7f:28:ee:cb:
                    11:b1:b4:fb:89:59:0b:85:a3:93:5d:d5:1a:05:bb:f0:
                    ff:c2:f6:ef:c7:54:09:8f:7e:be:97:54:d6:7a:34:43:
                    59:ef:d2:b0:4c:ea:d5:94:b1:0e:ee:ff:61:e1:3f:18:
                    c3:7c:e0:97:6a:e0:16:1f:f7:5e:f3:1a:54:7d:11:10:
                    f0:c0:e1:c2:64:e3:a9:9c:6e:ce:3b:c9:82:a0:b3:8b:
                    46:b3:a0:85:0b:e3:5a:a5:7b:c2:20:82:1f:b4:ed:be:
                    a2:e4:75:bb:5a:e0:88:45:ce:32:ec:76:48:10:86:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:61:79:b2:22:b1:37:6f:69:9a:21:d0:3a:fc:14:39:
        c8:c7:ca:fa:7d:43:b1:0c:c3:d2:a8:79:f0:06:04:7a:
        99:f5:ba:69:93:6c:13:be:6b:e8:5e:ef:1f:07:85:ce:
        47:c1:e6:d9:b2:b1:e6:5e:5d:f0:57:cb:14:b2:ae:d2:
        5d:66:3c:49:00:83:80:be:5f:c1:40:71:9b:dc:64:98:
        8c:f8:fb:4d:29:a8:a6:86:7b:85:40:c2:f6:af:13:ab:
        5a:e7:9c:8f:8e:e7:7f:1e:25:5a:20:e2:1f:43:df:6a:
        b0:4c:bd:bb:44:57:1a:2c:fd:06:5f:98:56:a6:13:e1:
        2d:22:7a:ca:b8:1f:19:d3:3f:a0:73:1d:e6:08:13:58:
        97:d9:74:1c:e0:6b:16:8c:48:e7:8f:a9:fd:ea:d4:bb:
        ba:70:d3:ae:f7:d3:14:f2:14:4c:66:16:1e:86:cc:51:
        e0:19:6c:1f:2e:04:56:5e:9b:e7:64:f9:c2:32:68:fe:
        a0:a5:09:90:54:3a:71:ee:8e:52:d4:8d:95:cc:ac:1e:
        af:a8:46:08:37:7f:49:f7:fe:bf:c9:40:5d:69:e0:14:
        93:54:60:31:78:9d:ea:d1:e5:bb:66:f8:17:72:f5:f2:
        41:63:ad:28:09:e0:c4:63:55:46:c8:1b:54:91:56:a2
    Fingerprint (SHA-256):
        5B:D7:FF:72:F1:EF:2A:FD:B2:34:AD:8D:06:0A:17:B5:37:28:F4:59:E7:03:5F:92:E7:39:D6:8D:E3:BE:18:AB
    Fingerprint (SHA1):
        8B:1F:D4:0A:C0:EF:AB:4F:A4:E6:94:F5:C5:FB:00:4E:67:10:5F:A8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4623: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4624: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4625: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #4626: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:62
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 12:08:05 2017
            Not After : Thu Aug 10 12:08:05 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:17:bb:4a:c4:93:2d:08:30:c3:fc:6a:a5:71:ee:66:
                    1a:aa:e0:b3:04:55:d7:bc:22:c2:0c:78:96:b9:6c:ce:
                    82:59:2a:50:27:92:d0:af:60:3d:8a:70:e1:1b:c8:4e:
                    c1:5d:e0:4b:f4:20:3c:a6:74:63:d9:3f:2b:58:f7:08:
                    b8:63:27:f0:6f:ba:9b:0e:7b:f0:5c:4a:13:fd:e8:e8:
                    85:49:94:fa:07:fa:45:63:e0:51:c2:05:30:4e:4f:e8:
                    34:f5:6f:4a:65:5a:13:e4:64:27:4b:cd:09:5b:7e:1f:
                    5c:f4:33:10:47:aa:32:e9:fd:a2:ef:92:5a:b3:21:a5:
                    a3:36:c8:04:68:51:6d:4f:12:7e:75:43:ee:d6:9f:4e:
                    a9:99:54:66:cf:01:e3:a6:d2:ea:40:39:c4:e5:f2:03:
                    2a:b4:2f:27:c7:da:d7:28:8c:80:f8:a6:c9:fc:f5:8c:
                    7f:27:08:71:1e:58:23:ba:2f:bf:b5:87:c4:d8:56:88:
                    31:8d:da:9a:f1:eb:45:cc:85:ac:7f:d3:0c:bc:37:5c:
                    df:42:51:11:bb:16:9a:17:01:65:73:dd:ab:d5:f2:14:
                    24:47:d9:8d:86:ab:b8:80:26:96:76:ad:0e:c9:51:8c:
                    d5:13:f9:c1:03:0a:e1:31:82:fa:9d:45:41:f7:79:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:a9:7b:ea:b0:c6:6e:96:c1:08:23:75:3c:a6:2b:0f:
        18:3c:d5:9f:79:32:7d:e5:3e:bd:c9:52:e5:3a:f0:e7:
        0a:05:d8:d1:bf:31:c0:7a:07:4d:02:76:85:2c:1e:67:
        29:50:b9:10:87:e9:5e:f4:1b:3e:8e:35:b9:43:90:0f:
        6e:49:74:58:80:8d:3a:c2:88:47:d9:42:18:99:52:62:
        48:d4:87:25:ae:a6:55:eb:e3:7c:c0:7e:89:e3:c1:01:
        69:ff:93:6b:c2:90:19:19:ba:ae:4f:95:ab:6b:14:12:
        e3:82:c2:aa:18:cb:04:22:2f:2b:0a:95:30:97:a9:04:
        4d:3a:fd:1f:7b:99:60:c8:e8:40:58:b4:ae:39:55:17:
        55:a8:fd:ac:b7:92:3b:2b:08:83:5d:14:57:12:95:34:
        f8:30:26:d7:14:87:29:a7:71:fb:4a:08:01:3f:79:91:
        26:18:de:40:c0:27:32:af:e5:ac:15:10:86:fa:fc:08:
        f1:e4:a5:cb:19:30:67:29:9f:48:3d:d2:c7:dc:07:56:
        2f:c9:ab:34:77:7f:ab:b2:77:64:62:12:be:3f:1e:f9:
        dc:ab:0e:89:3a:e7:78:85:3d:e6:45:01:b4:5a:02:e9:
        7f:05:d7:ee:63:c8:47:33:66:1d:5b:ca:12:f8:fe:df
    Fingerprint (SHA-256):
        37:36:ED:E6:74:29:FA:BC:87:57:2E:02:77:AE:C0:C7:6E:5B:96:8B:85:76:55:0E:A1:4A:F8:41:6C:C9:4B:7B
    Fingerprint (SHA1):
        B1:94:5A:27:C1:96:2F:D8:CA:A0:6B:B4:9B:F6:E7:34:C0:30:04:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4627: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #4628: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4629: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4630: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4631: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4632: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4633: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #4634: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:4a:66
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 12:08:07 2017
            Not After : Thu Aug 10 12:08:07 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:42:ce:27:b1:38:39:e3:60:53:7b:9c:32:5f:99:30:
                    a8:23:5e:c8:9e:8e:ec:5a:dd:e1:44:d2:92:e3:1f:2a:
                    7d:80:68:b8:17:4b:45:be:e8:fa:93:59:78:f9:45:7c:
                    af:f6:11:f1:25:2e:e1:8a:3f:4b:4e:4b:bd:6e:08:2f:
                    78:0c:e6:8b:f0:59:a0:a5:0e:79:ca:a6:45:f9:fd:9d:
                    97:26:b1:3d:f3:e1:8f:8e:5b:41:56:a4:72:97:64:13:
                    15:66:5f:d0:cf:56:3a:06:c9:b0:db:7e:5f:40:ad:fc:
                    7f:93:f3:97:2f:1f:91:c6:a9:b8:1c:7f:f0:a5:8b:7e:
                    fc:75:4a:43:60:49:1c:10:d0:bd:7b:75:f1:ef:01:af:
                    63:1f:19:b8:07:1d:37:fd:96:e6:81:75:a5:f5:b4:05:
                    8c:2a:3b:2f:27:fa:1e:1f:87:c6:7c:b7:aa:52:11:9c:
                    3b:71:0e:29:4e:27:87:79:d0:5b:6f:71:79:13:60:c2:
                    c2:89:4a:72:35:52:09:85:04:8c:ef:11:9b:db:d7:1c:
                    52:7b:f4:2c:25:0f:a7:4e:d3:a3:4e:ef:c5:d4:db:89:
                    e3:48:5c:0d:32:a0:69:de:02:73:fb:04:76:f1:d5:4b:
                    fb:d7:17:f4:4e:89:16:b6:98:0f:52:fd:27:d4:6c:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:a3:0a:c2:84:8d:26:2b:78:30:c9:ae:42:f2:27:c0:
        9d:04:3d:53:c3:89:4b:93:60:2f:3b:4f:8f:e8:cc:5e:
        76:96:97:92:be:f7:67:55:1d:bf:fe:83:be:2d:bb:b6:
        16:45:25:1f:6e:88:48:f2:6c:e4:1e:5a:16:52:cf:3d:
        43:84:39:4b:03:d8:24:57:ce:c7:a3:23:bf:3f:80:99:
        48:62:11:db:d6:7f:54:8a:ba:09:a5:40:6a:da:70:b9:
        aa:ef:c8:12:c1:d8:83:fc:c0:5d:79:c2:d7:cc:08:e2:
        0d:71:a9:92:4f:6a:9a:ce:6a:d2:6b:dc:8f:3a:46:70:
        ed:d0:28:86:cc:e9:04:da:0c:1b:d7:89:92:73:69:f9:
        a7:56:50:9b:6c:93:bc:36:11:8d:8c:32:56:bd:68:43:
        77:c5:a0:9e:5e:ca:94:36:51:ca:64:e4:1f:c6:69:9a:
        ec:2e:e3:02:9f:3a:76:52:c0:6b:20:64:7c:68:b1:0b:
        51:28:35:ec:37:45:98:b6:75:a0:b0:bd:0b:c3:11:30:
        c4:39:dd:07:b4:16:3c:5e:f9:fc:7a:99:1e:04:57:03:
        7d:89:6a:95:8a:89:5c:92:58:94:f2:aa:83:bc:8b:bf:
        b5:2c:08:c1:a5:59:b4:26:b2:94:47:83:5c:89:9d:29
    Fingerprint (SHA-256):
        85:11:EA:C9:A3:80:C7:4A:9C:FA:04:96:78:3C:24:E2:32:12:14:54:A2:12:7E:D9:89:3A:16:77:80:F9:51:9D
    Fingerprint (SHA1):
        55:7E:93:E2:B9:28:D0:0E:E6:9A:76:7C:02:72:60:9D:C8:06:1D:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4635: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4636: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4637: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #4638: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4639: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4640: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #4641: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #4642: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4643: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #4644: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4645: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4646: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #4647: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4648: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #4649: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4650: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #4651: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4652: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4653: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #4654: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4655: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4656: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #4657: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4658: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4659: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #4660: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4661: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4662: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #4663: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4664: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4665: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #4666: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4667: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #4668: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4669: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #4670: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4671: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4672: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4673: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4674: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4675: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4676: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4677: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4678: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4679: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4680: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4681: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4682: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4683: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #4684: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4685: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #4686: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4687: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4688: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #4689: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4690: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4691: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #4692: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4693: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4694: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #4695: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4696: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4697: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #4698: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4699: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4700: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #4701: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4702: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4703: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #4704: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4705: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4706: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #4707: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4708: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4709: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #4710: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4711: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4712: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #4713: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4714: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4715: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #4716: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4717: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4718: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #4719: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4720: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4721: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #4722: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4723: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4724: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #4725: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4726: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4727: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #4728: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4729: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4730: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #4731: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4732: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4733: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #4734: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4735: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4736: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #4737: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4738: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4739: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #4740: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4741: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4742: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #4743: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4744: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4745: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #4746: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4747: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4748: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #4749: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4750: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4751: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #4752: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4753: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4754: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #4755: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4756: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4757: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #4758: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4759: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4760: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #4761: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4762: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4763: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #4764: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4765: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4766: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #4767: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4768: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4769: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #4770: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4771: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4772: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #4773: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4774: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4775: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #4776: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4777: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4778: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #4779: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4780: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4781: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #4782: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4783: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4784: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #4785: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4786: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4787: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #4788: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4789: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4790: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #4791: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4792: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4793: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #4794: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4795: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4796: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #4797: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4798: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4799: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #4800: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4801: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4802: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #4803: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4804: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4805: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #4806: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4807: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4808: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #4809: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4810: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4811: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #4812: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4813: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4814: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #4815: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4816: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4817: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #4818: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4819: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4820: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #4821: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4822: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4823: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #4824: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4825: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4826: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #4827: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4828: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4829: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #4830: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4831: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4832: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #4833: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4834: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4835: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #4836: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4837: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4838: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #4839: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4840: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4841: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #4842: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4843: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4844: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #4845: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4846: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4847: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #4848: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4849: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4850: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #4851: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4852: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4853: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #4854: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4855: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4856: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #4857: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4858: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4859: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #4860: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4861: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4862: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #4863: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4864: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4865: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #4866: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4867: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4868: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #4869: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4870: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4871: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #4872: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4873: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4874: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #4875: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4876: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4877: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #4878: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4879: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #4880: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #4881: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #4882: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #4883: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #4884: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #4885: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4886: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4887: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #4888: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #4889: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #4890: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #4891: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #4892: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4893: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #4894: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4895: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #4896: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed May 10 12:08:41 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 12:08:41 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4897: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5f:93:e4:52:1a:5b:44:60:0b:6b:3a:a5:60:72:49:ac
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4898: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4899: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4900: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4901: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fc:05:bf:14:34:2f:5d:4f:61:d5:8b:08:3a:3a:1c:c9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 12:07:41 2017
            Not After : Tue May 10 12:07:41 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:a2:ab:84:6b:ec:7b:0e:b9:37:2e:ce:d9:7e:64:
                    93:87:53:ad:af:4e:52:a8:fb:8f:56:05:f0:10:f7:77:
                    33:cf:ae:e1:e6:c3:44:7a:7d:df:89:4f:f1:03:fa:4c:
                    57:e0:cd:c8:ba:0e:61:41:ed:13:85:02:41:6b:39:6d:
                    c2:d3:d8:01:3a:2f:ee:d9:86:bb:61:53:02:72:94:23:
                    8e:99:ea:bd:c8:59:5c:75:46:99:86:91:a2:05:e6:e3:
                    18:87:a9:4c:10:71:01:24:d6:53:53:b3:16:05:9f:ba:
                    0f:45:c3:50:81:82:63:6b:fa:52:98:97:92:bc:6b:e4:
                    89:4f:da:4f:4a
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:1a:9b:3d:2a:c6:8b:d2:32:38:7b:c7:
        a0:82:b6:d1:c8:bc:29:9f:7a:80:a6:7c:97:66:c0:45:
        3d:11:3e:d1:aa:ec:40:e1:73:74:1c:a2:50:e7:e8:38:
        94:b7:46:36:36:f9:6d:ed:96:3d:92:9d:9b:56:89:43:
        62:cc:3f:ea:27:75:02:42:00:c9:93:2c:ae:4b:d6:ad:
        e0:a9:4b:d3:86:96:1c:da:85:48:bd:14:64:8c:bc:ca:
        f2:21:be:c5:af:91:42:5c:e3:b8:da:6c:ea:7f:93:08:
        4b:b0:c6:97:88:9d:ac:dc:90:00:46:e4:89:91:75:82:
        d8:6d:18:b3:26:4a:df:8f:45:06
    Fingerprint (SHA-256):
        85:33:E1:9A:B4:3F:BB:22:FE:BD:A0:82:A7:33:EE:A1:D5:20:C3:8E:50:88:CE:46:28:71:E6:5D:E0:0A:64:14
    Fingerprint (SHA1):
        EE:6D:A2:2B:CE:19:27:83:FD:4C:71:56:1F:F9:72:9F:87:0E:6B:BD
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 12:07:50 2017
            Not After : Tue May 10 12:07:50 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:88:6d:f1:d9:78:05:72:02:30:86:45:55:91:cd:29:
                    4b:8d:37:fc:63:c0:84:7d:e3:66:a9:d1:4a:f6:44:68:
                    6a:35:49:73:6c:ed:98:49:e5:14:7b:cb:f8:0d:5c:a7:
                    74:d9:f6:11:33:91:c0:ca:af:59:e6:b7:6a:c3:d5:f1:
                    a7:50:f6:73:13:9b:0f:34:d7:98:99:6f:6f:dc:63:4a:
                    34:b4:50:b6:ad:57:16:3b:48:52:d9:d0:22:8d:82:e2:
                    92
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:6f:31:fb:31:29:fe:98:b3:5d:ee:f2:
        db:fe:de:e8:13:60:ce:86:b4:40:df:f3:47:e3:9c:94:
        c0:b1:da:bd:8a:d1:9a:31:6c:3e:68:80:1b:09:39:95:
        72:02:8e:03:eb:cb:e9:90:59:5e:d4:a4:f3:8d:a6:59:
        55:03:b2:ee:74:dc:02:42:01:96:d9:b3:0b:e5:a0:e1:
        a8:63:90:05:21:b4:a5:ed:ca:ae:6e:e8:7d:94:3c:be:
        58:07:0e:13:f5:e0:6b:3f:b6:3d:32:97:14:59:e2:f8:
        0c:b6:d9:9c:dd:5c:b5:eb:ea:16:80:d1:90:72:0b:1c:
        95:cd:b8:92:08:1d:57:58:4b:7b
    Fingerprint (SHA-256):
        A8:4A:0F:8F:FE:3F:62:DF:A9:68:18:10:D2:8D:DE:CA:75:61:67:4E:45:36:A3:BC:24:4B:97:86:C5:F5:B8:AB
    Fingerprint (SHA1):
        73:BB:86:CC:41:8B:2A:B7:C3:EF:CC:D3:E3:E1:15:7E:21:52:F7:D5
    Friendly Name: Alice-ec
tools.sh: #4902: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4903: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                97:cd:1c:7a:4c:1b:02:36:60:23:ed:74:48:34:30:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4904: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4905: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4906: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                53:1b:85:fd:e8:9d:84:48:a7:f8:16:56:32:fb:f0:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4907: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4908: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4909: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                7d:c7:79:1b:5e:13:ad:7a:a2:1b:85:73:a3:d1:62:d5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4910: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4911: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4912: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                5d:5a:07:d5:b9:b4:ef:13:d1:94:5b:d3:b5:bd:f3:5f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4913: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4914: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4915: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                a4:a4:09:8f:7e:76:1d:a0:02:6b:49:77:41:04:15:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4916: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4917: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4918: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                67:ad:fa:e5:c1:05:28:c5:86:68:f7:fc:89:2f:0c:12
            Iteration Count: 2000 (0x7d0)
tools.sh: #4919: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4920: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4921: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                33:fc:73:01:dc:b1:25:1d:2d:0e:ac:ec:43:e9:d1:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4922: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4923: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4924: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                19:2e:01:d5:37:9d:4c:f2:a9:a6:a7:78:ca:bb:dc:e3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4925: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4926: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4927: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d5:4c:30:65:fd:c3:be:d7:bc:b7:da:02:13:52:bb:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4928: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4929: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4930: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                03:51:4b:42:b9:54:21:f6:60:64:43:7d:2b:e5:bf:62
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4931: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4932: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4933: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c2:7d:2d:c4:ff:58:8a:9d:45:10:d0:4d:4b:71:ab:2f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4934: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4935: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4936: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                25:d7:62:be:18:6c:8a:fd:d2:11:35:80:fd:fb:50:6b
            Iteration Count: 2000 (0x7d0)
tools.sh: #4937: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4938: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4939: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:f7:6b:c6:fd:84:dd:0c:e7:f6:88:66:8d:a3:c8:70
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:b3:7e:11:7e:67:14:7c:1d:d6:a4:d5:fc:55:91:
                    4e:35
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4940: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4941: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4942: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2c:bc:ad:d3:bf:95:45:9e:79:84:d6:7e:e8:c1:90:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:08:60:d0:12:48:23:ab:b4:8e:d1:4f:d5:ce:5f:
                    ae:cc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4943: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4944: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4945: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a0:b2:71:b0:4e:8b:d7:5e:d1:72:c9:1f:8d:cd:ea:24
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:93:05:89:40:2e:73:e9:92:f0:de:bf:9b:8b:ec:
                    db:04
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4946: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4947: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4948: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        99:f3:64:72:c5:e3:eb:2a:9c:d7:fd:9b:51:c2:8d:56
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:47:0b:e6:dc:90:71:43:ff:d9:10:ae:7a:ad:44:
                    ba:77
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4949: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4950: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4951: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b4:63:3b:43:a4:d7:45:11:d5:4e:a0:53:a8:bb:dd:63
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:3b:18:61:e3:3a:0f:8b:96:44:ca:61:93:cc:92:
                    83:21
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4952: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4953: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4954: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9d:08:e8:b8:31:d9:7a:37:11:65:81:cd:68:7e:22:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:03:7b:0f:79:19:5f:8d:6f:4d:64:00:75:25:64:
                    e8:48
tools.sh: #4955: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4956: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4957: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9c:03:2c:50:ed:4a:30:54:70:e9:33:5e:e4:ba:6d:55
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ec:a1:35:7b:18:dc:3f:a6:a1:82:39:f3:e8:9a:
                    bb:70
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4958: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4959: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4960: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bc:69:5a:49:49:3b:16:e5:50:ab:a5:69:d2:43:82:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:a7:63:21:47:83:87:1f:90:ed:a0:4a:5a:a2:dd:
                    cc:b5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4961: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4962: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4963: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1f:8a:de:d1:64:f6:c6:3e:32:8a:f8:91:dc:7b:a8:21
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f8:3f:b4:a8:fe:03:bc:ad:ed:b4:03:ed:57:c2:
                    0b:e9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4964: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4965: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4966: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:70:c4:30:09:c1:22:b7:57:5e:68:7d:6a:86:4d:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:26:da:76:7b:ab:cf:67:44:ea:d1:7d:eb:70:3e:
                    9b:cc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4967: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4968: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4969: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4d:67:cd:ed:d0:b5:cf:87:e8:88:f5:22:05:89:9e:04
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:0e:0e:49:ec:d1:aa:48:4e:5e:d5:72:f1:4a:6c:
                    51:6a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4970: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4971: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4972: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ea:ec:fa:9e:84:39:21:b0:9f:d2:ab:c8:f7:97:89:94
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:30:53:cf:70:36:67:e9:a3:34:58:05:30:c2:b0:
                    69:d0
tools.sh: #4973: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4974: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4975: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        23:f9:95:7f:36:b4:43:92:6a:3b:0b:2a:7d:bf:01:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a7:04:ea:76:fa:f2:7a:69:f6:95:b2:c7:4f:85:
                    90:77
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4976: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4977: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4978: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:93:0f:4d:0c:23:75:e4:13:f3:3e:13:8f:03:d0:49
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:91:d2:ba:5a:7c:9e:02:71:e5:cd:91:13:84:b2:
                    79:ad
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4979: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4980: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4981: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3d:26:90:5f:28:cb:a7:56:23:04:a9:cd:d1:2e:f6:16
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:5d:52:1b:d9:60:9f:b8:e0:2a:f4:6f:76:79:c3:
                    e9:29
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4982: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4983: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4984: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c3:97:4d:fe:72:e4:81:dc:84:27:d1:15:11:e8:b2:7b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:d3:73:4a:b8:7d:d6:5c:62:85:b3:68:72:46:e8:
                    14:eb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4985: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4986: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4987: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8d:d1:7e:4c:ae:f1:cc:84:ec:35:e3:7b:c1:02:03:80
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:d2:dc:ab:9f:c0:8d:e7:6d:bc:05:0f:ee:5c:4b:
                    06:1b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4988: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4989: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4990: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e7:08:67:01:51:f3:42:c3:7b:e3:ee:96:28:2d:08:74
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:3e:13:a8:9d:8b:0c:d8:73:06:38:89:fd:23:a3:
                    3d:ad
tools.sh: #4991: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4992: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4993: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2c:f3:51:7c:d4:b9:a5:42:84:9e:31:02:f0:cd:7f:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:ff:c1:06:54:5a:65:21:5c:42:d1:8b:71:ca:b1:
                    e4:ef
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4994: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4995: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4996: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        59:5e:aa:2a:71:db:6a:e2:a6:dc:ed:b8:ba:99:27:48
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:32:7e:4e:fb:9a:8e:3f:5f:b5:c9:16:f7:bb:0a:
                    78:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #4997: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4998: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4999: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c8:c5:80:85:0e:70:25:1e:ca:66:1d:bc:f8:11:d1:41
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:69:92:2d:4b:5e:f1:69:df:e8:e5:48:a6:46:64:
                    44:b0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5000: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5001: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5002: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2c:79:27:7f:f2:d5:e7:5a:4d:32:08:1b:bc:46:c0:95
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:64:88:24:76:a5:a9:2a:82:36:cc:76:cd:77:ec:
                    13:7f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5003: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5004: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5005: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7c:54:61:b1:ec:24:8c:8e:71:e3:c7:fb:db:87:40:7a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:6f:85:9a:bf:dd:8c:68:2f:4d:c5:5f:04:c4:26:
                    aa:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5006: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5007: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5008: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d7:f8:8d:9e:26:66:bf:98:ea:a7:c0:ab:09:56:9c:84
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:dd:a0:27:74:aa:1f:f0:91:60:cc:04:f3:de:e7:
                    01:c1
tools.sh: #5009: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5010: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5011: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d3:12:47:b8:5c:c8:1c:a0:ab:a6:3a:7c:e4:5e:1d:65
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:46:94:fe:96:78:48:4c:cd:a3:d9:3e:b1:8b:07:
                    8c:20
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5012: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5013: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5014: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5d:a3:27:61:6a:0a:b1:89:b2:9a:cf:71:a0:3c:7d:64
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e2:a6:a7:31:a1:47:d2:d0:d3:9c:a6:6d:f6:a7:
                    f8:48
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5015: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5016: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5017: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:47:e3:03:9a:ca:7f:6e:29:1b:eb:e6:86:82:85:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:1e:66:e3:bc:65:be:ca:26:40:2a:1d:c0:4d:d5:
                    1d:b2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5018: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5019: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5020: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1f:97:84:f1:fa:b6:44:81:1c:c4:dd:b5:a1:d5:05:50
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c3:ab:1e:5d:c4:fd:95:ba:0f:31:02:f5:83:1e:
                    fa:44
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5021: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5022: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5023: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        30:b9:f0:c5:d7:56:ae:86:c7:30:47:75:08:27:49:e4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:f2:e6:65:e7:86:bb:11:af:42:ab:b9:8f:04:00:
                    67:36
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5024: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5025: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5026: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        eb:0a:7b:d5:a0:e0:f3:bb:e6:9f:c0:ab:c4:c4:bd:ca
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:c1:1f:35:ba:12:a2:53:de:e6:01:e5:33:11:81:
                    27:8a
tools.sh: #5027: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5028: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5029: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c4:2a:dd:1b:15:81:1e:ad:5d:c1:01:3a:43:4a:7d:71
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:eb:bd:af:a2:f6:95:48:3f:9f:ed:fd:c5:36:63:
                    61:06
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5030: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5031: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5032: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        dc:52:d0:76:c5:bb:6e:0c:fc:35:a9:79:bd:32:7f:ad
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:c6:c9:4f:b9:af:f3:8b:99:a1:08:b6:6d:bf:ac:
                    8e:3d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5033: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5034: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5035: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fb:3a:19:ba:fe:b8:8a:6d:59:2c:09:3e:2e:4f:4e:d8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:79:44:45:c2:03:b9:cb:0f:b7:77:26:92:49:16:
                    58:bc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5036: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5037: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5038: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        54:92:d8:ec:7e:bf:55:1e:f7:c2:49:9f:f8:a5:73:7b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:aa:31:a2:34:35:c5:ee:3c:eb:e9:24:09:86:74:
                    9a:86
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5039: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5040: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5041: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        18:6b:b7:8d:cc:65:cf:62:1d:03:2f:b7:11:a6:c0:2b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:95:ae:1a:1b:67:b0:c7:4f:bd:ea:22:be:b2:c0:
                    ed:88
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5042: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5043: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5044: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        db:23:1b:28:56:d0:0a:d2:63:46:8e:4e:fa:ed:6f:7e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:46:11:6a:65:e0:31:7f:da:31:77:c8:e5:29:6c:
                    e6:c5
tools.sh: #5045: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5046: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5047: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                95:bf:60:a7:99:7a:f1:35:cf:f3:08:11:76:aa:23:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5048: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5049: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5050: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                75:c8:7a:4a:68:6c:99:bd:b3:a8:c8:e1:7e:00:33:d5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5051: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5052: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5053: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                48:02:ca:11:f7:ce:48:d5:be:0f:78:eb:b5:19:ea:9c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5054: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5055: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5056: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                ca:93:b0:ab:ca:73:90:23:74:cb:42:52:ff:98:bc:a5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5057: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5058: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5059: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                f7:a4:73:d8:dd:74:aa:62:64:c7:95:4a:20:d9:4c:33
            Iteration Count: 2000 (0x7d0)
tools.sh: #5060: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5061: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5062: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e3:4c:0d:52:a6:c0:bc:12:c8:33:13:a7:ac:76:22:9c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5063: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5064: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5065: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                8b:1e:7b:a3:a0:c4:27:0a:5f:cd:d0:42:44:89:68:41
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5066: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5067: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5068: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                8d:da:fa:33:61:b1:7e:82:31:26:f7:b3:67:ff:f0:a2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5069: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5070: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5071: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                31:6f:05:5a:d6:43:b8:6a:68:b9:16:0e:9b:6f:18:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5072: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5073: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5074: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e6:2f:ff:80:6f:19:87:5a:80:9d:62:17:12:d7:97:90
            Iteration Count: 2000 (0x7d0)
tools.sh: #5075: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5076: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5077: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a5:01:6f:65:8b:84:e4:2e:50:e3:7b:d9:5f:bc:4b:51
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5078: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5079: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5080: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                af:48:35:ba:09:9c:0b:03:9a:50:96:8a:b0:9c:cd:95
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5081: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5082: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5083: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ba:2b:1b:76:f1:ad:89:79:7d:86:86:af:ee:58:01:36
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5084: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5085: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5086: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                e9:69:87:65:24:4d:15:3b:1f:c8:3b:16:09:1c:29:8b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5087: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5088: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5089: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f7:40:96:14:f0:44:b4:81:a5:c4:65:bb:21:05:ff:4b
            Iteration Count: 2000 (0x7d0)
tools.sh: #5090: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5091: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5092: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6e:75:58:f5:39:cb:65:a6:a1:37:c3:2f:04:49:48:22
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5093: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5094: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5095: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e8:ed:de:99:35:de:bd:95:9f:ae:60:10:95:1d:c7:6a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5096: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5097: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5098: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                81:9c:5f:cc:ed:89:ec:19:1f:59:68:43:00:15:b1:a0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5099: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5100: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5101: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                81:b8:66:a7:d3:e4:29:9f:83:34:e1:8f:bf:5f:ba:a4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5102: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5103: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5104: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                46:2c:5f:06:cc:80:1d:f2:01:65:4d:99:eb:11:7b:7d
            Iteration Count: 2000 (0x7d0)
tools.sh: #5105: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5106: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5107: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6d:97:ab:4b:b0:c3:76:fd:a8:b9:20:61:c1:e5:c1:c1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5108: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5109: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5110: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f1:30:3a:8e:dc:b0:29:9d:f5:75:2f:6c:59:d3:68:b2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5111: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5112: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5113: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ce:1b:c3:49:f5:93:06:f7:60:ec:ff:ff:0b:3e:84:e9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5114: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5115: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5116: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                70:9b:ad:d4:1e:62:ae:59:d8:f3:42:f5:55:21:81:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5117: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5118: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5119: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                71:d8:99:f9:a7:80:9a:53:ce:da:61:62:23:14:28:0b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5120: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5121: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5122: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5a:ca:a3:f7:65:94:ad:dc:78:74:93:67:7b:cf:cc:66
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5123: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5124: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5125: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8f:fb:e0:54:db:3b:25:46:a7:c5:42:4a:82:b3:58:38
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5126: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5127: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5128: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ad:23:e8:d8:c6:10:e6:6f:2f:a1:6a:04:f4:86:8d:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5129: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5130: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5131: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b4:55:61:74:c1:98:5e:ac:b8:37:44:d0:9b:9c:47:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5132: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5133: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5134: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                de:9c:43:f7:64:db:a7:e1:b8:07:35:f5:92:6a:fa:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:37 2017
            Not After : Tue May 10 12:07:37 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:9c:4c:f4:ee:13:ad:ca:b0:72:a7:05:39:fd:d4:6e:
                    da:14:b3:64:10:55:a1:d3:4c:a9:e1:3c:dd:ed:ab:3a:
                    49:69:21:a2:5f:7e:ef:1c:d0:f3:ca:cf:2c:5c:a4:32:
                    ad:e3:b7:ee:d4:c9:fc:b8:43:6a:ee:17:1e:84:65:e8:
                    52:42:4b:bf:9c:53:9f:0c:39:34:46:95:16:89:02:77:
                    bc:23:9f:3d:34:08:ba:45:8d:e7:a5:58:f3:ca:72:6d:
                    ed:88:43:df:7c:c5:3d:3d:3d:96:32:40:dd:5e:2d:f2:
                    2c:49:38:37:4f:b0:64:1e:ff:ec:49:a5:1b:af:41:19:
                    87:44:5a:ec:33:8d:7f:7a:10:e0:5b:ca:68:6f:06:06:
                    6a:28:ce:e1:4e:4d:5c:62:ee:25:6c:18:f2:e6:58:d8:
                    df:20:c0:82:5f:83:d3:84:e4:29:df:5a:92:d4:ad:e0:
                    9f:d7:65:74:36:e4:46:88:64:ae:75:9d:39:35:48:b2:
                    c9:30:a0:8c:29:1f:70:52:9e:b7:33:4d:5c:ce:a7:9e:
                    5c:76:67:fe:ad:56:78:18:02:f5:89:18:e5:1c:b4:d8:
                    2e:1b:64:bb:1d:05:9f:bb:3c:a2:a8:88:c0:6e:19:ef:
                    48:b0:c7:58:ab:ff:fc:a6:ed:47:71:62:b4:6b:fd:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c0:35:85:25:74:fe:44:56:f1:c6:95:fc:75:db:72:e9:
        d3:5d:d6:78:f3:61:a7:91:6a:6f:55:1e:fe:27:0f:fb:
        ae:f7:62:a6:1c:5a:0a:ae:2a:f5:3e:9f:f2:05:c9:41:
        1d:27:98:d9:b1:f4:0f:66:66:05:61:43:45:d2:31:22:
        e2:97:0e:f4:96:55:1f:88:32:bb:18:73:d4:3d:a1:a8:
        57:93:e8:e7:70:4d:85:90:ff:bc:eb:c0:6c:83:84:cc:
        97:4c:b6:96:02:aa:2b:5c:5e:9e:02:25:be:a1:e3:2e:
        8f:53:25:d1:f8:06:bd:f4:f7:48:94:73:13:5f:8d:53:
        a0:e7:ec:8f:61:fd:9a:33:64:56:1f:7e:7c:43:c6:3e:
        dd:b0:0c:4b:72:7c:08:d6:c1:f7:5f:11:14:47:f2:09:
        2a:ff:63:01:2a:d8:29:1e:56:29:3c:bc:3e:19:3e:27:
        6a:64:0f:a8:2b:f3:67:4d:04:61:e6:cc:7a:50:be:30:
        ee:19:d7:85:ec:0a:91:3b:f8:e0:f8:38:ae:72:91:45:
        4d:fc:3e:76:52:e2:ac:39:cd:d5:6c:b3:3f:53:a3:95:
        90:95:f1:24:7c:32:9e:79:21:aa:c4:f3:49:cc:b1:2d:
        ef:bb:57:b8:15:94:d8:3e:37:50:b9:f5:d4:29:a4:4b
    Fingerprint (SHA-256):
        23:08:9A:9A:31:F6:5F:87:36:3D:C8:BC:19:0C:F1:7D:2F:90:C5:27:BC:22:F9:64:15:DE:25:84:74:E9:FD:7A
    Fingerprint (SHA1):
        72:EB:3E:29:78:23:1A:43:D6:EF:1C:CB:3F:83:6F:AF:4C:67:4A:23
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:07:49 2017
            Not After : Tue May 10 12:07:49 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:04:cf:47:cd:8a:15:ac:f2:ab:3e:45:bd:28:96:5f:
                    17:ee:b0:56:88:f3:d2:c5:b8:87:f4:f6:0e:73:11:e2:
                    00:b5:20:c8:ff:69:7f:67:39:a0:56:25:f0:03:60:09:
                    a1:dd:f7:31:85:1c:03:68:34:f4:ea:97:8e:5a:82:3d:
                    cd:50:90:b7:85:af:6e:d8:94:40:10:a5:06:9e:21:b7:
                    08:97:95:28:86:5f:9e:b4:e7:c6:50:f3:ed:dc:af:b4:
                    89:43:0e:26:23:1d:cc:80:87:a8:ca:26:79:1b:9b:5e:
                    eb:02:32:56:a8:35:d7:4f:7d:d4:42:fe:e9:29:3b:91:
                    f5:90:e5:ef:82:8e:3e:7e:50:5b:1a:0d:a3:50:05:ad:
                    73:4e:7c:54:3b:96:d3:a1:7d:6c:a3:fb:ce:3e:6f:01:
                    75:fd:62:c4:fe:c3:c7:4f:99:fc:8e:15:c6:e2:4a:c8:
                    de:7c:d3:cd:0d:d2:9e:06:c0:a6:16:09:26:75:f3:20:
                    64:db:de:8f:28:c0:a6:36:55:6e:1e:2c:4e:be:c1:32:
                    c6:1e:e2:df:64:e5:02:43:b3:a9:ec:03:7f:12:e4:3e:
                    2e:a4:0c:ae:e7:55:47:c8:48:f1:e5:30:e8:4f:4b:52:
                    0e:ee:00:8f:a7:5f:f2:97:ef:0a:4e:6f:a1:45:cb:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:e5:34:49:dd:c3:2b:e4:69:58:12:08:e3:f2:75:4b:
        78:c9:02:f4:02:15:78:9c:23:5f:0b:1a:3c:d9:6e:11:
        9c:3f:fb:d4:82:27:08:47:04:ec:84:56:06:52:ec:63:
        a9:37:3e:95:b5:25:2b:b2:7b:f8:5b:7c:70:96:7f:95:
        c5:dd:5e:2f:ef:a5:a9:1c:97:bb:d1:65:01:34:15:12:
        05:c3:71:c7:f9:e3:e8:c3:63:5b:72:a7:35:e4:b2:30:
        4d:30:05:78:b7:f6:60:98:08:48:e3:bb:42:dc:2a:4e:
        ce:a4:20:4e:5f:80:f8:66:2a:f0:9b:77:19:26:07:39:
        32:56:1c:e8:fe:36:3e:5f:bd:e8:ce:bb:28:63:d8:e3:
        b0:e7:c8:ae:7d:5d:77:b3:ab:20:5e:15:fc:2c:58:61:
        99:c8:08:7c:25:45:19:31:f3:69:77:5d:b0:93:32:5f:
        8c:cf:e8:e3:5e:c5:a3:f6:ff:75:fb:8b:65:1b:bf:99:
        29:c6:03:eb:70:8c:d2:77:05:60:d3:a0:3c:ed:22:91:
        ae:9a:bf:aa:14:98:21:2c:9c:a9:2c:a6:89:11:92:50:
        0c:8c:88:51:29:47:a9:43:6b:25:ac:be:be:55:db:29:
        cd:e4:9a:0f:c8:5c:70:34:e6:d3:d7:87:67:ae:e8:d0
    Fingerprint (SHA-256):
        1E:26:CD:64:9B:1A:06:15:3A:38:FD:EB:FA:35:77:01:A7:D4:DA:CD:09:09:5D:E0:D8:8C:53:A2:5A:C3:D3:22
    Fingerprint (SHA1):
        DE:6C:E9:C2:51:44:29:82:98:B2:6A:7D:09:62:E0:4C:DE:92:06:B9
    Friendly Name: Alice
tools.sh: #5135: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #5136: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #5137: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #5138: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #5139: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #5140: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #5141: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5142: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #5143: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #5144: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5145: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 12:08:50 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 12:08:50 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5146: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5147: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      72b25d79b1905e642d3cf50be1d34901a071fe03   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5148: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5149: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5150: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5151: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5152: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5153: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5154: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5155: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5156: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5157: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5158: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      72b25d79b1905e642d3cf50be1d34901a071fe03   FIPS_PUB_140_Test_Certificate
fips.sh: #5159: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5160: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5161: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5162: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5163: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      72b25d79b1905e642d3cf50be1d34901a071fe03   FIPS_PUB_140_Test_Certificate
fips.sh: #5164: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #5165: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #5166: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x00042d00 (273664): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #5167: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 12:09:09 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 12:09:09 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2175 >/dev/null 2>/dev/null
selfserv_9505 with PID 2175 found at Wed May 10 12:09:09 UTC 2017
selfserv_9505 with PID 2175 started at Wed May 10 12:09:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5168: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2175 at Wed May 10 12:09:10 UTC 2017
kill -USR1 2175
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2175 killed at Wed May 10 12:09:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2231 >/dev/null 2>/dev/null
selfserv_9505 with PID 2231 found at Wed May 10 12:09:10 UTC 2017
selfserv_9505 with PID 2231 started at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5169: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2231 at Wed May 10 12:09:10 UTC 2017
kill -USR1 2231
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2231 killed at Wed May 10 12:09:10 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2287 >/dev/null 2>/dev/null
selfserv_9505 with PID 2287 found at Wed May 10 12:09:10 UTC 2017
selfserv_9505 with PID 2287 started at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5170: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2287 at Wed May 10 12:09:10 UTC 2017
kill -USR1 2287
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2287 killed at Wed May 10 12:09:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2355 >/dev/null 2>/dev/null
selfserv_9505 with PID 2355 found at Wed May 10 12:09:10 UTC 2017
selfserv_9505 with PID 2355 started at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5171: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2355 at Wed May 10 12:09:10 UTC 2017
kill -USR1 2355
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2355 killed at Wed May 10 12:09:10 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2411 >/dev/null 2>/dev/null
selfserv_9505 with PID 2411 found at Wed May 10 12:09:10 UTC 2017
selfserv_9505 with PID 2411 started at Wed May 10 12:09:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5172: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2411 at Wed May 10 12:09:11 UTC 2017
kill -USR1 2411
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2411 killed at Wed May 10 12:09:11 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2467 >/dev/null 2>/dev/null
selfserv_9505 with PID 2467 found at Wed May 10 12:09:11 UTC 2017
selfserv_9505 with PID 2467 started at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5173: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2467 at Wed May 10 12:09:11 UTC 2017
kill -USR1 2467
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2467 killed at Wed May 10 12:09:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2535 >/dev/null 2>/dev/null
selfserv_9505 with PID 2535 found at Wed May 10 12:09:11 UTC 2017
selfserv_9505 with PID 2535 started at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5174: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2535 at Wed May 10 12:09:11 UTC 2017
kill -USR1 2535
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2535 killed at Wed May 10 12:09:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2591 >/dev/null 2>/dev/null
selfserv_9505 with PID 2591 found at Wed May 10 12:09:11 UTC 2017
selfserv_9505 with PID 2591 started at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5175: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 2591 at Wed May 10 12:09:11 UTC 2017
kill -USR1 2591
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2591 killed at Wed May 10 12:09:11 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2647 >/dev/null 2>/dev/null
selfserv_9505 with PID 2647 found at Wed May 10 12:09:11 UTC 2017
selfserv_9505 with PID 2647 started at Wed May 10 12:09:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5176: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2647 at Wed May 10 12:09:12 UTC 2017
kill -USR1 2647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2647 killed at Wed May 10 12:09:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2715 >/dev/null 2>/dev/null
selfserv_9505 with PID 2715 found at Wed May 10 12:09:12 UTC 2017
selfserv_9505 with PID 2715 started at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5177: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2715 at Wed May 10 12:09:12 UTC 2017
kill -USR1 2715
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2715 killed at Wed May 10 12:09:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2771 >/dev/null 2>/dev/null
selfserv_9505 with PID 2771 found at Wed May 10 12:09:12 UTC 2017
selfserv_9505 with PID 2771 started at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5178: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2771 at Wed May 10 12:09:12 UTC 2017
kill -USR1 2771
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2771 killed at Wed May 10 12:09:12 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2827 >/dev/null 2>/dev/null
selfserv_9505 with PID 2827 found at Wed May 10 12:09:12 UTC 2017
selfserv_9505 with PID 2827 started at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5179: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2827 at Wed May 10 12:09:12 UTC 2017
kill -USR1 2827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2827 killed at Wed May 10 12:09:12 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2895 >/dev/null 2>/dev/null
selfserv_9505 with PID 2895 found at Wed May 10 12:09:12 UTC 2017
selfserv_9505 with PID 2895 started at Wed May 10 12:09:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5180: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2895 at Wed May 10 12:09:13 UTC 2017
kill -USR1 2895
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2895 killed at Wed May 10 12:09:13 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2951 >/dev/null 2>/dev/null
selfserv_9505 with PID 2951 found at Wed May 10 12:09:13 UTC 2017
selfserv_9505 with PID 2951 started at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5181: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 2951 at Wed May 10 12:09:13 UTC 2017
kill -USR1 2951
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2951 killed at Wed May 10 12:09:13 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3007 >/dev/null 2>/dev/null
selfserv_9505 with PID 3007 found at Wed May 10 12:09:13 UTC 2017
selfserv_9505 with PID 3007 started at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5182: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3007 at Wed May 10 12:09:13 UTC 2017
kill -USR1 3007
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3007 killed at Wed May 10 12:09:13 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3075 >/dev/null 2>/dev/null
selfserv_9505 with PID 3075 found at Wed May 10 12:09:13 UTC 2017
selfserv_9505 with PID 3075 started at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5183: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3075 at Wed May 10 12:09:13 UTC 2017
kill -USR1 3075
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3075 killed at Wed May 10 12:09:13 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3131 >/dev/null 2>/dev/null
selfserv_9505 with PID 3131 found at Wed May 10 12:09:13 UTC 2017
selfserv_9505 with PID 3131 started at Wed May 10 12:09:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5184: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3131 at Wed May 10 12:09:14 UTC 2017
kill -USR1 3131
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3131 killed at Wed May 10 12:09:14 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3187 >/dev/null 2>/dev/null
selfserv_9505 with PID 3187 found at Wed May 10 12:09:14 UTC 2017
selfserv_9505 with PID 3187 started at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5185: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3187 at Wed May 10 12:09:14 UTC 2017
kill -USR1 3187
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3187 killed at Wed May 10 12:09:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3255 >/dev/null 2>/dev/null
selfserv_9505 with PID 3255 found at Wed May 10 12:09:14 UTC 2017
selfserv_9505 with PID 3255 started at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5186: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3255 at Wed May 10 12:09:14 UTC 2017
kill -USR1 3255
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3255 killed at Wed May 10 12:09:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3311 >/dev/null 2>/dev/null
selfserv_9505 with PID 3311 found at Wed May 10 12:09:14 UTC 2017
selfserv_9505 with PID 3311 started at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5187: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3311 at Wed May 10 12:09:14 UTC 2017
kill -USR1 3311
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3311 killed at Wed May 10 12:09:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3367 >/dev/null 2>/dev/null
selfserv_9505 with PID 3367 found at Wed May 10 12:09:14 UTC 2017
selfserv_9505 with PID 3367 started at Wed May 10 12:09:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5188: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3367 at Wed May 10 12:09:15 UTC 2017
kill -USR1 3367
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3367 killed at Wed May 10 12:09:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3435 >/dev/null 2>/dev/null
selfserv_9505 with PID 3435 found at Wed May 10 12:09:15 UTC 2017
selfserv_9505 with PID 3435 started at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5189: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3435 at Wed May 10 12:09:15 UTC 2017
kill -USR1 3435
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3435 killed at Wed May 10 12:09:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3491 >/dev/null 2>/dev/null
selfserv_9505 with PID 3491 found at Wed May 10 12:09:15 UTC 2017
selfserv_9505 with PID 3491 started at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5190: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3491 at Wed May 10 12:09:15 UTC 2017
kill -USR1 3491
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3491 killed at Wed May 10 12:09:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3547 >/dev/null 2>/dev/null
selfserv_9505 with PID 3547 found at Wed May 10 12:09:15 UTC 2017
selfserv_9505 with PID 3547 started at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5191: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3547 at Wed May 10 12:09:15 UTC 2017
kill -USR1 3547
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3547 killed at Wed May 10 12:09:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3615 >/dev/null 2>/dev/null
selfserv_9505 with PID 3615 found at Wed May 10 12:09:15 UTC 2017
selfserv_9505 with PID 3615 started at Wed May 10 12:09:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5192: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3615 at Wed May 10 12:09:16 UTC 2017
kill -USR1 3615
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3615 killed at Wed May 10 12:09:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3671 >/dev/null 2>/dev/null
selfserv_9505 with PID 3671 found at Wed May 10 12:09:16 UTC 2017
selfserv_9505 with PID 3671 started at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5193: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 3671 at Wed May 10 12:09:16 UTC 2017
kill -USR1 3671
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3671 killed at Wed May 10 12:09:16 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3727 >/dev/null 2>/dev/null
selfserv_9505 with PID 3727 found at Wed May 10 12:09:16 UTC 2017
selfserv_9505 with PID 3727 started at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5194: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3727 at Wed May 10 12:09:16 UTC 2017
kill -USR1 3727
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3727 killed at Wed May 10 12:09:16 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3795 >/dev/null 2>/dev/null
selfserv_9505 with PID 3795 found at Wed May 10 12:09:16 UTC 2017
selfserv_9505 with PID 3795 started at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5195: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3795 at Wed May 10 12:09:16 UTC 2017
kill -USR1 3795
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3795 killed at Wed May 10 12:09:16 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3859 >/dev/null 2>/dev/null
selfserv_9505 with PID 3859 found at Wed May 10 12:09:16 UTC 2017
selfserv_9505 with PID 3859 started at Wed May 10 12:09:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5196: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3859 at Wed May 10 12:09:17 UTC 2017
kill -USR1 3859
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3859 killed at Wed May 10 12:09:17 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3919 >/dev/null 2>/dev/null
selfserv_9505 with PID 3919 found at Wed May 10 12:09:17 UTC 2017
selfserv_9505 with PID 3919 started at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5197: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3919 at Wed May 10 12:09:17 UTC 2017
kill -USR1 3919
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3919 killed at Wed May 10 12:09:17 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3987 >/dev/null 2>/dev/null
selfserv_9505 with PID 3987 found at Wed May 10 12:09:17 UTC 2017
selfserv_9505 with PID 3987 started at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5198: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 3987 at Wed May 10 12:09:17 UTC 2017
kill -USR1 3987
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3987 killed at Wed May 10 12:09:17 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4043 >/dev/null 2>/dev/null
selfserv_9505 with PID 4043 found at Wed May 10 12:09:17 UTC 2017
selfserv_9505 with PID 4043 started at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5199: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 4043 at Wed May 10 12:09:17 UTC 2017
kill -USR1 4043
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4043 killed at Wed May 10 12:09:17 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4099 >/dev/null 2>/dev/null
selfserv_9505 with PID 4099 found at Wed May 10 12:09:17 UTC 2017
selfserv_9505 with PID 4099 started at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5200: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 4099 at Wed May 10 12:09:17 UTC 2017
kill -USR1 4099
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4099 killed at Wed May 10 12:09:17 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4167 >/dev/null 2>/dev/null
selfserv_9505 with PID 4167 found at Wed May 10 12:09:17 UTC 2017
selfserv_9505 with PID 4167 started at Wed May 10 12:09:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5201: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 4167 at Wed May 10 12:09:18 UTC 2017
kill -USR1 4167
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4167 killed at Wed May 10 12:09:18 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4223 >/dev/null 2>/dev/null
selfserv_9505 with PID 4223 found at Wed May 10 12:09:18 UTC 2017
selfserv_9505 with PID 4223 started at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5202: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4223 at Wed May 10 12:09:18 UTC 2017
kill -USR1 4223
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4223 killed at Wed May 10 12:09:18 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4279 >/dev/null 2>/dev/null
selfserv_9505 with PID 4279 found at Wed May 10 12:09:18 UTC 2017
selfserv_9505 with PID 4279 started at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5203: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 4279 at Wed May 10 12:09:18 UTC 2017
kill -USR1 4279
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4279 killed at Wed May 10 12:09:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4347 >/dev/null 2>/dev/null
selfserv_9505 with PID 4347 found at Wed May 10 12:09:18 UTC 2017
selfserv_9505 with PID 4347 started at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5204: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4347 at Wed May 10 12:09:18 UTC 2017
kill -USR1 4347
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4347 killed at Wed May 10 12:09:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4403 >/dev/null 2>/dev/null
selfserv_9505 with PID 4403 found at Wed May 10 12:09:18 UTC 2017
selfserv_9505 with PID 4403 started at Wed May 10 12:09:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5205: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4403 at Wed May 10 12:09:19 UTC 2017
kill -USR1 4403
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4403 killed at Wed May 10 12:09:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4459 >/dev/null 2>/dev/null
selfserv_9505 with PID 4459 found at Wed May 10 12:09:19 UTC 2017
selfserv_9505 with PID 4459 started at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5206: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4459 at Wed May 10 12:09:19 UTC 2017
kill -USR1 4459
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4459 killed at Wed May 10 12:09:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4527 >/dev/null 2>/dev/null
selfserv_9505 with PID 4527 found at Wed May 10 12:09:19 UTC 2017
selfserv_9505 with PID 4527 started at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5207: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4527 at Wed May 10 12:09:19 UTC 2017
kill -USR1 4527
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4527 killed at Wed May 10 12:09:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4583 >/dev/null 2>/dev/null
selfserv_9505 with PID 4583 found at Wed May 10 12:09:19 UTC 2017
selfserv_9505 with PID 4583 started at Wed May 10 12:09:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5208: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4583 at Wed May 10 12:09:20 UTC 2017
kill -USR1 4583
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4583 killed at Wed May 10 12:09:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4639 >/dev/null 2>/dev/null
selfserv_9505 with PID 4639 found at Wed May 10 12:09:20 UTC 2017
selfserv_9505 with PID 4639 started at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5209: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4639 at Wed May 10 12:09:20 UTC 2017
kill -USR1 4639
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4639 killed at Wed May 10 12:09:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4707 >/dev/null 2>/dev/null
selfserv_9505 with PID 4707 found at Wed May 10 12:09:20 UTC 2017
selfserv_9505 with PID 4707 started at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5210: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4707 at Wed May 10 12:09:20 UTC 2017
kill -USR1 4707
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4707 killed at Wed May 10 12:09:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4763 >/dev/null 2>/dev/null
selfserv_9505 with PID 4763 found at Wed May 10 12:09:20 UTC 2017
selfserv_9505 with PID 4763 started at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5211: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 4763 at Wed May 10 12:09:20 UTC 2017
kill -USR1 4763
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4763 killed at Wed May 10 12:09:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4819 >/dev/null 2>/dev/null
selfserv_9505 with PID 4819 found at Wed May 10 12:09:21 UTC 2017
selfserv_9505 with PID 4819 started at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5212: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4819 at Wed May 10 12:09:21 UTC 2017
kill -USR1 4819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4819 killed at Wed May 10 12:09:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4887 >/dev/null 2>/dev/null
selfserv_9505 with PID 4887 found at Wed May 10 12:09:21 UTC 2017
selfserv_9505 with PID 4887 started at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5213: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4887 at Wed May 10 12:09:21 UTC 2017
kill -USR1 4887
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4887 killed at Wed May 10 12:09:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4943 >/dev/null 2>/dev/null
selfserv_9505 with PID 4943 found at Wed May 10 12:09:21 UTC 2017
selfserv_9505 with PID 4943 started at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5214: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4943 at Wed May 10 12:09:21 UTC 2017
kill -USR1 4943
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4943 killed at Wed May 10 12:09:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4999 >/dev/null 2>/dev/null
selfserv_9505 with PID 4999 found at Wed May 10 12:09:21 UTC 2017
selfserv_9505 with PID 4999 started at Wed May 10 12:09:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5215: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4999 at Wed May 10 12:09:22 UTC 2017
kill -USR1 4999
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4999 killed at Wed May 10 12:09:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5067 >/dev/null 2>/dev/null
selfserv_9505 with PID 5067 found at Wed May 10 12:09:22 UTC 2017
selfserv_9505 with PID 5067 started at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5216: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5067 at Wed May 10 12:09:22 UTC 2017
kill -USR1 5067
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5067 killed at Wed May 10 12:09:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5123 >/dev/null 2>/dev/null
selfserv_9505 with PID 5123 found at Wed May 10 12:09:22 UTC 2017
selfserv_9505 with PID 5123 started at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5217: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5123 at Wed May 10 12:09:22 UTC 2017
kill -USR1 5123
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5123 killed at Wed May 10 12:09:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5179 >/dev/null 2>/dev/null
selfserv_9505 with PID 5179 found at Wed May 10 12:09:22 UTC 2017
selfserv_9505 with PID 5179 started at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5218: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5179 at Wed May 10 12:09:22 UTC 2017
kill -USR1 5179
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5179 killed at Wed May 10 12:09:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5247 >/dev/null 2>/dev/null
selfserv_9505 with PID 5247 found at Wed May 10 12:09:23 UTC 2017
selfserv_9505 with PID 5247 started at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5219: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5247 at Wed May 10 12:09:23 UTC 2017
kill -USR1 5247
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5247 killed at Wed May 10 12:09:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5303 >/dev/null 2>/dev/null
selfserv_9505 with PID 5303 found at Wed May 10 12:09:23 UTC 2017
selfserv_9505 with PID 5303 started at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5220: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5303 at Wed May 10 12:09:23 UTC 2017
kill -USR1 5303
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5303 killed at Wed May 10 12:09:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5359 >/dev/null 2>/dev/null
selfserv_9505 with PID 5359 found at Wed May 10 12:09:23 UTC 2017
selfserv_9505 with PID 5359 started at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5221: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5359 at Wed May 10 12:09:23 UTC 2017
kill -USR1 5359
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5359 killed at Wed May 10 12:09:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5427 >/dev/null 2>/dev/null
selfserv_9505 with PID 5427 found at Wed May 10 12:09:23 UTC 2017
selfserv_9505 with PID 5427 started at Wed May 10 12:09:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5222: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5427 at Wed May 10 12:09:24 UTC 2017
kill -USR1 5427
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5427 killed at Wed May 10 12:09:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5483 >/dev/null 2>/dev/null
selfserv_9505 with PID 5483 found at Wed May 10 12:09:24 UTC 2017
selfserv_9505 with PID 5483 started at Wed May 10 12:09:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5223: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5483 at Wed May 10 12:09:24 UTC 2017
kill -USR1 5483
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5483 killed at Wed May 10 12:09:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5539 >/dev/null 2>/dev/null
selfserv_9505 with PID 5539 found at Wed May 10 12:09:24 UTC 2017
selfserv_9505 with PID 5539 started at Wed May 10 12:09:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5224: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5539 at Wed May 10 12:09:24 UTC 2017
kill -USR1 5539
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5539 killed at Wed May 10 12:09:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5607 >/dev/null 2>/dev/null
selfserv_9505 with PID 5607 found at Wed May 10 12:09:24 UTC 2017
selfserv_9505 with PID 5607 started at Wed May 10 12:09:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5225: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5607 at Wed May 10 12:09:25 UTC 2017
kill -USR1 5607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5607 killed at Wed May 10 12:09:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5664 >/dev/null 2>/dev/null
selfserv_9505 with PID 5664 found at Wed May 10 12:09:25 UTC 2017
selfserv_9505 with PID 5664 started at Wed May 10 12:09:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5226: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5664 at Wed May 10 12:09:25 UTC 2017
kill -USR1 5664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5664 killed at Wed May 10 12:09:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5720 >/dev/null 2>/dev/null
selfserv_9505 with PID 5720 found at Wed May 10 12:09:25 UTC 2017
selfserv_9505 with PID 5720 started at Wed May 10 12:09:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5227: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5720 at Wed May 10 12:09:25 UTC 2017
kill -USR1 5720
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5720 killed at Wed May 10 12:09:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5788 >/dev/null 2>/dev/null
selfserv_9505 with PID 5788 found at Wed May 10 12:09:25 UTC 2017
selfserv_9505 with PID 5788 started at Wed May 10 12:09:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5228: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5788 at Wed May 10 12:09:26 UTC 2017
kill -USR1 5788
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5788 killed at Wed May 10 12:09:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5844 >/dev/null 2>/dev/null
selfserv_9505 with PID 5844 found at Wed May 10 12:09:26 UTC 2017
selfserv_9505 with PID 5844 started at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5229: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5844 at Wed May 10 12:09:26 UTC 2017
kill -USR1 5844
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5844 killed at Wed May 10 12:09:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5900 >/dev/null 2>/dev/null
selfserv_9505 with PID 5900 found at Wed May 10 12:09:26 UTC 2017
selfserv_9505 with PID 5900 started at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5230: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5900 at Wed May 10 12:09:26 UTC 2017
kill -USR1 5900
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5900 killed at Wed May 10 12:09:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5968 >/dev/null 2>/dev/null
selfserv_9505 with PID 5968 found at Wed May 10 12:09:26 UTC 2017
selfserv_9505 with PID 5968 started at Wed May 10 12:09:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5231: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5968 at Wed May 10 12:09:27 UTC 2017
kill -USR1 5968
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5968 killed at Wed May 10 12:09:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6024 >/dev/null 2>/dev/null
selfserv_9505 with PID 6024 found at Wed May 10 12:09:27 UTC 2017
selfserv_9505 with PID 6024 started at Wed May 10 12:09:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5232: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6024 at Wed May 10 12:09:27 UTC 2017
kill -USR1 6024
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6024 killed at Wed May 10 12:09:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6080 >/dev/null 2>/dev/null
selfserv_9505 with PID 6080 found at Wed May 10 12:09:27 UTC 2017
selfserv_9505 with PID 6080 started at Wed May 10 12:09:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5233: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6080 at Wed May 10 12:09:27 UTC 2017
kill -USR1 6080
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6080 killed at Wed May 10 12:09:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6148 >/dev/null 2>/dev/null
selfserv_9505 with PID 6148 found at Wed May 10 12:09:27 UTC 2017
selfserv_9505 with PID 6148 started at Wed May 10 12:09:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5234: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6148 at Wed May 10 12:09:27 UTC 2017
kill -USR1 6148
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6148 killed at Wed May 10 12:09:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6204 >/dev/null 2>/dev/null
selfserv_9505 with PID 6204 found at Wed May 10 12:09:28 UTC 2017
selfserv_9505 with PID 6204 started at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5235: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6204 at Wed May 10 12:09:28 UTC 2017
kill -USR1 6204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6204 killed at Wed May 10 12:09:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6260 >/dev/null 2>/dev/null
selfserv_9505 with PID 6260 found at Wed May 10 12:09:28 UTC 2017
selfserv_9505 with PID 6260 started at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5236: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6260 at Wed May 10 12:09:28 UTC 2017
kill -USR1 6260
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6260 killed at Wed May 10 12:09:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6329 >/dev/null 2>/dev/null
selfserv_9505 with PID 6329 found at Wed May 10 12:09:28 UTC 2017
selfserv_9505 with PID 6329 started at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5237: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6329 at Wed May 10 12:09:28 UTC 2017
kill -USR1 6329
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6329 killed at Wed May 10 12:09:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6385 >/dev/null 2>/dev/null
selfserv_9505 with PID 6385 found at Wed May 10 12:09:28 UTC 2017
selfserv_9505 with PID 6385 started at Wed May 10 12:09:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5238: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6385 at Wed May 10 12:09:29 UTC 2017
kill -USR1 6385
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6385 killed at Wed May 10 12:09:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6441 >/dev/null 2>/dev/null
selfserv_9505 with PID 6441 found at Wed May 10 12:09:29 UTC 2017
selfserv_9505 with PID 6441 started at Wed May 10 12:09:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5239: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6441 at Wed May 10 12:09:29 UTC 2017
kill -USR1 6441
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6441 killed at Wed May 10 12:09:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6509 >/dev/null 2>/dev/null
selfserv_9505 with PID 6509 found at Wed May 10 12:09:29 UTC 2017
selfserv_9505 with PID 6509 started at Wed May 10 12:09:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5240: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6509 at Wed May 10 12:09:29 UTC 2017
kill -USR1 6509
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6509 killed at Wed May 10 12:09:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6565 >/dev/null 2>/dev/null
selfserv_9505 with PID 6565 found at Wed May 10 12:09:29 UTC 2017
selfserv_9505 with PID 6565 started at Wed May 10 12:09:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5241: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6565 at Wed May 10 12:09:30 UTC 2017
kill -USR1 6565
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6565 killed at Wed May 10 12:09:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6621 >/dev/null 2>/dev/null
selfserv_9505 with PID 6621 found at Wed May 10 12:09:30 UTC 2017
selfserv_9505 with PID 6621 started at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5242: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6621 at Wed May 10 12:09:30 UTC 2017
kill -USR1 6621
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6621 killed at Wed May 10 12:09:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6689 >/dev/null 2>/dev/null
selfserv_9505 with PID 6689 found at Wed May 10 12:09:30 UTC 2017
selfserv_9505 with PID 6689 started at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5243: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6689 at Wed May 10 12:09:30 UTC 2017
kill -USR1 6689
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6689 killed at Wed May 10 12:09:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6745 >/dev/null 2>/dev/null
selfserv_9505 with PID 6745 found at Wed May 10 12:09:30 UTC 2017
selfserv_9505 with PID 6745 started at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5244: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6745 at Wed May 10 12:09:30 UTC 2017
kill -USR1 6745
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6745 killed at Wed May 10 12:09:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6801 >/dev/null 2>/dev/null
selfserv_9505 with PID 6801 found at Wed May 10 12:09:30 UTC 2017
selfserv_9505 with PID 6801 started at Wed May 10 12:09:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5245: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6801 at Wed May 10 12:09:31 UTC 2017
kill -USR1 6801
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6801 killed at Wed May 10 12:09:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6870 >/dev/null 2>/dev/null
selfserv_9505 with PID 6870 found at Wed May 10 12:09:31 UTC 2017
selfserv_9505 with PID 6870 started at Wed May 10 12:09:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5246: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6870 at Wed May 10 12:09:31 UTC 2017
kill -USR1 6870
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6870 killed at Wed May 10 12:09:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6926 >/dev/null 2>/dev/null
selfserv_9505 with PID 6926 found at Wed May 10 12:09:31 UTC 2017
selfserv_9505 with PID 6926 started at Wed May 10 12:09:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5247: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6926 at Wed May 10 12:09:31 UTC 2017
kill -USR1 6926
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6926 killed at Wed May 10 12:09:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6982 >/dev/null 2>/dev/null
selfserv_9505 with PID 6982 found at Wed May 10 12:09:31 UTC 2017
selfserv_9505 with PID 6982 started at Wed May 10 12:09:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5248: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6982 at Wed May 10 12:09:31 UTC 2017
kill -USR1 6982
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6982 killed at Wed May 10 12:09:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7050 >/dev/null 2>/dev/null
selfserv_9505 with PID 7050 found at Wed May 10 12:09:32 UTC 2017
selfserv_9505 with PID 7050 started at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5249: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7050 at Wed May 10 12:09:32 UTC 2017
kill -USR1 7050
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7050 killed at Wed May 10 12:09:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7106 >/dev/null 2>/dev/null
selfserv_9505 with PID 7106 found at Wed May 10 12:09:32 UTC 2017
selfserv_9505 with PID 7106 started at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5250: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7106 at Wed May 10 12:09:32 UTC 2017
kill -USR1 7106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7106 killed at Wed May 10 12:09:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:09:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7162 >/dev/null 2>/dev/null
selfserv_9505 with PID 7162 found at Wed May 10 12:09:32 UTC 2017
selfserv_9505 with PID 7162 started at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5251: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7162 at Wed May 10 12:09:32 UTC 2017
kill -USR1 7162
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7162 killed at Wed May 10 12:09:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7230 >/dev/null 2>/dev/null
selfserv_9505 with PID 7230 found at Wed May 10 12:09:32 UTC 2017
selfserv_9505 with PID 7230 started at Wed May 10 12:09:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5252: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7230 at Wed May 10 12:09:33 UTC 2017
kill -USR1 7230
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7230 killed at Wed May 10 12:09:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7286 >/dev/null 2>/dev/null
selfserv_9505 with PID 7286 found at Wed May 10 12:09:33 UTC 2017
selfserv_9505 with PID 7286 started at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5253: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7286 at Wed May 10 12:09:33 UTC 2017
kill -USR1 7286
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7286 killed at Wed May 10 12:09:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7342 >/dev/null 2>/dev/null
selfserv_9505 with PID 7342 found at Wed May 10 12:09:33 UTC 2017
selfserv_9505 with PID 7342 started at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5254: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7342 at Wed May 10 12:09:33 UTC 2017
kill -USR1 7342
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7342 killed at Wed May 10 12:09:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7410 >/dev/null 2>/dev/null
selfserv_9505 with PID 7410 found at Wed May 10 12:09:33 UTC 2017
selfserv_9505 with PID 7410 started at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5255: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7410 at Wed May 10 12:09:33 UTC 2017
kill -USR1 7410
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7410 killed at Wed May 10 12:09:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7466 >/dev/null 2>/dev/null
selfserv_9505 with PID 7466 found at Wed May 10 12:09:33 UTC 2017
selfserv_9505 with PID 7466 started at Wed May 10 12:09:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5256: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7466 at Wed May 10 12:09:34 UTC 2017
kill -USR1 7466
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7466 killed at Wed May 10 12:09:34 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7522 >/dev/null 2>/dev/null
selfserv_9505 with PID 7522 found at Wed May 10 12:09:34 UTC 2017
selfserv_9505 with PID 7522 started at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5257: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 7522 at Wed May 10 12:09:34 UTC 2017
kill -USR1 7522
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7522 killed at Wed May 10 12:09:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7599 >/dev/null 2>/dev/null
selfserv_9505 with PID 7599 found at Wed May 10 12:09:34 UTC 2017
selfserv_9505 with PID 7599 started at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5258: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7599 at Wed May 10 12:09:34 UTC 2017
kill -USR1 7599
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7599 killed at Wed May 10 12:09:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7655 >/dev/null 2>/dev/null
selfserv_9505 with PID 7655 found at Wed May 10 12:09:34 UTC 2017
selfserv_9505 with PID 7655 started at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5259: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7655 at Wed May 10 12:09:34 UTC 2017
kill -USR1 7655
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7655 killed at Wed May 10 12:09:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7711 >/dev/null 2>/dev/null
selfserv_9505 with PID 7711 found at Wed May 10 12:09:34 UTC 2017
selfserv_9505 with PID 7711 started at Wed May 10 12:09:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5260: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7711 at Wed May 10 12:09:35 UTC 2017
kill -USR1 7711
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7711 killed at Wed May 10 12:09:35 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7779 >/dev/null 2>/dev/null
selfserv_9505 with PID 7779 found at Wed May 10 12:09:35 UTC 2017
selfserv_9505 with PID 7779 started at Wed May 10 12:09:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5261: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7779 at Wed May 10 12:09:35 UTC 2017
kill -USR1 7779
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7779 killed at Wed May 10 12:09:35 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7835 >/dev/null 2>/dev/null
selfserv_9505 with PID 7835 found at Wed May 10 12:09:35 UTC 2017
selfserv_9505 with PID 7835 started at Wed May 10 12:09:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5262: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7835 at Wed May 10 12:09:35 UTC 2017
kill -USR1 7835
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7835 killed at Wed May 10 12:09:35 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7891 >/dev/null 2>/dev/null
selfserv_9505 with PID 7891 found at Wed May 10 12:09:35 UTC 2017
selfserv_9505 with PID 7891 started at Wed May 10 12:09:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5263: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7891 at Wed May 10 12:09:36 UTC 2017
kill -USR1 7891
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7891 killed at Wed May 10 12:09:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7959 >/dev/null 2>/dev/null
selfserv_9505 with PID 7959 found at Wed May 10 12:09:36 UTC 2017
selfserv_9505 with PID 7959 started at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5264: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7959 at Wed May 10 12:09:36 UTC 2017
kill -USR1 7959
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7959 killed at Wed May 10 12:09:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8015 >/dev/null 2>/dev/null
selfserv_9505 with PID 8015 found at Wed May 10 12:09:36 UTC 2017
selfserv_9505 with PID 8015 started at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5265: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8015 at Wed May 10 12:09:36 UTC 2017
kill -USR1 8015
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8015 killed at Wed May 10 12:09:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8071 >/dev/null 2>/dev/null
selfserv_9505 with PID 8071 found at Wed May 10 12:09:36 UTC 2017
selfserv_9505 with PID 8071 started at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5266: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8071 at Wed May 10 12:09:36 UTC 2017
kill -USR1 8071
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8071 killed at Wed May 10 12:09:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8139 >/dev/null 2>/dev/null
selfserv_9505 with PID 8139 found at Wed May 10 12:09:36 UTC 2017
selfserv_9505 with PID 8139 started at Wed May 10 12:09:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5267: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8139 at Wed May 10 12:09:37 UTC 2017
kill -USR1 8139
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8139 killed at Wed May 10 12:09:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8195 >/dev/null 2>/dev/null
selfserv_9505 with PID 8195 found at Wed May 10 12:09:37 UTC 2017
selfserv_9505 with PID 8195 started at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5268: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8195 at Wed May 10 12:09:37 UTC 2017
kill -USR1 8195
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8195 killed at Wed May 10 12:09:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8251 >/dev/null 2>/dev/null
selfserv_9505 with PID 8251 found at Wed May 10 12:09:37 UTC 2017
selfserv_9505 with PID 8251 started at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5269: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8251 at Wed May 10 12:09:37 UTC 2017
kill -USR1 8251
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8251 killed at Wed May 10 12:09:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8319 >/dev/null 2>/dev/null
selfserv_9505 with PID 8319 found at Wed May 10 12:09:37 UTC 2017
selfserv_9505 with PID 8319 started at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5270: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8319 at Wed May 10 12:09:37 UTC 2017
kill -USR1 8319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8319 killed at Wed May 10 12:09:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8375 >/dev/null 2>/dev/null
selfserv_9505 with PID 8375 found at Wed May 10 12:09:37 UTC 2017
selfserv_9505 with PID 8375 started at Wed May 10 12:09:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5271: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8375 at Wed May 10 12:09:38 UTC 2017
kill -USR1 8375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8375 killed at Wed May 10 12:09:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8431 >/dev/null 2>/dev/null
selfserv_9505 with PID 8431 found at Wed May 10 12:09:38 UTC 2017
selfserv_9505 with PID 8431 started at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5272: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8431 at Wed May 10 12:09:38 UTC 2017
kill -USR1 8431
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8431 killed at Wed May 10 12:09:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8499 >/dev/null 2>/dev/null
selfserv_9505 with PID 8499 found at Wed May 10 12:09:38 UTC 2017
selfserv_9505 with PID 8499 started at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5273: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8499 at Wed May 10 12:09:38 UTC 2017
kill -USR1 8499
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8499 killed at Wed May 10 12:09:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8555 >/dev/null 2>/dev/null
selfserv_9505 with PID 8555 found at Wed May 10 12:09:38 UTC 2017
selfserv_9505 with PID 8555 started at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5274: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8555 at Wed May 10 12:09:38 UTC 2017
kill -USR1 8555
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8555 killed at Wed May 10 12:09:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8611 >/dev/null 2>/dev/null
selfserv_9505 with PID 8611 found at Wed May 10 12:09:38 UTC 2017
selfserv_9505 with PID 8611 started at Wed May 10 12:09:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5275: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8611 at Wed May 10 12:09:39 UTC 2017
kill -USR1 8611
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8611 killed at Wed May 10 12:09:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8679 >/dev/null 2>/dev/null
selfserv_9505 with PID 8679 found at Wed May 10 12:09:39 UTC 2017
selfserv_9505 with PID 8679 started at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5276: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8679 at Wed May 10 12:09:39 UTC 2017
kill -USR1 8679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8679 killed at Wed May 10 12:09:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8735 >/dev/null 2>/dev/null
selfserv_9505 with PID 8735 found at Wed May 10 12:09:39 UTC 2017
selfserv_9505 with PID 8735 started at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5277: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8735 at Wed May 10 12:09:39 UTC 2017
kill -USR1 8735
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8735 killed at Wed May 10 12:09:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8791 >/dev/null 2>/dev/null
selfserv_9505 with PID 8791 found at Wed May 10 12:09:39 UTC 2017
selfserv_9505 with PID 8791 started at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5278: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8791 at Wed May 10 12:09:39 UTC 2017
kill -USR1 8791
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8791 killed at Wed May 10 12:09:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8859 >/dev/null 2>/dev/null
selfserv_9505 with PID 8859 found at Wed May 10 12:09:39 UTC 2017
selfserv_9505 with PID 8859 started at Wed May 10 12:09:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5279: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8859 at Wed May 10 12:09:40 UTC 2017
kill -USR1 8859
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8859 killed at Wed May 10 12:09:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8915 >/dev/null 2>/dev/null
selfserv_9505 with PID 8915 found at Wed May 10 12:09:40 UTC 2017
selfserv_9505 with PID 8915 started at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5280: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8915 at Wed May 10 12:09:40 UTC 2017
kill -USR1 8915
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8915 killed at Wed May 10 12:09:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8971 >/dev/null 2>/dev/null
selfserv_9505 with PID 8971 found at Wed May 10 12:09:40 UTC 2017
selfserv_9505 with PID 8971 started at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5281: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 8971 at Wed May 10 12:09:40 UTC 2017
kill -USR1 8971
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8971 killed at Wed May 10 12:09:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9040 >/dev/null 2>/dev/null
selfserv_9505 with PID 9040 found at Wed May 10 12:09:40 UTC 2017
selfserv_9505 with PID 9040 started at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5282: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9040 at Wed May 10 12:09:40 UTC 2017
kill -USR1 9040
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9040 killed at Wed May 10 12:09:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9097 >/dev/null 2>/dev/null
selfserv_9505 with PID 9097 found at Wed May 10 12:09:40 UTC 2017
selfserv_9505 with PID 9097 started at Wed May 10 12:09:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5283: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9097 at Wed May 10 12:09:41 UTC 2017
kill -USR1 9097
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9097 killed at Wed May 10 12:09:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9153 >/dev/null 2>/dev/null
selfserv_9505 with PID 9153 found at Wed May 10 12:09:41 UTC 2017
selfserv_9505 with PID 9153 started at Wed May 10 12:09:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5284: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9153 at Wed May 10 12:09:41 UTC 2017
kill -USR1 9153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9153 killed at Wed May 10 12:09:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9221 >/dev/null 2>/dev/null
selfserv_9505 with PID 9221 found at Wed May 10 12:09:41 UTC 2017
selfserv_9505 with PID 9221 started at Wed May 10 12:09:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5285: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9221 at Wed May 10 12:09:41 UTC 2017
kill -USR1 9221
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9221 killed at Wed May 10 12:09:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9277 >/dev/null 2>/dev/null
selfserv_9505 with PID 9277 found at Wed May 10 12:09:41 UTC 2017
selfserv_9505 with PID 9277 started at Wed May 10 12:09:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5286: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9277 at Wed May 10 12:09:42 UTC 2017
kill -USR1 9277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9277 killed at Wed May 10 12:09:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9333 >/dev/null 2>/dev/null
selfserv_9505 with PID 9333 found at Wed May 10 12:09:42 UTC 2017
selfserv_9505 with PID 9333 started at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5287: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9333 at Wed May 10 12:09:42 UTC 2017
kill -USR1 9333
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9333 killed at Wed May 10 12:09:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9401 >/dev/null 2>/dev/null
selfserv_9505 with PID 9401 found at Wed May 10 12:09:42 UTC 2017
selfserv_9505 with PID 9401 started at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5288: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9401 at Wed May 10 12:09:42 UTC 2017
kill -USR1 9401
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9401 killed at Wed May 10 12:09:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9458 >/dev/null 2>/dev/null
selfserv_9505 with PID 9458 found at Wed May 10 12:09:42 UTC 2017
selfserv_9505 with PID 9458 started at Wed May 10 12:09:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5289: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9458 at Wed May 10 12:09:43 UTC 2017
kill -USR1 9458
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9458 killed at Wed May 10 12:09:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9514 >/dev/null 2>/dev/null
selfserv_9505 with PID 9514 found at Wed May 10 12:09:43 UTC 2017
selfserv_9505 with PID 9514 started at Wed May 10 12:09:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5290: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9514 at Wed May 10 12:09:43 UTC 2017
kill -USR1 9514
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9514 killed at Wed May 10 12:09:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9582 >/dev/null 2>/dev/null
selfserv_9505 with PID 9582 found at Wed May 10 12:09:43 UTC 2017
selfserv_9505 with PID 9582 started at Wed May 10 12:09:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5291: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9582 at Wed May 10 12:09:43 UTC 2017
kill -USR1 9582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9582 killed at Wed May 10 12:09:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9638 >/dev/null 2>/dev/null
selfserv_9505 with PID 9638 found at Wed May 10 12:09:43 UTC 2017
selfserv_9505 with PID 9638 started at Wed May 10 12:09:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5292: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9638 at Wed May 10 12:09:44 UTC 2017
kill -USR1 9638
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9638 killed at Wed May 10 12:09:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9695 >/dev/null 2>/dev/null
selfserv_9505 with PID 9695 found at Wed May 10 12:09:44 UTC 2017
selfserv_9505 with PID 9695 started at Wed May 10 12:09:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5293: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9695 at Wed May 10 12:09:44 UTC 2017
kill -USR1 9695
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9695 killed at Wed May 10 12:09:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9763 >/dev/null 2>/dev/null
selfserv_9505 with PID 9763 found at Wed May 10 12:09:44 UTC 2017
selfserv_9505 with PID 9763 started at Wed May 10 12:09:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5294: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9763 at Wed May 10 12:09:44 UTC 2017
kill -USR1 9763
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9763 killed at Wed May 10 12:09:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9819 >/dev/null 2>/dev/null
selfserv_9505 with PID 9819 found at Wed May 10 12:09:44 UTC 2017
selfserv_9505 with PID 9819 started at Wed May 10 12:09:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5295: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9819 at Wed May 10 12:09:44 UTC 2017
kill -USR1 9819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9819 killed at Wed May 10 12:09:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9875 >/dev/null 2>/dev/null
selfserv_9505 with PID 9875 found at Wed May 10 12:09:45 UTC 2017
selfserv_9505 with PID 9875 started at Wed May 10 12:09:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5296: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9875 at Wed May 10 12:09:45 UTC 2017
kill -USR1 9875
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9875 killed at Wed May 10 12:09:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9943 >/dev/null 2>/dev/null
selfserv_9505 with PID 9943 found at Wed May 10 12:09:45 UTC 2017
selfserv_9505 with PID 9943 started at Wed May 10 12:09:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5297: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9943 at Wed May 10 12:09:45 UTC 2017
kill -USR1 9943
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9943 killed at Wed May 10 12:09:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9999 >/dev/null 2>/dev/null
selfserv_9505 with PID 9999 found at Wed May 10 12:09:45 UTC 2017
selfserv_9505 with PID 9999 started at Wed May 10 12:09:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5298: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9999 at Wed May 10 12:09:46 UTC 2017
kill -USR1 9999
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9999 killed at Wed May 10 12:09:46 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10055 >/dev/null 2>/dev/null
selfserv_9505 with PID 10055 found at Wed May 10 12:09:46 UTC 2017
selfserv_9505 with PID 10055 started at Wed May 10 12:09:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5299: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10055 at Wed May 10 12:09:46 UTC 2017
kill -USR1 10055
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10055 killed at Wed May 10 12:09:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10123 >/dev/null 2>/dev/null
selfserv_9505 with PID 10123 found at Wed May 10 12:09:46 UTC 2017
selfserv_9505 with PID 10123 started at Wed May 10 12:09:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5300: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10123 at Wed May 10 12:09:46 UTC 2017
kill -USR1 10123
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10123 killed at Wed May 10 12:09:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10179 >/dev/null 2>/dev/null
selfserv_9505 with PID 10179 found at Wed May 10 12:09:46 UTC 2017
selfserv_9505 with PID 10179 started at Wed May 10 12:09:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5301: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10179 at Wed May 10 12:09:46 UTC 2017
kill -USR1 10179
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10179 killed at Wed May 10 12:09:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10235 >/dev/null 2>/dev/null
selfserv_9505 with PID 10235 found at Wed May 10 12:09:47 UTC 2017
selfserv_9505 with PID 10235 started at Wed May 10 12:09:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5302: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10235 at Wed May 10 12:09:47 UTC 2017
kill -USR1 10235
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10235 killed at Wed May 10 12:09:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10303 >/dev/null 2>/dev/null
selfserv_9505 with PID 10303 found at Wed May 10 12:09:47 UTC 2017
selfserv_9505 with PID 10303 started at Wed May 10 12:09:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5303: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10303 at Wed May 10 12:09:47 UTC 2017
kill -USR1 10303
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10303 killed at Wed May 10 12:09:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10359 >/dev/null 2>/dev/null
selfserv_9505 with PID 10359 found at Wed May 10 12:09:47 UTC 2017
selfserv_9505 with PID 10359 started at Wed May 10 12:09:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5304: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10359 at Wed May 10 12:09:48 UTC 2017
kill -USR1 10359
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10359 killed at Wed May 10 12:09:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10415 >/dev/null 2>/dev/null
selfserv_9505 with PID 10415 found at Wed May 10 12:09:48 UTC 2017
selfserv_9505 with PID 10415 started at Wed May 10 12:09:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5305: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10415 at Wed May 10 12:09:48 UTC 2017
kill -USR1 10415
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10415 killed at Wed May 10 12:09:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10483 >/dev/null 2>/dev/null
selfserv_9505 with PID 10483 found at Wed May 10 12:09:48 UTC 2017
selfserv_9505 with PID 10483 started at Wed May 10 12:09:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5306: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10483 at Wed May 10 12:09:48 UTC 2017
kill -USR1 10483
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10483 killed at Wed May 10 12:09:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10539 >/dev/null 2>/dev/null
selfserv_9505 with PID 10539 found at Wed May 10 12:09:48 UTC 2017
selfserv_9505 with PID 10539 started at Wed May 10 12:09:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5307: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10539 at Wed May 10 12:09:48 UTC 2017
kill -USR1 10539
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10539 killed at Wed May 10 12:09:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10599 >/dev/null 2>/dev/null
selfserv_9505 with PID 10599 found at Wed May 10 12:09:49 UTC 2017
selfserv_9505 with PID 10599 started at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5308: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10599 at Wed May 10 12:09:49 UTC 2017
kill -USR1 10599
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10599 killed at Wed May 10 12:09:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10667 >/dev/null 2>/dev/null
selfserv_9505 with PID 10667 found at Wed May 10 12:09:49 UTC 2017
selfserv_9505 with PID 10667 started at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5309: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10667 at Wed May 10 12:09:49 UTC 2017
kill -USR1 10667
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10667 killed at Wed May 10 12:09:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10723 >/dev/null 2>/dev/null
selfserv_9505 with PID 10723 found at Wed May 10 12:09:49 UTC 2017
selfserv_9505 with PID 10723 started at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5310: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10723 at Wed May 10 12:09:49 UTC 2017
kill -USR1 10723
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10723 killed at Wed May 10 12:09:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10779 >/dev/null 2>/dev/null
selfserv_9505 with PID 10779 found at Wed May 10 12:09:49 UTC 2017
selfserv_9505 with PID 10779 started at Wed May 10 12:09:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5311: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10779 at Wed May 10 12:09:50 UTC 2017
kill -USR1 10779
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10779 killed at Wed May 10 12:09:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10847 >/dev/null 2>/dev/null
selfserv_9505 with PID 10847 found at Wed May 10 12:09:50 UTC 2017
selfserv_9505 with PID 10847 started at Wed May 10 12:09:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5312: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10847 at Wed May 10 12:09:50 UTC 2017
kill -USR1 10847
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10847 killed at Wed May 10 12:09:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10903 >/dev/null 2>/dev/null
selfserv_9505 with PID 10903 found at Wed May 10 12:09:50 UTC 2017
selfserv_9505 with PID 10903 started at Wed May 10 12:09:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5313: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10903 at Wed May 10 12:09:50 UTC 2017
kill -USR1 10903
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10903 killed at Wed May 10 12:09:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:09:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10959 >/dev/null 2>/dev/null
selfserv_9505 with PID 10959 found at Wed May 10 12:09:50 UTC 2017
selfserv_9505 with PID 10959 started at Wed May 10 12:09:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5314: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10959 at Wed May 10 12:09:50 UTC 2017
kill -USR1 10959
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10959 killed at Wed May 10 12:09:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11027 >/dev/null 2>/dev/null
selfserv_9505 with PID 11027 found at Wed May 10 12:09:51 UTC 2017
selfserv_9505 with PID 11027 started at Wed May 10 12:09:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5315: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 11027 at Wed May 10 12:09:51 UTC 2017
kill -USR1 11027
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11027 killed at Wed May 10 12:09:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11083 >/dev/null 2>/dev/null
selfserv_9505 with PID 11083 found at Wed May 10 12:09:51 UTC 2017
selfserv_9505 with PID 11083 started at Wed May 10 12:09:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5316: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11083 at Wed May 10 12:09:51 UTC 2017
kill -USR1 11083
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11083 killed at Wed May 10 12:09:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11139 >/dev/null 2>/dev/null
selfserv_9505 with PID 11139 found at Wed May 10 12:09:51 UTC 2017
selfserv_9505 with PID 11139 started at Wed May 10 12:09:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5317: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 11139 at Wed May 10 12:09:51 UTC 2017
kill -USR1 11139
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11139 killed at Wed May 10 12:09:52 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9505 starting at Wed May 10 12:09:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
selfserv_9505 with PID 11202 started at Wed May 10 12:09:52 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #5318: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #5319: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #5320: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #5321: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #5322: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:52 UTC 2017
ssl.sh: #5323: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5324: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5325: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5326: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5327: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5328: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5329: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
ssl.sh: #5330: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5331: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5332: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5333: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5334: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5335: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5336: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5337: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5338: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:54 UTC 2017
ssl.sh: #5339: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #5340: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #5341: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #5342: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #5343: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #5344: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5345: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:55 UTC 2017
ssl.sh: #5346: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5347: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5348: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5349: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5350: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5351: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5352: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5353: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:56 UTC 2017
ssl.sh: #5354: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5355: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5356: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5357: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11202 >/dev/null 2>/dev/null
selfserv_9505 with PID 11202 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5358: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11202 at Wed May 10 12:09:57 UTC 2017
kill -USR1 11202
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11202 killed at Wed May 10 12:09:57 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:09:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:09:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:57 UTC 2017
selfserv_9505 with PID 12625 started at Wed May 10 12:09:57 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5359: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5360: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:57 UTC 2017
ssl.sh: #5361: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5362: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5363: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5364: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5365: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5366: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5367: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5368: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5369: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:58 UTC 2017
ssl.sh: #5370: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5371: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5372: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5373: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5374: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5375: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5376: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5377: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5378: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:09:59 UTC 2017
ssl.sh: #5379: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5380: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5381: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5382: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5383: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5384: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5385: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5386: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5387: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:00 UTC 2017
ssl.sh: #5388: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5389: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5390: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5391: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5392: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5393: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5394: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5395: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5396: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:01 UTC 2017
ssl.sh: #5397: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #5398: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12625 >/dev/null 2>/dev/null
selfserv_9505 with PID 12625 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #5399: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12625 at Wed May 10 12:10:02 UTC 2017
kill -USR1 12625
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12625 killed at Wed May 10 12:10:02 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:02 UTC 2017
selfserv_9505 with PID 14050 started at Wed May 10 12:10:02 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #5400: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #5401: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #5402: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:02 UTC 2017
ssl.sh: #5403: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5404: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5405: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5406: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5407: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5408: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5409: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:03 UTC 2017
ssl.sh: #5410: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #5411: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #5412: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5413: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #5414: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #5415: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #5416: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:04 UTC 2017
ssl.sh: #5417: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #5418: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #5419: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #5420: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #5421: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #5422: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:05 UTC 2017
ssl.sh: #5423: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #5424: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #5425: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #5426: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5427: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #5428: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #5429: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:06 UTC 2017
ssl.sh: #5430: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5431: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5432: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5433: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5434: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5435: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5436: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5437: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:07 UTC 2017
ssl.sh: #5438: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #5439: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9505 with PID 14050 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #5440: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 14050 at Wed May 10 12:10:08 UTC 2017
kill -USR1 14050
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14050 killed at Wed May 10 12:10:08 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:08 UTC 2017
selfserv_9505 with PID 15472 started at Wed May 10 12:10:08 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #5441: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #5442: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #5443: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:08 UTC 2017
ssl.sh: #5444: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5445: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5446: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5447: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5448: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5449: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5450: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:09 UTC 2017
ssl.sh: #5451: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #5452: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #5453: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5454: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #5455: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #5456: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #5457: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:10 UTC 2017
ssl.sh: #5458: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5459: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5460: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5461: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5462: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5463: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5464: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5465: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:11 UTC 2017
ssl.sh: #5466: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5467: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5468: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5469: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5470: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5471: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5472: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5473: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:12 UTC 2017
ssl.sh: #5474: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5475: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5476: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5477: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5478: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5479: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5480: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15472 >/dev/null 2>/dev/null
selfserv_9505 with PID 15472 found at Wed May 10 12:10:13 UTC 2017
ssl.sh: #5481: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 15472 at Wed May 10 12:10:13 UTC 2017
kill -USR1 15472
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15472 killed at Wed May 10 12:10:13 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16894 >/dev/null 2>/dev/null
selfserv_9505 with PID 16894 found at Wed May 10 12:10:13 UTC 2017
selfserv_9505 with PID 16894 started at Wed May 10 12:10:13 UTC 2017
trying to kill selfserv_9505 with PID 16894 at Wed May 10 12:10:13 UTC 2017
kill -USR1 16894
./ssl.sh: line 183: 16894 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16894 killed at Wed May 10 12:10:13 UTC 2017
selfserv_9505 starting at Wed May 10 12:10:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:13 UTC 2017
selfserv_9505 with PID 16936 started at Wed May 10 12:10:13 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:14 UTC 2017
ssl.sh: #5482: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:14 UTC 2017
ssl.sh: #5483: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:14 UTC 2017
ssl.sh: #5484: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:14 UTC 2017
ssl.sh: #5485: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:14 UTC 2017
ssl.sh: #5486: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:15 UTC 2017
ssl.sh: #5487: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:15 UTC 2017
ssl.sh: #5488: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:15 UTC 2017
ssl.sh: #5489: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:15 UTC 2017
ssl.sh: #5490: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:15 UTC 2017
ssl.sh: #5491: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:15 UTC 2017
ssl.sh: #5492: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
ssl.sh: #5493: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
ssl.sh: #5494: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5495: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
ssl.sh: #5496: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
ssl.sh: #5497: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
ssl.sh: #5498: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:16 UTC 2017
ssl.sh: #5499: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:17 UTC 2017
ssl.sh: #5500: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:17 UTC 2017
ssl.sh: #5501: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:17 UTC 2017
ssl.sh: #5502: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:17 UTC 2017
ssl.sh: #5503: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:17 UTC 2017
ssl.sh: #5504: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:17 UTC 2017
ssl.sh: #5505: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:18 UTC 2017
ssl.sh: #5506: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:18 UTC 2017
ssl.sh: #5507: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:18 UTC 2017
ssl.sh: #5508: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5509: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:18 UTC 2017
ssl.sh: #5510: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:18 UTC 2017
ssl.sh: #5511: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:19 UTC 2017
ssl.sh: #5512: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:19 UTC 2017
ssl.sh: #5513: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:19 UTC 2017
ssl.sh: #5514: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:19 UTC 2017
ssl.sh: #5515: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:19 UTC 2017
ssl.sh: #5516: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:19 UTC 2017
ssl.sh: #5517: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:20 UTC 2017
ssl.sh: #5518: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:20 UTC 2017
ssl.sh: #5519: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:20 UTC 2017
ssl.sh: #5520: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:20 UTC 2017
ssl.sh: #5521: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16936 >/dev/null 2>/dev/null
selfserv_9505 with PID 16936 found at Wed May 10 12:10:20 UTC 2017
ssl.sh: #5522: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 16936 at Wed May 10 12:10:20 UTC 2017
kill -USR1 16936
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16936 killed at Wed May 10 12:10:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:20 UTC 2017
selfserv_9505 with PID 18362 started at Wed May 10 12:10:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:21 UTC 2017
ssl.sh: #5523: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:21 UTC 2017
ssl.sh: #5524: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:21 UTC 2017
ssl.sh: #5525: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:21 UTC 2017
ssl.sh: #5526: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:21 UTC 2017
ssl.sh: #5527: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:21 UTC 2017
ssl.sh: #5528: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:22 UTC 2017
ssl.sh: #5529: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:22 UTC 2017
ssl.sh: #5530: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:22 UTC 2017
ssl.sh: #5531: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:22 UTC 2017
ssl.sh: #5532: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:22 UTC 2017
ssl.sh: #5533: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:23 UTC 2017
ssl.sh: #5534: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:23 UTC 2017
ssl.sh: #5535: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5536: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:23 UTC 2017
ssl.sh: #5537: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:23 UTC 2017
ssl.sh: #5538: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:23 UTC 2017
ssl.sh: #5539: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:24 UTC 2017
ssl.sh: #5540: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:24 UTC 2017
ssl.sh: #5541: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:24 UTC 2017
ssl.sh: #5542: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:24 UTC 2017
ssl.sh: #5543: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:24 UTC 2017
ssl.sh: #5544: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:25 UTC 2017
ssl.sh: #5545: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:25 UTC 2017
ssl.sh: #5546: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:25 UTC 2017
ssl.sh: #5547: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:25 UTC 2017
ssl.sh: #5548: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:25 UTC 2017
ssl.sh: #5549: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5550: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:26 UTC 2017
ssl.sh: #5551: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:26 UTC 2017
ssl.sh: #5552: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:26 UTC 2017
ssl.sh: #5553: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:26 UTC 2017
ssl.sh: #5554: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:26 UTC 2017
ssl.sh: #5555: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:26 UTC 2017
ssl.sh: #5556: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:27 UTC 2017
ssl.sh: #5557: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:27 UTC 2017
ssl.sh: #5558: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:27 UTC 2017
ssl.sh: #5559: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:27 UTC 2017
ssl.sh: #5560: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:27 UTC 2017
ssl.sh: #5561: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:28 UTC 2017
ssl.sh: #5562: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18362 >/dev/null 2>/dev/null
selfserv_9505 with PID 18362 found at Wed May 10 12:10:28 UTC 2017
ssl.sh: #5563: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18362 at Wed May 10 12:10:28 UTC 2017
kill -USR1 18362
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18362 killed at Wed May 10 12:10:28 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:28 UTC 2017
selfserv_9505 with PID 19785 started at Wed May 10 12:10:28 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:28 UTC 2017
ssl.sh: #5564: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:28 UTC 2017
ssl.sh: #5565: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:28 UTC 2017
ssl.sh: #5566: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:28 UTC 2017
ssl.sh: #5567: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5568: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5569: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5570: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5571: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5572: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5573: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:29 UTC 2017
ssl.sh: #5574: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:30 UTC 2017
ssl.sh: #5575: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:30 UTC 2017
ssl.sh: #5576: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5577: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:30 UTC 2017
ssl.sh: #5578: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:30 UTC 2017
ssl.sh: #5579: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:30 UTC 2017
ssl.sh: #5580: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5581: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5582: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5583: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5584: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5585: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5586: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:31 UTC 2017
ssl.sh: #5587: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
ssl.sh: #5588: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
ssl.sh: #5589: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
ssl.sh: #5590: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5591: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
ssl.sh: #5592: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
ssl.sh: #5593: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:32 UTC 2017
ssl.sh: #5594: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5595: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5596: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5597: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5598: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5599: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5600: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:33 UTC 2017
ssl.sh: #5601: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:34 UTC 2017
ssl.sh: #5602: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:34 UTC 2017
ssl.sh: #5603: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19785 >/dev/null 2>/dev/null
selfserv_9505 with PID 19785 found at Wed May 10 12:10:34 UTC 2017
ssl.sh: #5604: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19785 at Wed May 10 12:10:34 UTC 2017
kill -USR1 19785
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19785 killed at Wed May 10 12:10:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:34 UTC 2017
selfserv_9505 with PID 21207 started at Wed May 10 12:10:34 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:34 UTC 2017
ssl.sh: #5605: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:34 UTC 2017
ssl.sh: #5606: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:35 UTC 2017
ssl.sh: #5607: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:35 UTC 2017
ssl.sh: #5608: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:35 UTC 2017
ssl.sh: #5609: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:35 UTC 2017
ssl.sh: #5610: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:35 UTC 2017
ssl.sh: #5611: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:36 UTC 2017
ssl.sh: #5612: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:36 UTC 2017
ssl.sh: #5613: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:36 UTC 2017
ssl.sh: #5614: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:36 UTC 2017
ssl.sh: #5615: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:36 UTC 2017
ssl.sh: #5616: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:36 UTC 2017
ssl.sh: #5617: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5618: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:37 UTC 2017
ssl.sh: #5619: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:37 UTC 2017
ssl.sh: #5620: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:37 UTC 2017
ssl.sh: #5621: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:37 UTC 2017
ssl.sh: #5622: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:38 UTC 2017
ssl.sh: #5623: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:38 UTC 2017
ssl.sh: #5624: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:38 UTC 2017
ssl.sh: #5625: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:38 UTC 2017
ssl.sh: #5626: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:38 UTC 2017
ssl.sh: #5627: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:38 UTC 2017
ssl.sh: #5628: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:39 UTC 2017
ssl.sh: #5629: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:39 UTC 2017
ssl.sh: #5630: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:39 UTC 2017
ssl.sh: #5631: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5632: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:39 UTC 2017
ssl.sh: #5633: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:39 UTC 2017
ssl.sh: #5634: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:40 UTC 2017
ssl.sh: #5635: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:40 UTC 2017
ssl.sh: #5636: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:40 UTC 2017
ssl.sh: #5637: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:40 UTC 2017
ssl.sh: #5638: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:40 UTC 2017
ssl.sh: #5639: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:40 UTC 2017
ssl.sh: #5640: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:41 UTC 2017
ssl.sh: #5641: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:41 UTC 2017
ssl.sh: #5642: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:41 UTC 2017
ssl.sh: #5643: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:41 UTC 2017
ssl.sh: #5644: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21207 >/dev/null 2>/dev/null
selfserv_9505 with PID 21207 found at Wed May 10 12:10:41 UTC 2017
ssl.sh: #5645: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21207 at Wed May 10 12:10:41 UTC 2017
kill -USR1 21207
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21207 killed at Wed May 10 12:10:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:41 UTC 2017
selfserv_9505 with PID 22629 started at Wed May 10 12:10:41 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:42 UTC 2017
ssl.sh: #5646: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:42 UTC 2017
ssl.sh: #5647: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:42 UTC 2017
ssl.sh: #5648: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:42 UTC 2017
ssl.sh: #5649: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:42 UTC 2017
ssl.sh: #5650: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:43 UTC 2017
ssl.sh: #5651: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:43 UTC 2017
ssl.sh: #5652: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:43 UTC 2017
ssl.sh: #5653: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:43 UTC 2017
ssl.sh: #5654: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:43 UTC 2017
ssl.sh: #5655: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:44 UTC 2017
ssl.sh: #5656: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:44 UTC 2017
ssl.sh: #5657: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:44 UTC 2017
ssl.sh: #5658: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5659: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:44 UTC 2017
ssl.sh: #5660: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:45 UTC 2017
ssl.sh: #5661: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:45 UTC 2017
ssl.sh: #5662: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:45 UTC 2017
ssl.sh: #5663: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:45 UTC 2017
ssl.sh: #5664: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:45 UTC 2017
ssl.sh: #5665: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:46 UTC 2017
ssl.sh: #5666: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:46 UTC 2017
ssl.sh: #5667: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:46 UTC 2017
ssl.sh: #5668: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:46 UTC 2017
ssl.sh: #5669: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:46 UTC 2017
ssl.sh: #5670: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:47 UTC 2017
ssl.sh: #5671: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:47 UTC 2017
ssl.sh: #5672: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5673: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:47 UTC 2017
ssl.sh: #5674: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:47 UTC 2017
ssl.sh: #5675: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:48 UTC 2017
ssl.sh: #5676: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:48 UTC 2017
ssl.sh: #5677: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:48 UTC 2017
ssl.sh: #5678: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:48 UTC 2017
ssl.sh: #5679: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:48 UTC 2017
ssl.sh: #5680: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:48 UTC 2017
ssl.sh: #5681: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:49 UTC 2017
ssl.sh: #5682: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:49 UTC 2017
ssl.sh: #5683: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:49 UTC 2017
ssl.sh: #5684: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:49 UTC 2017
ssl.sh: #5685: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22629 >/dev/null 2>/dev/null
selfserv_9505 with PID 22629 found at Wed May 10 12:10:49 UTC 2017
ssl.sh: #5686: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22629 at Wed May 10 12:10:49 UTC 2017
kill -USR1 22629
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22629 killed at Wed May 10 12:10:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:50 UTC 2017
selfserv_9505 with PID 24054 started at Wed May 10 12:10:50 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:50 UTC 2017
ssl.sh: #5687: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:50 UTC 2017
ssl.sh: #5688: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:50 UTC 2017
ssl.sh: #5689: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:50 UTC 2017
ssl.sh: #5690: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:50 UTC 2017
ssl.sh: #5691: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:51 UTC 2017
ssl.sh: #5692: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:51 UTC 2017
ssl.sh: #5693: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:51 UTC 2017
ssl.sh: #5694: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:51 UTC 2017
ssl.sh: #5695: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:51 UTC 2017
ssl.sh: #5696: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:51 UTC 2017
ssl.sh: #5697: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:52 UTC 2017
ssl.sh: #5698: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:52 UTC 2017
ssl.sh: #5699: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5700: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:52 UTC 2017
ssl.sh: #5701: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:52 UTC 2017
ssl.sh: #5702: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:52 UTC 2017
ssl.sh: #5703: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:53 UTC 2017
ssl.sh: #5704: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:53 UTC 2017
ssl.sh: #5705: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:53 UTC 2017
ssl.sh: #5706: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:53 UTC 2017
ssl.sh: #5707: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:53 UTC 2017
ssl.sh: #5708: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:53 UTC 2017
ssl.sh: #5709: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:54 UTC 2017
ssl.sh: #5710: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:54 UTC 2017
ssl.sh: #5711: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:54 UTC 2017
ssl.sh: #5712: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:54 UTC 2017
ssl.sh: #5713: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5714: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:54 UTC 2017
ssl.sh: #5715: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5716: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5717: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5718: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5719: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5720: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5721: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:55 UTC 2017
ssl.sh: #5722: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:56 UTC 2017
ssl.sh: #5723: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:56 UTC 2017
ssl.sh: #5724: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:56 UTC 2017
ssl.sh: #5725: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:56 UTC 2017
ssl.sh: #5726: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24054 >/dev/null 2>/dev/null
selfserv_9505 with PID 24054 found at Wed May 10 12:10:56 UTC 2017
ssl.sh: #5727: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24054 at Wed May 10 12:10:56 UTC 2017
kill -USR1 24054
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24054 killed at Wed May 10 12:10:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:10:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25477 >/dev/null 2>/dev/null
selfserv_9505 with PID 25477 found at Wed May 10 12:10:56 UTC 2017
selfserv_9505 with PID 25477 started at Wed May 10 12:10:56 UTC 2017
trying to kill selfserv_9505 with PID 25477 at Wed May 10 12:10:56 UTC 2017
kill -USR1 25477
selfserv: 0 cache hits; 0 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 25477 killed at Wed May 10 12:10:56 UTC 2017
selfserv_9505 starting at Wed May 10 12:10:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:10:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:56 UTC 2017
selfserv_9505 with PID 25519 started at Wed May 10 12:10:56 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:57 UTC 2017
ssl.sh: #5728: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:57 UTC 2017
ssl.sh: #5729: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:57 UTC 2017
ssl.sh: #5730: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:57 UTC 2017
ssl.sh: #5731: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:57 UTC 2017
ssl.sh: #5732: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:57 UTC 2017
ssl.sh: #5733: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:58 UTC 2017
ssl.sh: #5734: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:58 UTC 2017
ssl.sh: #5735: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:58 UTC 2017
ssl.sh: #5736: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:58 UTC 2017
ssl.sh: #5737: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:58 UTC 2017
ssl.sh: #5738: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:58 UTC 2017
ssl.sh: #5739: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:59 UTC 2017
ssl.sh: #5740: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5741: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:59 UTC 2017
ssl.sh: #5742: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:59 UTC 2017
ssl.sh: #5743: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:59 UTC 2017
ssl.sh: #5744: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:10:59 UTC 2017
ssl.sh: #5745: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:00 UTC 2017
ssl.sh: #5746: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:00 UTC 2017
ssl.sh: #5747: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:00 UTC 2017
ssl.sh: #5748: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:00 UTC 2017
ssl.sh: #5749: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:00 UTC 2017
ssl.sh: #5750: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:00 UTC 2017
ssl.sh: #5751: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:01 UTC 2017
ssl.sh: #5752: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:01 UTC 2017
ssl.sh: #5753: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:01 UTC 2017
ssl.sh: #5754: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5755: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:01 UTC 2017
ssl.sh: #5756: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:01 UTC 2017
ssl.sh: #5757: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:02 UTC 2017
ssl.sh: #5758: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:02 UTC 2017
ssl.sh: #5759: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:02 UTC 2017
ssl.sh: #5760: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:02 UTC 2017
ssl.sh: #5761: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:02 UTC 2017
ssl.sh: #5762: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:02 UTC 2017
ssl.sh: #5763: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:03 UTC 2017
ssl.sh: #5764: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:03 UTC 2017
ssl.sh: #5765: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:03 UTC 2017
ssl.sh: #5766: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:03 UTC 2017
ssl.sh: #5767: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25519 >/dev/null 2>/dev/null
selfserv_9505 with PID 25519 found at Wed May 10 12:11:03 UTC 2017
ssl.sh: #5768: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 25519 at Wed May 10 12:11:03 UTC 2017
kill -USR1 25519
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 25519 killed at Wed May 10 12:11:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:11:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:11:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:03 UTC 2017
selfserv_9505 with PID 26941 started at Wed May 10 12:11:03 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:04 UTC 2017
ssl.sh: #5769: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:04 UTC 2017
ssl.sh: #5770: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:04 UTC 2017
ssl.sh: #5771: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:04 UTC 2017
ssl.sh: #5772: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:04 UTC 2017
ssl.sh: #5773: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:04 UTC 2017
ssl.sh: #5774: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:05 UTC 2017
ssl.sh: #5775: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:05 UTC 2017
ssl.sh: #5776: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:05 UTC 2017
ssl.sh: #5777: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:05 UTC 2017
ssl.sh: #5778: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:05 UTC 2017
ssl.sh: #5779: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:06 UTC 2017
ssl.sh: #5780: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:06 UTC 2017
ssl.sh: #5781: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5782: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:06 UTC 2017
ssl.sh: #5783: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:06 UTC 2017
ssl.sh: #5784: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:06 UTC 2017
ssl.sh: #5785: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:07 UTC 2017
ssl.sh: #5786: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:07 UTC 2017
ssl.sh: #5787: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:07 UTC 2017
ssl.sh: #5788: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:07 UTC 2017
ssl.sh: #5789: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:07 UTC 2017
ssl.sh: #5790: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:07 UTC 2017
ssl.sh: #5791: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:08 UTC 2017
ssl.sh: #5792: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:08 UTC 2017
ssl.sh: #5793: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:08 UTC 2017
ssl.sh: #5794: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:08 UTC 2017
ssl.sh: #5795: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5796: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:08 UTC 2017
ssl.sh: #5797: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:09 UTC 2017
ssl.sh: #5798: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:09 UTC 2017
ssl.sh: #5799: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:09 UTC 2017
ssl.sh: #5800: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:09 UTC 2017
ssl.sh: #5801: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:09 UTC 2017
ssl.sh: #5802: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:10 UTC 2017
ssl.sh: #5803: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:10 UTC 2017
ssl.sh: #5804: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:10 UTC 2017
ssl.sh: #5805: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:10 UTC 2017
ssl.sh: #5806: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:10 UTC 2017
ssl.sh: #5807: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:10 UTC 2017
ssl.sh: #5808: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26941 >/dev/null 2>/dev/null
selfserv_9505 with PID 26941 found at Wed May 10 12:11:11 UTC 2017
ssl.sh: #5809: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 26941 at Wed May 10 12:11:11 UTC 2017
kill -USR1 26941
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 26941 killed at Wed May 10 12:11:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:11:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:11:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:11 UTC 2017
selfserv_9505 with PID 28363 started at Wed May 10 12:11:11 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:11 UTC 2017
ssl.sh: #5810: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:11 UTC 2017
ssl.sh: #5811: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:11 UTC 2017
ssl.sh: #5812: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:11 UTC 2017
ssl.sh: #5813: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:11 UTC 2017
ssl.sh: #5814: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5815: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5816: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5817: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5818: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5819: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5820: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:12 UTC 2017
ssl.sh: #5821: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:13 UTC 2017
ssl.sh: #5822: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5823: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:13 UTC 2017
ssl.sh: #5824: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:13 UTC 2017
ssl.sh: #5825: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:13 UTC 2017
ssl.sh: #5826: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:13 UTC 2017
ssl.sh: #5827: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5828: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5829: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5830: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5831: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5832: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5833: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:14 UTC 2017
ssl.sh: #5834: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
ssl.sh: #5835: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
ssl.sh: #5836: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5837: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
ssl.sh: #5838: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
ssl.sh: #5839: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
ssl.sh: #5840: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:15 UTC 2017
ssl.sh: #5841: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5842: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5843: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5844: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5845: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5846: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5847: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:16 UTC 2017
ssl.sh: #5848: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:17 UTC 2017
ssl.sh: #5849: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28363 >/dev/null 2>/dev/null
selfserv_9505 with PID 28363 found at Wed May 10 12:11:17 UTC 2017
ssl.sh: #5850: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 28363 at Wed May 10 12:11:17 UTC 2017
kill -USR1 28363
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 28363 killed at Wed May 10 12:11:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:11:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:11:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:17 UTC 2017
selfserv_9505 with PID 29785 started at Wed May 10 12:11:17 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:17 UTC 2017
ssl.sh: #5851: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:17 UTC 2017
ssl.sh: #5852: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:17 UTC 2017
ssl.sh: #5853: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:18 UTC 2017
ssl.sh: #5854: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:18 UTC 2017
ssl.sh: #5855: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:18 UTC 2017
ssl.sh: #5856: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:18 UTC 2017
ssl.sh: #5857: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:18 UTC 2017
ssl.sh: #5858: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:19 UTC 2017
ssl.sh: #5859: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:19 UTC 2017
ssl.sh: #5860: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:19 UTC 2017
ssl.sh: #5861: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:19 UTC 2017
ssl.sh: #5862: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:19 UTC 2017
ssl.sh: #5863: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5864: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:20 UTC 2017
ssl.sh: #5865: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:20 UTC 2017
ssl.sh: #5866: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:20 UTC 2017
ssl.sh: #5867: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:20 UTC 2017
ssl.sh: #5868: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:20 UTC 2017
ssl.sh: #5869: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:21 UTC 2017
ssl.sh: #5870: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:21 UTC 2017
ssl.sh: #5871: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:21 UTC 2017
ssl.sh: #5872: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:21 UTC 2017
ssl.sh: #5873: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:21 UTC 2017
ssl.sh: #5874: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:22 UTC 2017
ssl.sh: #5875: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:22 UTC 2017
ssl.sh: #5876: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:22 UTC 2017
ssl.sh: #5877: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5878: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:22 UTC 2017
ssl.sh: #5879: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:22 UTC 2017
ssl.sh: #5880: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:23 UTC 2017
ssl.sh: #5881: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:23 UTC 2017
ssl.sh: #5882: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:23 UTC 2017
ssl.sh: #5883: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:23 UTC 2017
ssl.sh: #5884: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:23 UTC 2017
ssl.sh: #5885: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:23 UTC 2017
ssl.sh: #5886: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:24 UTC 2017
ssl.sh: #5887: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:24 UTC 2017
ssl.sh: #5888: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:24 UTC 2017
ssl.sh: #5889: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:24 UTC 2017
ssl.sh: #5890: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29785 >/dev/null 2>/dev/null
selfserv_9505 with PID 29785 found at Wed May 10 12:11:24 UTC 2017
ssl.sh: #5891: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 29785 at Wed May 10 12:11:24 UTC 2017
kill -USR1 29785
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29785 killed at Wed May 10 12:11:24 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:11:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:11:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:24 UTC 2017
selfserv_9505 with PID 31208 started at Wed May 10 12:11:24 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:25 UTC 2017
ssl.sh: #5892: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:25 UTC 2017
ssl.sh: #5893: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:25 UTC 2017
ssl.sh: #5894: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:25 UTC 2017
ssl.sh: #5895: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:25 UTC 2017
ssl.sh: #5896: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:26 UTC 2017
ssl.sh: #5897: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:26 UTC 2017
ssl.sh: #5898: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:26 UTC 2017
ssl.sh: #5899: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:26 UTC 2017
ssl.sh: #5900: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:26 UTC 2017
ssl.sh: #5901: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:27 UTC 2017
ssl.sh: #5902: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:27 UTC 2017
ssl.sh: #5903: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:27 UTC 2017
ssl.sh: #5904: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5905: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:27 UTC 2017
ssl.sh: #5906: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:28 UTC 2017
ssl.sh: #5907: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:28 UTC 2017
ssl.sh: #5908: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:28 UTC 2017
ssl.sh: #5909: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:28 UTC 2017
ssl.sh: #5910: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:28 UTC 2017
ssl.sh: #5911: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:29 UTC 2017
ssl.sh: #5912: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:29 UTC 2017
ssl.sh: #5913: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:29 UTC 2017
ssl.sh: #5914: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:29 UTC 2017
ssl.sh: #5915: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:29 UTC 2017
ssl.sh: #5916: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:30 UTC 2017
ssl.sh: #5917: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:30 UTC 2017
ssl.sh: #5918: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5919: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:30 UTC 2017
ssl.sh: #5920: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:30 UTC 2017
ssl.sh: #5921: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:30 UTC 2017
ssl.sh: #5922: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:31 UTC 2017
ssl.sh: #5923: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:31 UTC 2017
ssl.sh: #5924: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:31 UTC 2017
ssl.sh: #5925: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:31 UTC 2017
ssl.sh: #5926: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:31 UTC 2017
ssl.sh: #5927: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:32 UTC 2017
ssl.sh: #5928: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:32 UTC 2017
ssl.sh: #5929: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:32 UTC 2017
ssl.sh: #5930: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:32 UTC 2017
ssl.sh: #5931: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31208 >/dev/null 2>/dev/null
selfserv_9505 with PID 31208 found at Wed May 10 12:11:32 UTC 2017
ssl.sh: #5932: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 31208 at Wed May 10 12:11:32 UTC 2017
kill -USR1 31208
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 31208 killed at Wed May 10 12:11:32 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:11:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:11:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:32 UTC 2017
selfserv_9505 with PID 32630 started at Wed May 10 12:11:32 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:33 UTC 2017
ssl.sh: #5933: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:33 UTC 2017
ssl.sh: #5934: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:33 UTC 2017
ssl.sh: #5935: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:33 UTC 2017
ssl.sh: #5936: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:33 UTC 2017
ssl.sh: #5937: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:34 UTC 2017
ssl.sh: #5938: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:34 UTC 2017
ssl.sh: #5939: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:34 UTC 2017
ssl.sh: #5940: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:34 UTC 2017
ssl.sh: #5941: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:34 UTC 2017
ssl.sh: #5942: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:34 UTC 2017
ssl.sh: #5943: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:35 UTC 2017
ssl.sh: #5944: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:35 UTC 2017
ssl.sh: #5945: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5946: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:35 UTC 2017
ssl.sh: #5947: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:35 UTC 2017
ssl.sh: #5948: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:35 UTC 2017
ssl.sh: #5949: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:36 UTC 2017
ssl.sh: #5950: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:36 UTC 2017
ssl.sh: #5951: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:36 UTC 2017
ssl.sh: #5952: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:36 UTC 2017
ssl.sh: #5953: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:36 UTC 2017
ssl.sh: #5954: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:36 UTC 2017
ssl.sh: #5955: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:37 UTC 2017
ssl.sh: #5956: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:37 UTC 2017
ssl.sh: #5957: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:37 UTC 2017
ssl.sh: #5958: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:37 UTC 2017
ssl.sh: #5959: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5960: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:37 UTC 2017
ssl.sh: #5961: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5962: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5963: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5964: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5965: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5966: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5967: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:38 UTC 2017
ssl.sh: #5968: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:39 UTC 2017
ssl.sh: #5969: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:39 UTC 2017
ssl.sh: #5970: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:39 UTC 2017
ssl.sh: #5971: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:39 UTC 2017
ssl.sh: #5972: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32630 >/dev/null 2>/dev/null
selfserv_9505 with PID 32630 found at Wed May 10 12:11:39 UTC 2017
ssl.sh: #5973: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32630 at Wed May 10 12:11:39 UTC 2017
kill -USR1 32630
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32630 killed at Wed May 10 12:11:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:11:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:11:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1668 >/dev/null 2>/dev/null
selfserv_9505 with PID 1668 found at Wed May 10 12:11:39 UTC 2017
selfserv_9505 with PID 1668 started at Wed May 10 12:11:39 UTC 2017
trying to kill selfserv_9505 with PID 1668 at Wed May 10 12:11:39 UTC 2017
kill -USR1 1668
./ssl.sh: line 183:  1668 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1668 killed at Wed May 10 12:11:39 UTC 2017
TIMESTAMP ssl END: Wed May 10 12:11:39 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Wed May 10 12:11:39 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Wed May 10 12:11:39 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Wed May 10 12:11:39 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Wed May 10 12:11:39 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed May 10 12:11:39 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #5974: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121140 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5975: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #5976: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5977: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #5978: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5979: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5980: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5981: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5982: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #5983: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5984: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5985: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5986: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5987: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #5988: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5989: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5990: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5991: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5992: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #5993: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5994: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5995: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5996: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #5997: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5998: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5999: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6000: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #6001: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6002: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6003: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6004: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #6005: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6006: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6007: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6008: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #6009: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6010: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6011: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6012: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #6013: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6014: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6015: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6016: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #6017: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6018: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6019: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6020: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #6021: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6022: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6023: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6024: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #6025: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6026: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6027: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6028: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #6029: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6030: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6031: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6032: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #6033: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6034: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6035: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6036: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510121151Z
nextupdate=20180510121151Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:11:51 2017
    Next Update: Thu May 10 12:11:51 2018
    CRL Extensions:
chains.sh: #6037: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510121152Z
addcert 2 20170510121152Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:11:52 2017
    Next Update: Thu May 10 12:11:51 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:52 2017
    CRL Extensions:
chains.sh: #6038: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510121152Z
nextupdate=20180510121152Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:11:52 2017
    Next Update: Thu May 10 12:11:52 2018
    CRL Extensions:
chains.sh: #6039: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510121153Z
addcert 2 20170510121153Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:11:53 2017
    Next Update: Thu May 10 12:11:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:53 2017
    CRL Extensions:
chains.sh: #6040: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510121154Z
addcert 4 20170510121154Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:11:54 2017
    Next Update: Thu May 10 12:11:52 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:53 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed May 10 12:11:54 2017
    CRL Extensions:
chains.sh: #6041: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510121154Z
nextupdate=20180510121154Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:11:54 2017
    Next Update: Thu May 10 12:11:54 2018
    CRL Extensions:
chains.sh: #6042: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510121155Z
addcert 2 20170510121155Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:11:55 2017
    Next Update: Thu May 10 12:11:54 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:55 2017
    CRL Extensions:
chains.sh: #6043: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510121156Z
addcert 3 20170510121156Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:11:56 2017
    Next Update: Thu May 10 12:11:54 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:55 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:11:56 2017
    CRL Extensions:
chains.sh: #6044: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510121156Z
nextupdate=20180510121156Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:11:56 2017
    Next Update: Thu May 10 12:11:56 2018
    CRL Extensions:
chains.sh: #6045: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510121157Z
addcert 2 20170510121157Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:11:57 2017
    Next Update: Thu May 10 12:11:56 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:57 2017
    CRL Extensions:
chains.sh: #6046: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510121158Z
addcert 3 20170510121158Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:11:58 2017
    Next Update: Thu May 10 12:11:56 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:11:57 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:11:58 2017
    CRL Extensions:
chains.sh: #6047: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #6048: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #6049: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6050: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6051: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6052: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6053: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #6054: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #6055: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #6056: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #6057: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #6058: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #6059: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #6060: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #6061: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #6062: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #6063: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #6064: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #6065: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #6066: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #6067: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #6068: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #6069: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #6070: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #6071: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed May 10 12:11:58 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:11:58 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 3120 >/dev/null 2>/dev/null
httpserv with PID 3120 found at Wed May 10 12:11:58 UTC 2017
httpserv with PID 3120 started at Wed May 10 12:11:58 UTC 2017
tstclnt -h localhost.localdomain -p 9515 -q -t 20
chains.sh: #6072: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121140 (0x1e67d4b4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:11:40 2017
            Not After : Tue May 10 12:11:40 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:9c:83:41:16:5c:10:07:55:72:6e:fa:1e:75:a9:ae:
                    db:0d:57:39:36:7d:e9:0c:47:37:cf:b8:c2:d1:e2:41:
                    b7:6c:4b:69:fd:4a:a4:fe:6f:49:36:a9:15:13:80:20:
                    73:11:cb:e2:2a:1b:65:5b:aa:15:b1:04:d1:d0:d8:18:
                    07:74:66:7b:ba:21:17:af:4f:c8:af:3c:e6:1c:db:c9:
                    84:fd:89:8c:e7:32:ef:5c:df:e5:36:72:cc:f4:d9:37:
                    05:35:b1:85:67:1c:e7:a8:3b:9e:95:5b:26:5e:e7:36:
                    a5:ec:42:ce:44:1e:ff:07:95:8c:ee:03:12:25:c5:58:
                    e0:1b:37:d9:ea:f3:e7:cb:c7:2b:26:d6:e9:62:67:28:
                    7c:14:5f:e4:04:89:a9:3a:42:10:e9:2f:25:cd:17:72:
                    fa:48:ce:18:52:eb:d6:5a:19:0c:e5:74:46:ee:88:8b:
                    f0:ef:2f:92:d4:ea:6f:36:12:05:2f:9d:3d:a7:90:4d:
                    89:41:ff:c6:df:ab:27:ad:10:4f:11:cb:ad:d9:a7:e5:
                    c8:fd:69:21:e7:99:a0:0a:b6:85:0b:d6:06:a8:bb:76:
                    76:c2:f0:2e:f3:db:bd:e9:1f:a2:94:e8:78:be:7c:a0:
                    7d:e3:23:24:d3:27:19:c9:a8:c6:6e:a4:7e:3d:cb:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:84:20:7e:b7:c4:e2:54:c9:44:9d:d2:2c:19:c6:a3:
        3f:38:c3:be:0f:d6:50:78:99:54:fa:ed:fb:e0:1b:2d:
        67:de:99:1d:14:2e:eb:77:8e:76:a1:e4:5a:c3:cf:c2:
        f8:34:b1:ae:b8:b7:05:19:67:9c:29:de:ea:7a:28:cf:
        7f:ec:dd:a1:b2:70:c7:ec:c6:28:71:5d:1b:30:2c:4b:
        44:6a:5c:e6:29:65:b3:67:d8:ab:59:37:bd:35:a3:22:
        bb:fe:b7:6c:12:01:0f:f6:c4:fa:74:77:20:d6:fe:cb:
        2d:5a:8f:84:8a:5d:ad:9b:79:ce:71:28:31:3b:de:ad:
        f4:82:e1:cd:23:f7:dd:21:2a:c5:ed:80:b0:3d:ea:73:
        c9:48:b4:14:e5:bb:e5:16:4a:82:f5:39:94:fb:c8:ce:
        5f:59:53:d0:6b:8f:77:1e:f9:05:8c:81:6e:ca:9c:c8:
        3a:63:06:86:ef:48:93:61:eb:df:5a:4e:8c:a0:b3:1a:
        c8:1f:b0:16:9d:8a:6d:92:22:6b:c6:20:83:84:a0:89:
        f2:4e:9d:5e:21:15:7c:b0:0d:b1:6f:c8:a0:d4:9c:7a:
        bb:de:bc:39:d5:e6:15:57:32:68:32:f1:ec:bd:ef:ae:
        eb:90:69:e0:4f:ce:f4:da:9a:af:95:94:a0:bb:38:32
    Fingerprint (SHA-256):
        4E:F5:DC:8C:29:DC:AE:98:F8:9A:F2:EE:10:4C:15:FE:AC:A3:D3:DC:4D:FA:03:83:08:47:2C:D2:AB:A9:12:BD
    Fingerprint (SHA1):
        F3:8C:DC:E5:91:EC:0A:A9:05:FD:77:7F:0C:06:35:7D:1F:18:88:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6073: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6074: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6075: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 3120 at Wed May 10 12:11:59 UTC 2017
kill -USR1 3120
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 3120 killed at Wed May 10 12:11:59 UTC 2017
httpserv starting at Wed May 10 12:11:59 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:11:59 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 3289 >/dev/null 2>/dev/null
httpserv with PID 3289 found at Wed May 10 12:11:59 UTC 2017
httpserv with PID 3289 started at Wed May 10 12:11:59 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6076: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6077: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6078: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9515 -q -t 20
chains.sh: #6079: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121140 (0x1e67d4b4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:11:40 2017
            Not After : Tue May 10 12:11:40 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fc:9c:83:41:16:5c:10:07:55:72:6e:fa:1e:75:a9:ae:
                    db:0d:57:39:36:7d:e9:0c:47:37:cf:b8:c2:d1:e2:41:
                    b7:6c:4b:69:fd:4a:a4:fe:6f:49:36:a9:15:13:80:20:
                    73:11:cb:e2:2a:1b:65:5b:aa:15:b1:04:d1:d0:d8:18:
                    07:74:66:7b:ba:21:17:af:4f:c8:af:3c:e6:1c:db:c9:
                    84:fd:89:8c:e7:32:ef:5c:df:e5:36:72:cc:f4:d9:37:
                    05:35:b1:85:67:1c:e7:a8:3b:9e:95:5b:26:5e:e7:36:
                    a5:ec:42:ce:44:1e:ff:07:95:8c:ee:03:12:25:c5:58:
                    e0:1b:37:d9:ea:f3:e7:cb:c7:2b:26:d6:e9:62:67:28:
                    7c:14:5f:e4:04:89:a9:3a:42:10:e9:2f:25:cd:17:72:
                    fa:48:ce:18:52:eb:d6:5a:19:0c:e5:74:46:ee:88:8b:
                    f0:ef:2f:92:d4:ea:6f:36:12:05:2f:9d:3d:a7:90:4d:
                    89:41:ff:c6:df:ab:27:ad:10:4f:11:cb:ad:d9:a7:e5:
                    c8:fd:69:21:e7:99:a0:0a:b6:85:0b:d6:06:a8:bb:76:
                    76:c2:f0:2e:f3:db:bd:e9:1f:a2:94:e8:78:be:7c:a0:
                    7d:e3:23:24:d3:27:19:c9:a8:c6:6e:a4:7e:3d:cb:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:84:20:7e:b7:c4:e2:54:c9:44:9d:d2:2c:19:c6:a3:
        3f:38:c3:be:0f:d6:50:78:99:54:fa:ed:fb:e0:1b:2d:
        67:de:99:1d:14:2e:eb:77:8e:76:a1:e4:5a:c3:cf:c2:
        f8:34:b1:ae:b8:b7:05:19:67:9c:29:de:ea:7a:28:cf:
        7f:ec:dd:a1:b2:70:c7:ec:c6:28:71:5d:1b:30:2c:4b:
        44:6a:5c:e6:29:65:b3:67:d8:ab:59:37:bd:35:a3:22:
        bb:fe:b7:6c:12:01:0f:f6:c4:fa:74:77:20:d6:fe:cb:
        2d:5a:8f:84:8a:5d:ad:9b:79:ce:71:28:31:3b:de:ad:
        f4:82:e1:cd:23:f7:dd:21:2a:c5:ed:80:b0:3d:ea:73:
        c9:48:b4:14:e5:bb:e5:16:4a:82:f5:39:94:fb:c8:ce:
        5f:59:53:d0:6b:8f:77:1e:f9:05:8c:81:6e:ca:9c:c8:
        3a:63:06:86:ef:48:93:61:eb:df:5a:4e:8c:a0:b3:1a:
        c8:1f:b0:16:9d:8a:6d:92:22:6b:c6:20:83:84:a0:89:
        f2:4e:9d:5e:21:15:7c:b0:0d:b1:6f:c8:a0:d4:9c:7a:
        bb:de:bc:39:d5:e6:15:57:32:68:32:f1:ec:bd:ef:ae:
        eb:90:69:e0:4f:ce:f4:da:9a:af:95:94:a0:bb:38:32
    Fingerprint (SHA-256):
        4E:F5:DC:8C:29:DC:AE:98:F8:9A:F2:EE:10:4C:15:FE:AC:A3:D3:DC:4D:FA:03:83:08:47:2C:D2:AB:A9:12:BD
    Fingerprint (SHA1):
        F3:8C:DC:E5:91:EC:0A:A9:05:FD:77:7F:0C:06:35:7D:1F:18:88:E8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6080: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6081: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #6082: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 3289 at Wed May 10 12:11:59 UTC 2017
kill -USR1 3289
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 3289 killed at Wed May 10 12:11:59 UTC 2017
httpserv starting at Wed May 10 12:11:59 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:11:59 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 3536 >/dev/null 2>/dev/null
httpserv with PID 3536 found at Wed May 10 12:11:59 UTC 2017
httpserv with PID 3536 started at Wed May 10 12:11:59 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6083: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6084: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121141 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6085: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6086: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6087: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121142 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6088: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6089: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6090: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6091: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121143 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6092: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6093: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121144 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6094: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6095: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6096: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6097: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6098: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510121145   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6099: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6100: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6101: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6102: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6103: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121142 (0x1e67d4b6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:62:2a:95:ca:92:73:d1:ff:e5:36:34:1d:11:c0:b1:
                    42:18:8e:c4:a5:1b:ef:6c:48:8f:80:33:c4:21:83:05:
                    ae:0b:84:e5:7c:c3:32:fe:d8:ff:f3:77:85:e7:df:d4:
                    63:99:42:47:27:c2:94:29:39:fd:3f:ac:4c:f8:e4:cd:
                    7a:e6:40:d7:80:a2:a1:50:7b:1c:66:e0:96:f0:06:95:
                    98:21:d3:71:14:11:a1:75:77:db:6e:82:6d:d2:d3:89:
                    74:51:4d:c9:b9:da:61:71:8e:cd:ea:38:c1:0b:40:5b:
                    a7:72:d1:06:57:9d:7e:07:f3:fb:a4:a5:eb:7e:5d:30:
                    5c:ff:e9:ac:09:e1:e4:86:a7:44:0c:ed:c7:13:7b:72:
                    4e:e3:1b:74:5a:5f:e5:15:a6:40:f4:db:1b:78:1e:cd:
                    e1:cb:73:21:af:4b:8c:13:5f:b1:0e:9d:ed:d3:cc:06:
                    6b:39:ee:73:b0:42:5f:53:76:12:6a:dd:2e:f6:63:b6:
                    9b:9c:0c:00:5e:e7:42:0f:58:a4:ac:06:59:7a:af:80:
                    95:0d:4d:62:9b:69:89:0f:7a:e3:7a:4e:8d:5d:78:17:
                    e3:64:54:3c:78:53:c6:61:77:e9:78:52:27:8f:ab:f0:
                    ee:a5:11:e0:f7:0e:e3:bb:d9:85:a3:0a:0c:5f:d1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:10:08:65:c7:af:89:da:d8:ae:d5:f1:e7:c7:b6:ca:
        e4:a6:d0:87:a7:a3:c1:92:92:75:2e:73:3f:28:67:41:
        9f:9c:d3:9f:12:91:3b:52:c6:8a:3d:15:27:b7:76:f1:
        24:e8:08:b7:ae:7a:20:40:90:2a:7e:14:4c:ed:17:49:
        04:db:85:ba:19:12:8b:98:35:19:64:0e:07:d4:c3:06:
        c6:93:2d:9e:05:8d:df:d8:b1:73:3a:9b:8f:03:46:cf:
        8a:b3:d5:97:af:24:36:53:55:8c:d4:0c:8f:a4:5b:ff:
        c9:28:43:59:5f:50:6b:36:6c:7b:bc:25:59:21:05:1b:
        9f:2b:0b:27:6b:da:94:72:86:86:cb:a4:6c:0b:01:de:
        c8:d4:71:50:03:4a:56:1e:25:c9:b5:c4:5b:3e:d6:32:
        d9:f7:f9:20:75:6e:5b:b5:93:7f:0a:e4:9f:86:75:29:
        d4:4f:c8:d7:3b:06:a3:95:2a:b7:96:bb:7f:00:d1:a8:
        7e:10:a8:0b:5f:f3:ff:cd:de:00:db:c1:db:5f:88:2c:
        5d:91:b5:e3:d0:46:f2:e0:88:b3:d8:a5:6c:2c:aa:f3:
        b4:64:19:ca:76:92:22:ad:4e:8f:c8:73:6d:1e:cd:8b:
        9a:b9:57:5e:43:02:c0:9b:4b:02:cd:03:ff:97:3b:ab
    Fingerprint (SHA-256):
        57:F0:BF:EA:1B:B1:C5:E9:6D:EF:F6:B2:56:8D:15:7F:11:33:60:5B:5F:49:5D:B6:65:14:23:C4:0E:BA:84:6B
    Fingerprint (SHA1):
        B3:98:AF:A6:E3:ED:D7:B9:7B:A7:C9:40:D1:BB:40:C9:C6:66:FB:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6104: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121141 (0x1e67d4b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:12:00 2017
            Not After : Tue May 10 12:12:00 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:43:fb:8e:d4:de:43:cb:d2:f3:de:f1:58:40:ee:49:
                    05:a6:69:aa:9a:fd:6b:34:e3:08:02:e7:ce:e3:35:fe:
                    57:1c:f9:88:1a:ec:7b:b8:42:89:13:83:d3:fd:61:8a:
                    44:f8:71:22:de:b5:56:79:a4:ad:9d:f6:7c:0d:8c:97:
                    47:f1:0e:93:c4:97:47:22:1b:fa:8b:2e:83:3c:72:a5:
                    69:8e:d4:2b:06:48:8d:54:33:7f:c6:24:1a:85:c6:48:
                    ad:c4:53:14:90:0e:a5:33:22:a5:33:3a:1f:01:89:6e:
                    8c:ef:c0:c5:7c:a1:2b:37:03:a0:19:3b:e5:50:21:2b:
                    07:39:9e:a4:af:a3:65:3e:4e:b7:65:4b:e4:77:ca:21:
                    68:85:e6:52:17:c5:86:3c:d0:25:f8:a0:17:0e:8b:25:
                    b6:0f:b8:32:7a:c2:60:b0:36:2a:56:1c:31:2e:1c:3f:
                    4d:b1:a4:16:e8:70:e1:a6:2f:f8:6d:5f:57:73:2e:46:
                    f3:37:41:0b:74:f5:14:c3:cf:cf:1a:20:49:fb:d2:6b:
                    52:b9:53:a4:ea:0c:14:36:f7:b8:08:5d:37:88:55:04:
                    0c:06:8c:42:89:a0:a5:fb:b3:1a:af:21:72:a4:7b:b4:
                    66:3f:7c:05:f9:82:9b:0b:4e:7b:cb:cc:bc:17:40:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:fc:44:74:68:40:89:00:a8:13:f9:90:c6:dc:ce:2e:
        48:fb:54:ae:d7:22:97:6c:06:46:f1:07:89:7b:c8:f2:
        58:63:9b:39:37:c4:f5:cd:be:a3:45:a3:32:4c:f5:2a:
        88:8f:44:4b:16:0a:6d:c3:2e:a4:15:c4:f8:fb:59:81:
        a5:2c:77:a4:10:7b:df:78:af:85:d8:ab:cd:74:c8:37:
        b1:eb:c9:b1:e6:e3:48:1c:a0:f8:23:76:29:4e:21:81:
        7c:f0:72:90:3a:ab:d9:b1:5a:7d:b5:47:30:10:ae:37:
        26:81:db:36:13:29:69:60:85:5a:e5:c7:3b:28:bb:b7:
        97:a0:4f:d9:38:ea:4f:67:46:73:b9:53:c8:ab:d5:d5:
        21:e8:eb:ce:ad:b3:d4:81:3e:e2:a1:0a:d7:68:eb:3e:
        88:7b:40:9f:c6:d8:21:c9:6c:33:e8:1f:e0:58:aa:e2:
        48:02:af:67:ad:9a:07:11:fa:23:97:6b:fb:15:a2:2c:
        3c:f5:78:de:32:5f:65:dc:5f:d1:64:bd:36:f3:2b:7b:
        61:bf:13:d4:e1:ad:fb:d8:f9:b1:91:ef:e8:17:10:ad:
        ca:30:cc:67:3c:41:b9:cd:db:41:b8:dd:d1:eb:c2:5a:
        11:7f:cc:85:66:12:ed:8c:1c:67:25:be:85:34:07:4f
    Fingerprint (SHA-256):
        67:7A:79:91:BD:37:12:8E:80:71:DB:48:A4:77:03:59:60:D3:64:1D:0C:EC:92:93:C7:2A:08:FF:33:73:50:66
    Fingerprint (SHA1):
        CB:3F:A4:91:65:6C:86:E1:DC:E7:77:BA:D9:B6:1F:CC:C9:66:04:85
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6105: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6106: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6107: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6108: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121141 (0x1e67d4b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:12:00 2017
            Not After : Tue May 10 12:12:00 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:43:fb:8e:d4:de:43:cb:d2:f3:de:f1:58:40:ee:49:
                    05:a6:69:aa:9a:fd:6b:34:e3:08:02:e7:ce:e3:35:fe:
                    57:1c:f9:88:1a:ec:7b:b8:42:89:13:83:d3:fd:61:8a:
                    44:f8:71:22:de:b5:56:79:a4:ad:9d:f6:7c:0d:8c:97:
                    47:f1:0e:93:c4:97:47:22:1b:fa:8b:2e:83:3c:72:a5:
                    69:8e:d4:2b:06:48:8d:54:33:7f:c6:24:1a:85:c6:48:
                    ad:c4:53:14:90:0e:a5:33:22:a5:33:3a:1f:01:89:6e:
                    8c:ef:c0:c5:7c:a1:2b:37:03:a0:19:3b:e5:50:21:2b:
                    07:39:9e:a4:af:a3:65:3e:4e:b7:65:4b:e4:77:ca:21:
                    68:85:e6:52:17:c5:86:3c:d0:25:f8:a0:17:0e:8b:25:
                    b6:0f:b8:32:7a:c2:60:b0:36:2a:56:1c:31:2e:1c:3f:
                    4d:b1:a4:16:e8:70:e1:a6:2f:f8:6d:5f:57:73:2e:46:
                    f3:37:41:0b:74:f5:14:c3:cf:cf:1a:20:49:fb:d2:6b:
                    52:b9:53:a4:ea:0c:14:36:f7:b8:08:5d:37:88:55:04:
                    0c:06:8c:42:89:a0:a5:fb:b3:1a:af:21:72:a4:7b:b4:
                    66:3f:7c:05:f9:82:9b:0b:4e:7b:cb:cc:bc:17:40:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:fc:44:74:68:40:89:00:a8:13:f9:90:c6:dc:ce:2e:
        48:fb:54:ae:d7:22:97:6c:06:46:f1:07:89:7b:c8:f2:
        58:63:9b:39:37:c4:f5:cd:be:a3:45:a3:32:4c:f5:2a:
        88:8f:44:4b:16:0a:6d:c3:2e:a4:15:c4:f8:fb:59:81:
        a5:2c:77:a4:10:7b:df:78:af:85:d8:ab:cd:74:c8:37:
        b1:eb:c9:b1:e6:e3:48:1c:a0:f8:23:76:29:4e:21:81:
        7c:f0:72:90:3a:ab:d9:b1:5a:7d:b5:47:30:10:ae:37:
        26:81:db:36:13:29:69:60:85:5a:e5:c7:3b:28:bb:b7:
        97:a0:4f:d9:38:ea:4f:67:46:73:b9:53:c8:ab:d5:d5:
        21:e8:eb:ce:ad:b3:d4:81:3e:e2:a1:0a:d7:68:eb:3e:
        88:7b:40:9f:c6:d8:21:c9:6c:33:e8:1f:e0:58:aa:e2:
        48:02:af:67:ad:9a:07:11:fa:23:97:6b:fb:15:a2:2c:
        3c:f5:78:de:32:5f:65:dc:5f:d1:64:bd:36:f3:2b:7b:
        61:bf:13:d4:e1:ad:fb:d8:f9:b1:91:ef:e8:17:10:ad:
        ca:30:cc:67:3c:41:b9:cd:db:41:b8:dd:d1:eb:c2:5a:
        11:7f:cc:85:66:12:ed:8c:1c:67:25:be:85:34:07:4f
    Fingerprint (SHA-256):
        67:7A:79:91:BD:37:12:8E:80:71:DB:48:A4:77:03:59:60:D3:64:1D:0C:EC:92:93:C7:2A:08:FF:33:73:50:66
    Fingerprint (SHA1):
        CB:3F:A4:91:65:6C:86:E1:DC:E7:77:BA:D9:B6:1F:CC:C9:66:04:85
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6109: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121142 (0x1e67d4b6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:62:2a:95:ca:92:73:d1:ff:e5:36:34:1d:11:c0:b1:
                    42:18:8e:c4:a5:1b:ef:6c:48:8f:80:33:c4:21:83:05:
                    ae:0b:84:e5:7c:c3:32:fe:d8:ff:f3:77:85:e7:df:d4:
                    63:99:42:47:27:c2:94:29:39:fd:3f:ac:4c:f8:e4:cd:
                    7a:e6:40:d7:80:a2:a1:50:7b:1c:66:e0:96:f0:06:95:
                    98:21:d3:71:14:11:a1:75:77:db:6e:82:6d:d2:d3:89:
                    74:51:4d:c9:b9:da:61:71:8e:cd:ea:38:c1:0b:40:5b:
                    a7:72:d1:06:57:9d:7e:07:f3:fb:a4:a5:eb:7e:5d:30:
                    5c:ff:e9:ac:09:e1:e4:86:a7:44:0c:ed:c7:13:7b:72:
                    4e:e3:1b:74:5a:5f:e5:15:a6:40:f4:db:1b:78:1e:cd:
                    e1:cb:73:21:af:4b:8c:13:5f:b1:0e:9d:ed:d3:cc:06:
                    6b:39:ee:73:b0:42:5f:53:76:12:6a:dd:2e:f6:63:b6:
                    9b:9c:0c:00:5e:e7:42:0f:58:a4:ac:06:59:7a:af:80:
                    95:0d:4d:62:9b:69:89:0f:7a:e3:7a:4e:8d:5d:78:17:
                    e3:64:54:3c:78:53:c6:61:77:e9:78:52:27:8f:ab:f0:
                    ee:a5:11:e0:f7:0e:e3:bb:d9:85:a3:0a:0c:5f:d1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:10:08:65:c7:af:89:da:d8:ae:d5:f1:e7:c7:b6:ca:
        e4:a6:d0:87:a7:a3:c1:92:92:75:2e:73:3f:28:67:41:
        9f:9c:d3:9f:12:91:3b:52:c6:8a:3d:15:27:b7:76:f1:
        24:e8:08:b7:ae:7a:20:40:90:2a:7e:14:4c:ed:17:49:
        04:db:85:ba:19:12:8b:98:35:19:64:0e:07:d4:c3:06:
        c6:93:2d:9e:05:8d:df:d8:b1:73:3a:9b:8f:03:46:cf:
        8a:b3:d5:97:af:24:36:53:55:8c:d4:0c:8f:a4:5b:ff:
        c9:28:43:59:5f:50:6b:36:6c:7b:bc:25:59:21:05:1b:
        9f:2b:0b:27:6b:da:94:72:86:86:cb:a4:6c:0b:01:de:
        c8:d4:71:50:03:4a:56:1e:25:c9:b5:c4:5b:3e:d6:32:
        d9:f7:f9:20:75:6e:5b:b5:93:7f:0a:e4:9f:86:75:29:
        d4:4f:c8:d7:3b:06:a3:95:2a:b7:96:bb:7f:00:d1:a8:
        7e:10:a8:0b:5f:f3:ff:cd:de:00:db:c1:db:5f:88:2c:
        5d:91:b5:e3:d0:46:f2:e0:88:b3:d8:a5:6c:2c:aa:f3:
        b4:64:19:ca:76:92:22:ad:4e:8f:c8:73:6d:1e:cd:8b:
        9a:b9:57:5e:43:02:c0:9b:4b:02:cd:03:ff:97:3b:ab
    Fingerprint (SHA-256):
        57:F0:BF:EA:1B:B1:C5:E9:6D:EF:F6:B2:56:8D:15:7F:11:33:60:5B:5F:49:5D:B6:65:14:23:C4:0E:BA:84:6B
    Fingerprint (SHA1):
        B3:98:AF:A6:E3:ED:D7:B9:7B:A7:C9:40:D1:BB:40:C9:C6:66:FB:7D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6110: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6111: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6112: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6113: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6114: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6115: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121142 (0x1e67d4b6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:62:2a:95:ca:92:73:d1:ff:e5:36:34:1d:11:c0:b1:
                    42:18:8e:c4:a5:1b:ef:6c:48:8f:80:33:c4:21:83:05:
                    ae:0b:84:e5:7c:c3:32:fe:d8:ff:f3:77:85:e7:df:d4:
                    63:99:42:47:27:c2:94:29:39:fd:3f:ac:4c:f8:e4:cd:
                    7a:e6:40:d7:80:a2:a1:50:7b:1c:66:e0:96:f0:06:95:
                    98:21:d3:71:14:11:a1:75:77:db:6e:82:6d:d2:d3:89:
                    74:51:4d:c9:b9:da:61:71:8e:cd:ea:38:c1:0b:40:5b:
                    a7:72:d1:06:57:9d:7e:07:f3:fb:a4:a5:eb:7e:5d:30:
                    5c:ff:e9:ac:09:e1:e4:86:a7:44:0c:ed:c7:13:7b:72:
                    4e:e3:1b:74:5a:5f:e5:15:a6:40:f4:db:1b:78:1e:cd:
                    e1:cb:73:21:af:4b:8c:13:5f:b1:0e:9d:ed:d3:cc:06:
                    6b:39:ee:73:b0:42:5f:53:76:12:6a:dd:2e:f6:63:b6:
                    9b:9c:0c:00:5e:e7:42:0f:58:a4:ac:06:59:7a:af:80:
                    95:0d:4d:62:9b:69:89:0f:7a:e3:7a:4e:8d:5d:78:17:
                    e3:64:54:3c:78:53:c6:61:77:e9:78:52:27:8f:ab:f0:
                    ee:a5:11:e0:f7:0e:e3:bb:d9:85:a3:0a:0c:5f:d1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:10:08:65:c7:af:89:da:d8:ae:d5:f1:e7:c7:b6:ca:
        e4:a6:d0:87:a7:a3:c1:92:92:75:2e:73:3f:28:67:41:
        9f:9c:d3:9f:12:91:3b:52:c6:8a:3d:15:27:b7:76:f1:
        24:e8:08:b7:ae:7a:20:40:90:2a:7e:14:4c:ed:17:49:
        04:db:85:ba:19:12:8b:98:35:19:64:0e:07:d4:c3:06:
        c6:93:2d:9e:05:8d:df:d8:b1:73:3a:9b:8f:03:46:cf:
        8a:b3:d5:97:af:24:36:53:55:8c:d4:0c:8f:a4:5b:ff:
        c9:28:43:59:5f:50:6b:36:6c:7b:bc:25:59:21:05:1b:
        9f:2b:0b:27:6b:da:94:72:86:86:cb:a4:6c:0b:01:de:
        c8:d4:71:50:03:4a:56:1e:25:c9:b5:c4:5b:3e:d6:32:
        d9:f7:f9:20:75:6e:5b:b5:93:7f:0a:e4:9f:86:75:29:
        d4:4f:c8:d7:3b:06:a3:95:2a:b7:96:bb:7f:00:d1:a8:
        7e:10:a8:0b:5f:f3:ff:cd:de:00:db:c1:db:5f:88:2c:
        5d:91:b5:e3:d0:46:f2:e0:88:b3:d8:a5:6c:2c:aa:f3:
        b4:64:19:ca:76:92:22:ad:4e:8f:c8:73:6d:1e:cd:8b:
        9a:b9:57:5e:43:02:c0:9b:4b:02:cd:03:ff:97:3b:ab
    Fingerprint (SHA-256):
        57:F0:BF:EA:1B:B1:C5:E9:6D:EF:F6:B2:56:8D:15:7F:11:33:60:5B:5F:49:5D:B6:65:14:23:C4:0E:BA:84:6B
    Fingerprint (SHA1):
        B3:98:AF:A6:E3:ED:D7:B9:7B:A7:C9:40:D1:BB:40:C9:C6:66:FB:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6116: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121142 (0x1e67d4b6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:12:01 2017
            Not After : Tue May 10 12:12:01 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:62:2a:95:ca:92:73:d1:ff:e5:36:34:1d:11:c0:b1:
                    42:18:8e:c4:a5:1b:ef:6c:48:8f:80:33:c4:21:83:05:
                    ae:0b:84:e5:7c:c3:32:fe:d8:ff:f3:77:85:e7:df:d4:
                    63:99:42:47:27:c2:94:29:39:fd:3f:ac:4c:f8:e4:cd:
                    7a:e6:40:d7:80:a2:a1:50:7b:1c:66:e0:96:f0:06:95:
                    98:21:d3:71:14:11:a1:75:77:db:6e:82:6d:d2:d3:89:
                    74:51:4d:c9:b9:da:61:71:8e:cd:ea:38:c1:0b:40:5b:
                    a7:72:d1:06:57:9d:7e:07:f3:fb:a4:a5:eb:7e:5d:30:
                    5c:ff:e9:ac:09:e1:e4:86:a7:44:0c:ed:c7:13:7b:72:
                    4e:e3:1b:74:5a:5f:e5:15:a6:40:f4:db:1b:78:1e:cd:
                    e1:cb:73:21:af:4b:8c:13:5f:b1:0e:9d:ed:d3:cc:06:
                    6b:39:ee:73:b0:42:5f:53:76:12:6a:dd:2e:f6:63:b6:
                    9b:9c:0c:00:5e:e7:42:0f:58:a4:ac:06:59:7a:af:80:
                    95:0d:4d:62:9b:69:89:0f:7a:e3:7a:4e:8d:5d:78:17:
                    e3:64:54:3c:78:53:c6:61:77:e9:78:52:27:8f:ab:f0:
                    ee:a5:11:e0:f7:0e:e3:bb:d9:85:a3:0a:0c:5f:d1:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        78:10:08:65:c7:af:89:da:d8:ae:d5:f1:e7:c7:b6:ca:
        e4:a6:d0:87:a7:a3:c1:92:92:75:2e:73:3f:28:67:41:
        9f:9c:d3:9f:12:91:3b:52:c6:8a:3d:15:27:b7:76:f1:
        24:e8:08:b7:ae:7a:20:40:90:2a:7e:14:4c:ed:17:49:
        04:db:85:ba:19:12:8b:98:35:19:64:0e:07:d4:c3:06:
        c6:93:2d:9e:05:8d:df:d8:b1:73:3a:9b:8f:03:46:cf:
        8a:b3:d5:97:af:24:36:53:55:8c:d4:0c:8f:a4:5b:ff:
        c9:28:43:59:5f:50:6b:36:6c:7b:bc:25:59:21:05:1b:
        9f:2b:0b:27:6b:da:94:72:86:86:cb:a4:6c:0b:01:de:
        c8:d4:71:50:03:4a:56:1e:25:c9:b5:c4:5b:3e:d6:32:
        d9:f7:f9:20:75:6e:5b:b5:93:7f:0a:e4:9f:86:75:29:
        d4:4f:c8:d7:3b:06:a3:95:2a:b7:96:bb:7f:00:d1:a8:
        7e:10:a8:0b:5f:f3:ff:cd:de:00:db:c1:db:5f:88:2c:
        5d:91:b5:e3:d0:46:f2:e0:88:b3:d8:a5:6c:2c:aa:f3:
        b4:64:19:ca:76:92:22:ad:4e:8f:c8:73:6d:1e:cd:8b:
        9a:b9:57:5e:43:02:c0:9b:4b:02:cd:03:ff:97:3b:ab
    Fingerprint (SHA-256):
        57:F0:BF:EA:1B:B1:C5:E9:6D:EF:F6:B2:56:8D:15:7F:11:33:60:5B:5F:49:5D:B6:65:14:23:C4:0E:BA:84:6B
    Fingerprint (SHA1):
        B3:98:AF:A6:E3:ED:D7:B9:7B:A7:C9:40:D1:BB:40:C9:C6:66:FB:7D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6117: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6118: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6119: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6120: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6121: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6122: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121141 (0x1e67d4b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:12:00 2017
            Not After : Tue May 10 12:12:00 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:43:fb:8e:d4:de:43:cb:d2:f3:de:f1:58:40:ee:49:
                    05:a6:69:aa:9a:fd:6b:34:e3:08:02:e7:ce:e3:35:fe:
                    57:1c:f9:88:1a:ec:7b:b8:42:89:13:83:d3:fd:61:8a:
                    44:f8:71:22:de:b5:56:79:a4:ad:9d:f6:7c:0d:8c:97:
                    47:f1:0e:93:c4:97:47:22:1b:fa:8b:2e:83:3c:72:a5:
                    69:8e:d4:2b:06:48:8d:54:33:7f:c6:24:1a:85:c6:48:
                    ad:c4:53:14:90:0e:a5:33:22:a5:33:3a:1f:01:89:6e:
                    8c:ef:c0:c5:7c:a1:2b:37:03:a0:19:3b:e5:50:21:2b:
                    07:39:9e:a4:af:a3:65:3e:4e:b7:65:4b:e4:77:ca:21:
                    68:85:e6:52:17:c5:86:3c:d0:25:f8:a0:17:0e:8b:25:
                    b6:0f:b8:32:7a:c2:60:b0:36:2a:56:1c:31:2e:1c:3f:
                    4d:b1:a4:16:e8:70:e1:a6:2f:f8:6d:5f:57:73:2e:46:
                    f3:37:41:0b:74:f5:14:c3:cf:cf:1a:20:49:fb:d2:6b:
                    52:b9:53:a4:ea:0c:14:36:f7:b8:08:5d:37:88:55:04:
                    0c:06:8c:42:89:a0:a5:fb:b3:1a:af:21:72:a4:7b:b4:
                    66:3f:7c:05:f9:82:9b:0b:4e:7b:cb:cc:bc:17:40:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:fc:44:74:68:40:89:00:a8:13:f9:90:c6:dc:ce:2e:
        48:fb:54:ae:d7:22:97:6c:06:46:f1:07:89:7b:c8:f2:
        58:63:9b:39:37:c4:f5:cd:be:a3:45:a3:32:4c:f5:2a:
        88:8f:44:4b:16:0a:6d:c3:2e:a4:15:c4:f8:fb:59:81:
        a5:2c:77:a4:10:7b:df:78:af:85:d8:ab:cd:74:c8:37:
        b1:eb:c9:b1:e6:e3:48:1c:a0:f8:23:76:29:4e:21:81:
        7c:f0:72:90:3a:ab:d9:b1:5a:7d:b5:47:30:10:ae:37:
        26:81:db:36:13:29:69:60:85:5a:e5:c7:3b:28:bb:b7:
        97:a0:4f:d9:38:ea:4f:67:46:73:b9:53:c8:ab:d5:d5:
        21:e8:eb:ce:ad:b3:d4:81:3e:e2:a1:0a:d7:68:eb:3e:
        88:7b:40:9f:c6:d8:21:c9:6c:33:e8:1f:e0:58:aa:e2:
        48:02:af:67:ad:9a:07:11:fa:23:97:6b:fb:15:a2:2c:
        3c:f5:78:de:32:5f:65:dc:5f:d1:64:bd:36:f3:2b:7b:
        61:bf:13:d4:e1:ad:fb:d8:f9:b1:91:ef:e8:17:10:ad:
        ca:30:cc:67:3c:41:b9:cd:db:41:b8:dd:d1:eb:c2:5a:
        11:7f:cc:85:66:12:ed:8c:1c:67:25:be:85:34:07:4f
    Fingerprint (SHA-256):
        67:7A:79:91:BD:37:12:8E:80:71:DB:48:A4:77:03:59:60:D3:64:1D:0C:EC:92:93:C7:2A:08:FF:33:73:50:66
    Fingerprint (SHA1):
        CB:3F:A4:91:65:6C:86:E1:DC:E7:77:BA:D9:B6:1F:CC:C9:66:04:85
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6123: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121141 (0x1e67d4b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:12:00 2017
            Not After : Tue May 10 12:12:00 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:43:fb:8e:d4:de:43:cb:d2:f3:de:f1:58:40:ee:49:
                    05:a6:69:aa:9a:fd:6b:34:e3:08:02:e7:ce:e3:35:fe:
                    57:1c:f9:88:1a:ec:7b:b8:42:89:13:83:d3:fd:61:8a:
                    44:f8:71:22:de:b5:56:79:a4:ad:9d:f6:7c:0d:8c:97:
                    47:f1:0e:93:c4:97:47:22:1b:fa:8b:2e:83:3c:72:a5:
                    69:8e:d4:2b:06:48:8d:54:33:7f:c6:24:1a:85:c6:48:
                    ad:c4:53:14:90:0e:a5:33:22:a5:33:3a:1f:01:89:6e:
                    8c:ef:c0:c5:7c:a1:2b:37:03:a0:19:3b:e5:50:21:2b:
                    07:39:9e:a4:af:a3:65:3e:4e:b7:65:4b:e4:77:ca:21:
                    68:85:e6:52:17:c5:86:3c:d0:25:f8:a0:17:0e:8b:25:
                    b6:0f:b8:32:7a:c2:60:b0:36:2a:56:1c:31:2e:1c:3f:
                    4d:b1:a4:16:e8:70:e1:a6:2f:f8:6d:5f:57:73:2e:46:
                    f3:37:41:0b:74:f5:14:c3:cf:cf:1a:20:49:fb:d2:6b:
                    52:b9:53:a4:ea:0c:14:36:f7:b8:08:5d:37:88:55:04:
                    0c:06:8c:42:89:a0:a5:fb:b3:1a:af:21:72:a4:7b:b4:
                    66:3f:7c:05:f9:82:9b:0b:4e:7b:cb:cc:bc:17:40:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:fc:44:74:68:40:89:00:a8:13:f9:90:c6:dc:ce:2e:
        48:fb:54:ae:d7:22:97:6c:06:46:f1:07:89:7b:c8:f2:
        58:63:9b:39:37:c4:f5:cd:be:a3:45:a3:32:4c:f5:2a:
        88:8f:44:4b:16:0a:6d:c3:2e:a4:15:c4:f8:fb:59:81:
        a5:2c:77:a4:10:7b:df:78:af:85:d8:ab:cd:74:c8:37:
        b1:eb:c9:b1:e6:e3:48:1c:a0:f8:23:76:29:4e:21:81:
        7c:f0:72:90:3a:ab:d9:b1:5a:7d:b5:47:30:10:ae:37:
        26:81:db:36:13:29:69:60:85:5a:e5:c7:3b:28:bb:b7:
        97:a0:4f:d9:38:ea:4f:67:46:73:b9:53:c8:ab:d5:d5:
        21:e8:eb:ce:ad:b3:d4:81:3e:e2:a1:0a:d7:68:eb:3e:
        88:7b:40:9f:c6:d8:21:c9:6c:33:e8:1f:e0:58:aa:e2:
        48:02:af:67:ad:9a:07:11:fa:23:97:6b:fb:15:a2:2c:
        3c:f5:78:de:32:5f:65:dc:5f:d1:64:bd:36:f3:2b:7b:
        61:bf:13:d4:e1:ad:fb:d8:f9:b1:91:ef:e8:17:10:ad:
        ca:30:cc:67:3c:41:b9:cd:db:41:b8:dd:d1:eb:c2:5a:
        11:7f:cc:85:66:12:ed:8c:1c:67:25:be:85:34:07:4f
    Fingerprint (SHA-256):
        67:7A:79:91:BD:37:12:8E:80:71:DB:48:A4:77:03:59:60:D3:64:1D:0C:EC:92:93:C7:2A:08:FF:33:73:50:66
    Fingerprint (SHA1):
        CB:3F:A4:91:65:6C:86:E1:DC:E7:77:BA:D9:B6:1F:CC:C9:66:04:85
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6124: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6125: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121146 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6126: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6127: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6128: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121147 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6129: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6130: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6131: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121148 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6132: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6133: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6134: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121149 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6135: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6136: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6137: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121150 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6138: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6139: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6140: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121151 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6141: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6142: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6143: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121152 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6144: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6145: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6146: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121153 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6147: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6148: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6149: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121154 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6150: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6151: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6152: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6153: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510121155 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6154: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6155: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510121156 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6156: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6157: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510121157 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6158: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6159: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6160: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6161: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6162: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510121158 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6163: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6164: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510121159 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6165: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6166: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510121160 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6167: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6168: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6169: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6170: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6171: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510121161 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6172: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6173: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510121162 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6174: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6175: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510121163 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6176: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6177: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6178: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6179: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6180: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510121164 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6181: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6182: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510121165 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6183: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6184: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510121166 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6185: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6186: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6187: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6188: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6189: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510121167   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6190: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6191: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6192: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6193: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121168   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6194: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6195: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121146 (0x1e67d4ba)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:03 2017
            Not After : Tue May 10 12:12:03 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:fe:2c:a1:df:bb:a6:8b:78:ee:07:39:91:a2:8e:14:
                    27:a2:e5:75:8c:ee:26:1a:66:74:8c:07:43:be:5c:46:
                    99:2d:ea:26:97:76:1c:9f:f0:b4:6f:f5:c6:01:5c:00:
                    4c:82:07:da:94:8f:26:fb:b5:93:ab:c3:ab:a7:1e:11:
                    7a:5b:4b:d5:8b:d0:99:40:2f:3c:de:75:ca:8b:c9:6f:
                    00:65:29:ad:8c:e7:de:de:13:bb:98:eb:3e:d2:ab:7e:
                    eb:ac:8d:db:61:9e:a2:c4:07:2f:02:8d:61:42:9c:8f:
                    96:bb:5b:53:54:94:e0:ff:48:73:4c:80:a7:97:24:01:
                    69:3c:f4:fa:8f:26:a2:60:b7:95:ed:c1:92:94:8e:82:
                    49:bf:65:d5:30:bd:39:fa:40:0d:28:c5:c4:0d:a2:78:
                    58:00:96:fc:25:ef:71:19:94:db:60:9b:39:ca:bf:6f:
                    50:1e:e0:3a:a1:dc:d8:be:2a:f2:e2:8d:9e:c5:b3:23:
                    f7:a2:9b:fd:2f:72:8a:70:26:c9:13:e7:c9:c5:b4:05:
                    fe:3f:40:42:9f:4f:2d:2c:42:a1:2e:67:ef:ad:50:f4:
                    00:0a:2c:90:7a:ad:13:db:92:28:47:e9:0c:53:1b:f2:
                    15:9f:27:b4:0c:f1:a7:c4:12:b7:e1:2a:e2:e3:3e:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:c0:db:b2:cf:41:5c:0a:75:c7:4b:e7:ba:82:b2:68:
        e4:6e:f6:2b:a6:cc:6e:45:45:b1:e8:ad:60:b7:53:2f:
        fa:2a:33:5e:06:86:4a:27:ef:20:7a:88:20:e5:0a:b0:
        5a:b6:df:27:d8:d2:17:da:c4:73:e4:71:51:e4:96:2f:
        89:46:42:3f:86:c8:0b:9b:61:ff:57:91:fb:d8:fd:0d:
        1f:c9:b9:91:84:8d:e1:5a:62:67:19:93:5e:61:ee:c4:
        8c:0a:30:8c:80:a8:4b:17:6c:cf:ca:d2:8d:4c:74:6b:
        fc:60:f6:cd:47:99:97:2d:f8:1c:47:75:f6:c7:50:5a:
        e5:67:7c:f1:68:65:f0:14:a2:38:b5:95:8a:95:93:8b:
        d8:2f:71:6e:f6:90:24:c7:a7:b6:71:d4:64:8e:c3:0a:
        96:13:19:18:db:fc:01:e5:a1:43:83:dc:ad:b7:a8:f0:
        63:0b:e3:ea:ac:48:e4:ae:e0:01:12:3d:e9:3b:2d:29:
        de:6c:52:2e:36:0a:a2:60:61:01:27:27:4a:70:1a:2e:
        ba:49:a7:17:3a:4a:da:5e:84:fe:d2:b1:cd:19:86:3b:
        08:5d:f3:65:8f:0b:27:f6:b3:61:89:16:76:59:f9:11:
        1e:85:cb:47:12:35:8f:ae:4b:26:9e:35:01:da:d4:b7
    Fingerprint (SHA-256):
        3C:B1:5E:C3:20:CA:70:C6:56:F3:C8:F2:A3:BF:8A:91:98:27:FB:32:8A:4C:A1:F3:09:FF:30:0F:68:A3:1C:2C
    Fingerprint (SHA1):
        2F:65:E9:D5:5E:6A:C8:F1:99:E1:23:36:66:CE:2C:35:A8:A6:7F:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6196: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121147 (0x1e67d4bb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:12:04 2017
            Not After : Tue May 10 12:12:04 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:98:65:12:76:b3:af:8b:93:71:69:45:69:50:74:ea:
                    6b:49:49:be:02:27:24:22:a6:8b:64:a9:fb:2c:50:cb:
                    6e:77:f5:c9:a3:e1:8e:a3:d8:e9:b2:a5:4f:47:0c:f7:
                    ab:66:4d:35:9e:e6:f0:fb:b6:ae:54:5d:64:ed:fb:59:
                    1e:a7:bb:b6:70:90:54:4f:e8:ee:c2:0a:50:85:ab:d3:
                    82:de:9a:15:c0:ee:24:c4:29:28:cb:94:35:ba:f3:40:
                    05:1a:ea:5b:08:a3:a6:f4:36:22:41:1c:ad:1a:2e:0a:
                    01:ae:0a:94:d6:d8:d3:b9:64:21:75:e8:9d:b2:dd:08:
                    10:c3:3f:52:2e:a5:68:d7:aa:98:cc:d1:be:7c:f1:ab:
                    dc:4b:b1:d7:6c:da:9b:e3:d5:09:90:64:f6:20:e6:e3:
                    05:72:fe:2a:79:04:08:64:d2:98:74:8a:73:de:b9:cc:
                    43:bb:11:90:b3:e9:ad:ed:44:3a:b6:1d:cf:ea:fa:d1:
                    92:ff:d7:c6:19:3b:11:0b:af:56:e3:e3:19:55:f2:df:
                    26:70:bd:34:27:fd:2e:63:0d:5f:da:1c:da:32:ae:9f:
                    4b:e6:4f:92:8f:50:6e:fd:ff:56:f1:d1:3b:07:c6:75:
                    4b:19:b4:79:99:93:d0:4a:b8:03:55:13:cd:c4:f4:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:af:47:2c:f4:e1:c4:32:a3:52:69:5b:19:e9:f2:b4:
        a0:bb:48:03:68:d4:36:4e:10:f8:2f:16:9a:41:33:6f:
        2d:ca:b3:b8:d2:97:c2:8f:03:45:0a:1c:e7:b7:78:02:
        24:2f:6e:b2:d9:ed:03:2f:74:1e:94:42:bc:e4:28:1a:
        14:cc:9d:a7:ab:89:87:b9:d0:73:0b:bf:bd:96:6a:cc:
        f0:53:66:e8:c7:04:50:25:cf:51:97:c7:32:0c:97:96:
        66:fa:87:f4:b1:a0:dc:47:7c:b4:4f:51:42:3e:4a:d4:
        40:1b:0b:a3:cc:fb:da:28:68:61:bd:88:11:30:16:bc:
        1c:1f:e9:9c:6a:f8:1c:03:94:53:c0:8d:8b:df:d1:0c:
        ee:35:53:45:44:86:aa:95:dd:19:ac:20:82:0d:c5:4d:
        ce:0d:36:3b:0b:09:04:0f:3d:7d:b5:24:5f:ed:92:f1:
        d1:56:52:89:a6:a7:c7:ef:d1:0e:e5:dc:70:a2:a2:91:
        bb:ec:30:67:27:21:a8:2d:bc:51:8b:de:38:95:d8:6b:
        76:29:1b:32:18:ce:b4:a9:05:c2:0e:62:20:55:4f:8d:
        f4:c9:97:c8:5c:1f:a4:68:33:d2:5f:46:6f:ec:24:8d:
        99:3b:0f:cf:64:0b:60:79:87:c4:72:07:99:d6:bd:67
    Fingerprint (SHA-256):
        C2:AB:22:10:35:F5:8C:37:76:48:4B:E5:21:CD:F3:5C:E0:3B:5A:B8:5A:11:B2:7A:1B:7D:EA:52:00:86:18:DE
    Fingerprint (SHA1):
        77:1C:15:FB:D9:F3:49:81:D9:2A:4B:26:3C:40:E3:54:E4:EB:30:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6197: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121148 (0x1e67d4bc)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:12:05 2017
            Not After : Tue May 10 12:12:05 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:48:fa:b8:16:84:ee:66:e6:71:f4:ae:77:1c:0f:14:
                    27:43:2a:39:08:36:04:b4:dc:f7:86:b2:b7:f6:2d:e6:
                    c8:4d:c1:bd:3f:ff:e8:a9:e8:6e:bb:67:6f:5b:f3:95:
                    cd:f6:3c:c1:07:ba:3b:87:6a:2b:16:1a:94:04:22:c3:
                    ae:a8:3c:ae:7e:22:05:0b:db:60:a8:66:99:e5:e7:ed:
                    c2:60:2a:e0:b7:27:91:0b:87:34:ee:fb:5b:6c:f1:d1:
                    f3:ec:d8:30:a6:c5:e9:c5:ee:c2:27:9d:05:f4:bc:29:
                    e1:a4:82:e8:03:9d:4a:2e:83:ce:71:b3:df:b3:6c:55:
                    87:9e:f6:ce:be:c7:d7:e2:84:85:3c:23:92:90:d6:1a:
                    ba:ff:10:3d:4c:11:34:d0:39:0d:d4:b1:d7:57:09:02:
                    96:f5:ed:39:4d:12:5e:21:a7:21:c9:9f:b1:58:04:99:
                    43:fc:db:21:3a:a8:5f:64:2c:d9:c6:1a:80:b0:97:2d:
                    83:d1:16:18:ea:93:c6:34:73:18:c8:7e:02:75:dc:3c:
                    4b:06:34:ac:26:f4:0b:d3:ce:d3:8a:1e:2f:bb:5e:23:
                    95:3e:84:ce:1e:82:1c:a1:c8:91:44:2d:f8:b4:1c:87:
                    24:ec:c3:8a:43:bc:0a:12:29:67:37:65:80:5b:9d:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:f2:07:d8:7d:4e:6a:75:1f:74:a4:e2:92:26:d7:ea:
        3f:e8:f3:fe:b7:6e:cf:6d:b5:f9:fa:e1:62:fb:0d:c6:
        c5:21:37:e3:23:43:b9:ff:b5:d4:d5:dd:aa:f5:39:05:
        6c:d6:84:34:7c:4f:99:0c:bd:0f:0c:61:7e:64:a3:90:
        3c:9b:af:b4:34:85:23:45:d6:af:14:2a:bd:ab:6f:06:
        80:b2:e0:82:a0:0f:26:a7:2e:8d:19:12:0a:29:91:b1:
        ab:96:16:a7:ec:b5:a8:13:e8:fa:de:c6:67:20:91:e3:
        7b:bd:dd:8d:43:92:d5:f0:8f:3e:87:7b:54:57:55:d0:
        27:06:75:e7:ab:8f:36:9f:1f:95:80:0c:a5:f3:77:fc:
        4c:df:1c:ff:19:81:e8:37:c6:9b:ea:a0:74:7f:52:84:
        8a:ac:24:e7:c6:f5:6b:99:5e:20:2e:17:bf:df:7b:c5:
        b2:87:97:c0:ca:b2:da:e5:73:9c:f7:6a:d0:72:6b:ae:
        84:bc:d9:81:56:10:81:3a:a6:71:97:a3:66:ca:41:f3:
        bd:68:35:ce:bd:ce:41:bf:1f:56:55:6b:85:79:ce:a9:
        47:5a:e3:92:46:30:80:71:09:a7:1c:84:24:13:ca:14:
        1b:a6:b0:c0:6b:e7:91:3b:dd:64:76:8f:77:5c:9f:51
    Fingerprint (SHA-256):
        BE:C0:71:68:69:3D:2E:9E:98:1A:25:B5:46:B1:C7:6D:4B:70:95:E3:17:C7:A0:62:1B:13:89:33:27:AE:13:F6
    Fingerprint (SHA1):
        E5:03:29:28:74:10:AE:35:7B:E1:43:A3:F0:BD:0E:3E:74:98:63:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6198: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121149 (0x1e67d4bd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:12:05 2017
            Not After : Tue May 10 12:12:05 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e8:58:49:3c:19:83:c4:61:c8:eb:6e:4f:7e:d9:bc:88:
                    37:9d:73:9c:4c:bd:e5:e7:a9:d0:84:d0:ff:5b:ea:0d:
                    20:7d:3c:1c:91:7f:2c:8b:e7:75:43:c0:0f:61:1e:b1:
                    bb:0e:3b:b9:10:b9:40:9a:9a:c4:5b:59:4e:f0:22:50:
                    d7:40:24:03:56:a3:1e:f9:c6:41:a9:a1:70:a2:bd:5c:
                    d1:f5:c5:93:21:65:13:fb:da:ac:12:66:a5:c6:a6:df:
                    9d:1a:03:92:c7:59:fe:7b:46:fa:e9:53:09:75:fa:df:
                    2f:82:c6:34:fd:c2:23:e0:3c:99:04:2d:9a:15:bd:2f:
                    7d:91:2d:46:7b:8d:70:69:bd:ae:54:6f:1a:c5:86:95:
                    ac:bf:42:67:53:76:44:a8:0b:77:1f:3e:65:1d:01:a1:
                    c0:ca:88:73:c1:fc:74:bf:f6:96:cd:f3:1d:51:77:94:
                    88:51:2c:28:91:b9:7f:c6:66:70:dc:d6:47:36:48:f9:
                    29:79:a8:ba:0a:6a:a0:54:71:ac:e9:0d:05:e2:00:b7:
                    09:8d:03:26:f7:d8:7c:e4:00:df:cc:0d:4a:25:2a:e4:
                    ba:13:22:a3:b1:ef:86:33:e4:2f:7d:3a:4e:77:89:35:
                    c6:e4:60:0b:c7:67:84:3e:2c:e0:3e:41:5a:c2:00:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:00:e9:50:fc:28:5e:c8:ba:62:14:7c:d4:62:54:62:
        7d:fc:14:d8:be:6a:9f:d8:b1:bc:4d:8f:3a:02:a9:36:
        17:1e:ae:3f:c8:87:bc:7a:1b:47:9d:cb:45:c2:b0:24:
        5e:a6:0f:09:5c:ef:fe:6a:e4:1b:93:d5:3f:ca:5e:c8:
        8a:43:3c:f8:d2:bf:4b:64:19:fb:97:bb:bf:14:f7:da:
        a1:b9:d3:50:fb:af:85:85:ae:30:fc:0c:3a:01:88:2b:
        73:f4:aa:35:7d:58:d2:54:91:59:fa:15:4b:57:ce:02:
        50:8c:9a:cc:71:5f:bc:d5:1f:07:33:43:f3:ec:02:45:
        c4:2a:69:8b:ec:77:4a:0c:d3:67:62:ac:36:97:d6:fb:
        97:84:75:4e:07:9a:7e:0a:79:de:35:9a:f2:f9:37:bc:
        7e:fa:0a:bc:27:23:39:7b:86:33:20:1e:83:bd:5f:21:
        da:8a:0a:90:30:aa:a4:10:d8:49:c8:d7:70:ad:dd:70:
        2e:a2:a4:29:a2:40:15:4c:de:51:4c:40:e6:c6:b6:7a:
        42:34:78:8b:00:b8:06:08:57:65:ab:bf:2e:a5:cf:69:
        a7:36:d5:00:32:c3:68:9c:0f:f6:9b:12:45:c8:79:7e:
        06:80:d6:e0:15:58:a4:3b:31:b1:6f:92:3e:01:08:98
    Fingerprint (SHA-256):
        11:1B:D6:20:1B:AC:12:B8:4B:5A:E9:7A:9B:D8:ED:F6:C5:91:90:DF:FF:0E:B8:D3:EF:92:5C:67:A8:1D:E1:61
    Fingerprint (SHA1):
        D7:D8:20:5E:57:B5:3A:88:BB:6F:4B:C2:77:D5:FB:1B:F2:11:81:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6199: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121150 (0x1e67d4be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:12:06 2017
            Not After : Tue May 10 12:12:06 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:b2:58:90:9b:30:c3:61:e9:99:56:23:45:4f:7c:ef:
                    69:de:35:a1:7e:4a:cf:93:64:85:85:e0:66:e8:13:4e:
                    1e:fa:31:05:b2:52:c7:38:0a:17:0e:76:ee:db:3d:03:
                    95:be:76:71:bc:9f:74:d3:58:68:f0:df:87:88:dc:0c:
                    6d:3d:90:d2:bb:b2:56:f9:01:74:47:38:99:bd:d6:9f:
                    13:91:be:74:d1:08:c4:38:a1:f0:55:a9:ab:d7:41:6e:
                    a9:2b:59:14:9e:5d:12:7a:a5:70:a2:28:fc:df:6b:64:
                    a9:9d:c1:6c:d2:4e:4b:77:f1:9b:f2:5f:79:bb:58:eb:
                    84:9a:ab:b1:a8:b5:8a:3e:e0:47:36:94:ca:14:b5:08:
                    59:8d:f9:e6:29:e8:fb:98:d6:49:1a:9d:9d:15:c8:2c:
                    77:15:02:19:a1:bf:48:04:54:9c:48:be:ba:49:a8:04:
                    6d:45:c1:6e:b4:32:a3:f4:96:1b:fc:0e:bd:26:e8:9a:
                    34:d4:b9:2e:37:67:b5:38:37:63:f3:ef:5e:69:15:5d:
                    3c:83:c4:ac:08:56:e8:98:93:42:94:78:dc:0f:f1:1a:
                    7d:e0:86:1a:7f:ba:7d:93:e4:b5:e4:c9:e2:cd:82:0c:
                    29:3e:4b:2b:fb:14:29:23:ea:20:d1:22:b4:e1:e8:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:da:dd:29:b5:ef:2c:61:cb:29:28:5b:50:7e:9b:23:
        d2:15:d7:bf:9e:9b:22:0d:c8:60:b4:c3:2f:90:54:a6:
        e1:78:47:9d:d0:0d:c0:d9:72:3f:0a:19:af:63:5b:95:
        18:9c:45:2b:2f:46:c1:6c:77:81:51:9e:9b:4e:6a:08:
        94:bf:55:58:17:6b:39:6d:bd:e6:e5:6e:70:30:f1:d9:
        38:5b:6b:df:d1:a2:e9:83:42:3d:93:e5:23:f4:4e:86:
        13:44:3b:cf:0a:71:2f:89:a5:46:11:f8:c0:30:b2:9d:
        39:f5:68:d5:cc:58:cb:27:90:41:2a:dc:09:37:26:7b:
        bc:83:a5:50:f8:8c:78:91:23:ee:7f:75:30:6b:5b:31:
        89:06:df:87:7e:d9:b3:2c:0f:a8:e7:f1:dd:97:93:ed:
        80:b3:36:b6:12:54:de:b2:0c:8e:96:47:de:c9:bc:bf:
        ba:80:f9:c5:31:b9:05:9c:e3:d6:63:2a:49:03:43:5f:
        ac:5c:8e:14:9b:67:e1:55:f6:4e:d2:c7:b0:84:f7:21:
        9a:46:7d:50:ca:1a:47:b7:3f:d8:71:55:99:6a:06:25:
        7a:87:12:fe:e1:59:59:f1:c2:80:91:97:6a:d7:6c:63:
        87:6d:11:1c:36:b4:1a:7b:54:a5:a4:80:14:dd:e8:7c
    Fingerprint (SHA-256):
        40:03:56:0A:B2:57:ED:68:5C:BF:63:B4:BA:76:45:3F:EB:4D:EA:18:80:60:E9:B6:0A:41:8A:B8:E8:3C:DA:F8
    Fingerprint (SHA1):
        F6:AC:75:2D:02:A7:CE:BC:65:31:5C:C7:26:5A:D6:CF:C0:6A:DE:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6200: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121151 (0x1e67d4bf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:12:07 2017
            Not After : Tue May 10 12:12:07 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:16:d7:0b:c9:0c:ac:e0:4e:cc:da:e3:f3:32:a6:68:
                    4f:4f:24:9c:7d:70:3d:9d:12:78:c6:59:9b:1f:6f:21:
                    50:80:45:c9:4b:c6:cf:a1:e7:7b:d3:b6:78:4b:4e:7c:
                    17:54:06:d7:80:84:af:80:94:1d:91:8e:27:05:34:9c:
                    c0:9b:c1:4e:e0:ad:c1:ca:32:14:eb:34:2c:40:68:80:
                    03:45:de:20:45:3f:89:70:a0:6f:1c:7a:5e:a0:1e:e0:
                    e4:bf:67:0e:26:23:64:0c:46:25:63:d4:2b:3f:93:ed:
                    c3:14:b5:32:35:e9:91:6c:77:ac:c1:bd:22:b8:a2:f4:
                    b8:02:6e:dd:52:0a:5b:ae:01:a5:d2:49:5a:28:0e:7b:
                    ab:f2:70:ea:0f:56:22:fa:4d:69:b9:e0:4f:e6:50:65:
                    45:09:73:b8:07:2b:53:c0:94:08:c5:15:90:25:f1:ce:
                    8d:e6:cb:07:63:62:72:68:78:7b:7d:39:80:8d:3c:29:
                    b4:53:e8:e1:e4:70:94:d5:3e:83:32:8b:bc:d1:29:16:
                    b4:1d:e5:62:9d:19:e5:a9:74:f1:f8:b8:4a:8e:be:0d:
                    fe:99:6d:0f:7e:30:85:49:d4:7b:09:60:bc:6f:8f:3d:
                    52:b7:09:0e:f1:a2:3d:8d:cc:c8:1a:43:22:a0:f0:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:f7:a1:9e:1f:76:c0:d2:b5:36:50:b6:42:09:b8:5f:
        71:6f:78:31:d4:93:44:63:bf:5f:6b:3f:c0:3e:ec:63:
        b7:f6:6b:a8:d3:d0:2a:f4:ea:cd:ac:91:2a:13:e3:59:
        32:34:9a:7e:aa:bd:31:cd:10:04:07:73:e8:0f:0c:4f:
        62:4a:f9:b7:3d:da:46:01:0d:82:1b:15:09:68:7c:33:
        31:46:67:05:9c:9f:a3:38:31:7b:6b:90:32:3a:d2:f0:
        a1:70:95:e6:73:16:0b:09:7d:eb:be:21:07:94:61:c0:
        eb:cd:cd:74:69:45:d8:c0:31:90:f6:d1:a1:2e:ac:04:
        a3:c0:a4:dc:61:42:bc:d2:e7:b3:e9:dd:2c:cb:8e:75:
        91:9f:eb:95:d0:f7:1e:58:58:2e:f9:23:6c:3a:ce:9a:
        6b:a3:50:f0:0f:29:0b:cb:fb:0e:04:02:4a:7a:92:4d:
        3a:ef:2b:1a:24:00:d3:59:27:79:1f:a7:82:b5:f8:e9:
        fb:ee:ef:7d:4a:30:4c:03:52:83:5c:56:3c:38:8e:cb:
        da:21:50:d0:31:42:a9:9b:0a:4d:5b:a3:fd:f8:14:6c:
        87:65:7f:f2:ab:fd:23:f9:1c:0e:18:17:65:98:71:30:
        e9:99:f7:ec:4c:99:e3:3b:ff:f2:07:29:56:7e:39:65
    Fingerprint (SHA-256):
        5B:34:DF:CE:5B:2B:71:D8:96:0C:AE:CA:85:0B:CF:F7:E2:CF:5E:59:94:DB:A4:D1:B8:18:6F:36:86:06:2B:01
    Fingerprint (SHA1):
        99:7C:67:EE:2A:85:92:CD:1B:84:03:DA:29:4A:7C:D5:D0:81:1A:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6201: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121152 (0x1e67d4c0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:12:07 2017
            Not After : Tue May 10 12:12:07 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:a8:a3:12:9c:fe:a3:78:4f:e6:b1:21:23:39:44:4d:
                    45:6d:30:83:2d:8c:e7:b3:e5:94:08:22:f2:a4:4d:78:
                    f6:3b:95:3e:aa:59:4f:42:ae:1d:d3:ec:67:c9:17:ac:
                    89:90:a5:3b:c0:5b:71:6f:6e:be:60:90:11:1b:90:0b:
                    f9:d7:c9:d2:16:cd:26:14:de:43:4d:7c:3c:0b:b1:ad:
                    ec:22:a3:a2:ab:b5:e9:71:99:40:84:3f:ed:6b:9e:7c:
                    9c:50:d2:c2:2e:f5:7f:21:9b:e8:c9:45:9e:8b:02:de:
                    b8:d5:40:ec:e4:53:3a:b7:3f:43:ff:ec:fa:b1:f2:32:
                    d7:29:6b:4c:e6:f4:65:11:69:2a:d5:3a:e7:65:6e:51:
                    1c:3c:28:f2:83:8f:6e:29:e5:45:31:11:ef:fc:17:e6:
                    81:c6:0e:dc:7e:08:01:c4:cd:c6:cd:b5:db:18:39:44:
                    06:4f:ab:db:17:64:39:ad:d3:46:34:75:a7:89:cd:2c:
                    d1:99:c2:30:7d:ef:03:9e:e7:c8:fa:b3:86:ac:8a:0b:
                    07:64:08:03:ea:d1:42:56:5f:e2:dc:98:00:57:e1:de:
                    92:92:83:23:29:3d:7e:22:70:ba:1d:d6:46:54:5d:ec:
                    bb:77:5c:39:9e:9c:c2:61:05:56:8b:0c:00:2e:e0:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:02:4e:3c:e3:e7:13:dd:27:e7:39:c3:1c:fc:55:c5:
        20:ae:23:be:c1:80:e3:a5:41:47:be:9f:96:3e:3c:50:
        f8:e9:22:e5:2c:14:72:8f:b8:3f:1a:45:43:88:c0:e3:
        0d:6f:20:a3:d2:f0:3c:9e:58:93:a0:be:a2:6c:e1:4e:
        9c:ee:3e:63:eb:82:f0:0e:8b:6b:c5:33:f3:a6:56:0f:
        08:e5:f6:d5:2d:62:a5:d6:58:a0:7c:dd:08:5f:48:1c:
        8f:07:4f:1f:5f:7b:f8:37:3a:81:a0:f8:d6:21:9a:0a:
        ab:77:7a:58:25:ca:4a:18:cf:ab:28:55:1d:b3:f5:ce:
        98:65:19:57:10:13:12:4b:73:dc:4b:4f:79:49:62:46:
        a0:dc:d6:15:24:48:8c:63:8e:13:b4:21:1b:8c:5c:a0:
        f7:9c:82:5c:dc:80:1d:e9:22:e5:c3:ba:ce:7b:65:2c:
        a3:d2:03:f4:87:1e:39:56:fc:77:58:0c:5e:c2:d7:d9:
        e2:c3:b3:f4:32:be:86:4c:56:f4:67:a6:b0:c0:7b:ee:
        11:c7:51:4e:c5:6f:88:a9:be:3f:b7:ec:a9:45:a8:44:
        46:9a:28:d4:30:05:c2:19:a1:76:fa:b8:cd:1b:d7:4e:
        ea:eb:56:70:bc:33:54:00:4d:93:6b:a1:b5:8f:17:54
    Fingerprint (SHA-256):
        29:C7:C2:CF:7F:CC:B6:4F:A8:94:50:AD:75:6E:2D:68:4F:E7:45:FD:3E:B2:B0:23:EA:84:C5:C6:B9:22:92:4B
    Fingerprint (SHA1):
        9D:37:0D:31:40:98:66:65:25:AE:FF:AA:B4:53:DE:50:98:4B:A0:35
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6202: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121153 (0x1e67d4c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:12:09 2017
            Not After : Tue May 10 12:12:09 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:10:d2:97:a2:67:fc:2e:83:cd:78:c2:d9:1c:80:e5:
                    6d:f7:e2:59:2b:2b:f6:e5:fe:c6:f9:ab:12:6a:95:7c:
                    33:7b:69:ae:6d:8c:b2:0f:a5:ed:d2:82:29:66:d3:f5:
                    5f:93:d1:69:50:0a:5e:b7:43:d9:70:9f:c5:1e:17:2b:
                    c3:44:e5:b6:46:5e:e2:e8:fa:1c:05:7c:30:40:35:9c:
                    85:ba:ca:e7:d6:91:ee:de:73:fc:be:c4:ef:00:47:fb:
                    59:3e:2a:9f:1f:96:6d:0e:11:99:f9:4e:99:30:36:b9:
                    98:c2:57:e6:f0:a7:a3:3d:63:6f:0d:3f:f1:38:03:5e:
                    29:33:47:bf:dc:1a:11:e2:22:51:b5:8a:4a:78:22:bf:
                    23:f2:df:01:e0:6f:80:d3:11:9e:25:a1:13:be:9c:1c:
                    aa:2b:5d:96:cb:3c:17:4e:88:cb:27:b8:4e:08:6a:32:
                    29:20:31:29:64:a5:2f:d5:e5:d3:3d:cb:08:36:5e:45:
                    04:c6:7a:4b:83:0e:a8:cf:a7:a0:0d:8b:e3:ed:24:9a:
                    e2:1f:b3:83:6e:6d:bb:39:6d:31:4f:3d:df:b5:03:f6:
                    2a:c2:d3:61:cc:ce:68:a6:95:ab:1f:af:a2:4b:31:ba:
                    20:1c:b8:46:b4:51:7b:b0:3e:4e:13:7f:10:30:8e:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:1b:38:00:85:8c:c2:24:45:cf:87:a0:f8:ab:2f:81:
        e9:aa:8e:95:41:da:82:ec:08:9e:e8:a6:d1:26:2b:aa:
        ee:83:0e:92:b1:10:dd:57:9f:7a:00:1e:24:e0:f5:b3:
        4a:2d:ad:d0:96:c5:02:bd:c2:44:68:d6:d2:91:25:40:
        e3:65:9c:43:c7:a9:b9:50:2f:d4:80:fb:be:d0:f1:62:
        d3:c9:90:75:04:04:a7:2e:8c:95:be:f2:0f:82:76:fc:
        57:d4:ac:e3:c9:c1:d6:f2:5e:ae:ad:2c:f7:e0:e6:8e:
        53:c7:14:39:bc:37:ab:ae:fc:9c:7b:05:3a:2c:0f:14:
        a4:c7:03:20:d3:67:f7:42:f8:e3:fb:e5:b4:74:df:93:
        c0:80:c6:81:50:26:3a:7a:a1:2b:91:c6:db:de:e2:68:
        c2:d6:c8:6f:1f:ce:2c:de:55:5b:30:1f:36:2a:eb:41:
        ee:26:60:fe:1c:0d:3c:c4:e9:78:ce:14:3d:4b:30:7c:
        d8:ac:9c:07:2d:6b:dc:18:3f:e8:7b:a8:2d:83:e8:d9:
        73:60:2f:14:e4:1d:75:ca:c4:97:e3:8a:f4:e7:78:c3:
        5e:8a:5d:c2:d8:5b:54:0b:57:49:21:69:da:5a:3f:11:
        25:1f:b6:d2:e4:fa:ef:cb:d3:7e:15:17:df:ba:2e:4a
    Fingerprint (SHA-256):
        BC:F8:CA:00:7D:70:BC:9A:28:8E:E7:E9:93:73:28:BC:96:C4:79:43:20:D2:A2:82:00:3E:3F:38:96:51:77:6B
    Fingerprint (SHA1):
        3A:6B:20:E2:3C:7B:4A:56:9F:65:BE:66:05:EC:5A:48:AE:5E:E5:93
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6203: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121154 (0x1e67d4c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:12:09 2017
            Not After : Tue May 10 12:12:09 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:71:65:39:e9:82:1f:c4:63:23:72:b2:0e:28:95:fb:
                    ae:aa:0c:28:95:90:cd:2f:46:00:e5:51:d9:9b:55:0b:
                    06:95:c0:54:72:f2:87:ff:74:63:f0:83:46:20:ad:2f:
                    d1:d1:c4:04:d0:42:8e:29:89:83:9e:e4:d5:a7:3b:b7:
                    0e:8d:23:bf:62:06:cd:aa:99:22:72:9b:7f:5f:4d:ef:
                    9b:cd:67:13:a6:7f:fe:f1:d2:ee:e0:7f:7a:b8:3c:db:
                    57:b9:2b:6d:06:4d:52:3c:1f:70:1a:4c:27:9e:53:96:
                    03:12:88:b4:21:a9:73:60:ce:8b:7d:62:82:c6:85:0a:
                    db:31:c3:d1:8c:84:c8:2c:d3:92:32:4e:24:c5:ba:59:
                    1f:07:e3:b6:b9:35:37:c9:d5:48:f6:60:89:36:cd:9f:
                    fb:f9:18:c7:51:8e:12:73:75:b2:9f:d9:85:69:7a:29:
                    e9:4c:85:16:85:1e:1f:60:e7:4d:14:a4:13:3b:1a:12:
                    ac:da:9a:97:cf:8b:b5:ac:4c:fe:3b:40:c0:41:a3:05:
                    4e:80:02:a2:0e:bf:70:de:f9:6a:a0:f8:2f:2c:2a:9a:
                    22:c3:fb:d7:d1:40:35:ee:ed:bd:eb:8f:0f:dc:97:4f:
                    78:04:27:ee:03:d7:ea:6b:13:0e:6b:50:ef:6c:6f:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:3d:bc:84:4b:bc:d4:26:4f:b0:54:3e:cd:de:ea:47:
        cd:a1:dd:8d:d6:b3:a9:e2:af:6d:6e:ff:51:46:85:69:
        f6:8f:47:39:58:6a:2e:14:3e:10:d5:0f:84:cb:5f:e0:
        db:59:fc:26:38:db:de:9c:85:a3:71:b8:6e:33:3b:b8:
        4c:2e:77:05:56:5d:87:a9:93:46:1d:40:02:37:bb:2d:
        d9:bb:92:47:7e:db:b3:40:f8:d2:16:31:2f:10:3b:9a:
        34:2c:7f:58:4f:d8:9e:6a:01:d9:b9:c7:db:51:02:8a:
        97:89:b2:45:d2:ac:d8:37:f9:b9:54:83:a9:33:16:14:
        89:81:1d:76:80:30:72:2e:9b:69:26:88:25:55:a6:e9:
        6f:07:fd:ba:62:dc:53:7c:3b:59:03:57:c3:61:0a:67:
        35:84:72:76:8b:65:eb:3c:de:30:79:86:f2:78:b7:d7:
        2b:3b:94:6b:11:08:bb:19:9e:b7:eb:7b:98:ea:21:96:
        d5:40:37:ec:99:e8:ca:62:f9:8d:04:e4:99:12:4c:a5:
        44:65:ba:b2:61:ff:56:3d:3b:31:3b:ab:88:cd:95:83:
        50:7f:4b:87:76:81:35:a6:65:50:ae:20:7d:73:af:b4:
        78:e5:62:fa:89:f5:ce:e8:02:d0:19:12:b1:a4:6e:d2
    Fingerprint (SHA-256):
        A9:DA:35:22:E8:42:D3:CC:58:07:1B:2A:39:72:17:45:4D:C7:A4:E7:E5:86:53:65:27:5D:4E:B6:38:06:6B:68
    Fingerprint (SHA1):
        2E:D1:36:E6:16:25:58:D0:F0:43:E1:F2:8A:61:C6:E1:9B:D1:46:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6204: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6205: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121169 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6206: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6207: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6208: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6209: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121170   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6210: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6211: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6212: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6213: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121171   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6214: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6215: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6216: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6217: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121172   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6218: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6219: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6220: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121169 (0x1e67d4d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:15 2017
            Not After : Tue May 10 12:12:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:f9:6f:9b:af:a8:05:ec:ce:e4:d9:ad:72:56:82:e2:
                    73:d2:9f:37:af:64:91:9a:1d:5e:5b:04:d7:7f:41:09:
                    3b:ff:ed:01:37:6f:b9:a4:fa:fa:f5:80:47:6c:34:f8:
                    f6:05:6a:bd:ca:da:c0:ff:d7:a3:2f:fc:5d:00:83:1e:
                    ae:de:d9:f6:87:f8:86:67:16:7d:09:6a:64:e2:b4:6b:
                    8c:83:ab:26:51:55:0a:22:02:42:b2:30:55:e9:78:a8:
                    c0:f9:7f:fb:ff:e6:55:a1:50:a2:50:b5:ba:45:96:07:
                    d5:8c:8e:be:34:dd:1f:a2:7c:9f:d6:10:f7:b2:ef:4e:
                    a6:a3:8f:1b:b7:0e:82:8e:c7:0e:8c:d7:c9:97:68:09:
                    3b:f0:2a:18:89:93:21:4d:6a:68:06:f4:03:c0:ff:06:
                    2c:13:80:67:e6:ae:d3:6d:8a:a3:b8:c2:b1:97:df:f7:
                    4b:df:03:20:0c:ec:8f:43:87:7e:dd:a5:67:49:0c:12:
                    66:fb:74:79:7b:fa:e4:21:fb:de:ce:85:0f:07:27:75:
                    58:2b:6a:63:6a:d5:3d:06:e1:de:23:e3:61:51:4b:86:
                    1b:2c:4f:8c:8a:92:93:8c:d1:cf:9d:f1:ec:d0:56:ce:
                    0c:3e:55:11:13:53:1d:c6:2c:26:35:0f:7c:01:95:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:46:72:28:6c:2b:35:99:27:3a:cb:cc:52:01:78:5a:
        7c:3e:2e:91:62:34:7c:72:b5:59:8a:bb:a8:ac:90:49:
        3c:c1:b6:00:8d:a5:e7:b5:39:5d:95:c9:96:0a:b9:cc:
        c9:66:d1:01:e4:c0:57:f7:6b:06:0c:73:05:86:8f:a3:
        76:f5:44:c4:65:70:f6:59:b5:6b:55:62:28:43:eb:5c:
        00:9e:96:34:2e:68:81:23:bf:1a:95:c4:3e:30:63:82:
        e3:4d:45:91:4d:dd:fc:3a:21:59:86:83:37:38:27:2a:
        d0:5f:01:bc:15:fc:f7:20:50:a6:eb:00:c8:b7:98:38:
        0b:75:80:f9:02:c8:c5:72:a7:67:c0:f4:94:1b:33:61:
        04:87:f7:5c:6e:b2:f3:a0:bf:1f:a1:a1:fc:eb:0b:5c:
        d0:20:4f:9d:48:db:96:2b:4b:11:8a:56:4b:93:cd:61:
        16:86:58:ce:ee:07:16:7d:1d:34:5c:e4:e3:1a:a3:61:
        2a:e3:6c:2d:69:79:06:a4:7e:49:6c:e2:b0:7d:9a:72:
        38:2f:4d:75:b3:38:1d:8c:55:bc:11:fa:8f:08:68:ee:
        77:4c:1f:7b:35:1c:d9:8e:7f:e8:4a:9e:4d:cf:88:bf:
        e5:05:0e:40:58:a1:00:5a:04:d8:68:90:84:65:f6:12
    Fingerprint (SHA-256):
        01:7F:DB:DA:FF:A0:4E:99:08:62:2B:0A:CE:1E:45:07:B8:17:BF:56:E1:B2:9B:61:02:52:D5:A1:09:0C:E3:11
    Fingerprint (SHA1):
        CF:6C:A9:16:E2:1D:82:47:1D:28:64:B1:98:D4:EB:8E:EE:DF:E8:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6221: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6222: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121170 (0x1e67d4d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:16 2017
            Not After : Tue May 10 12:12:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:f2:bc:ed:b1:be:36:4b:24:b6:66:d1:f3:1f:23:10:
                    74:e3:ef:9a:a0:b0:d5:9f:9c:12:82:ac:d5:a8:33:af:
                    37:33:de:7b:d6:f2:73:71:a4:fb:c8:19:ef:77:4d:ba:
                    7e:7b:fe:63:c3:80:d5:bb:bb:e3:94:5f:88:5a:06:bc:
                    ca:2b:3e:56:ee:f2:6c:fa:e1:16:05:58:f1:9d:16:6f:
                    71:a9:1d:1a:9f:74:48:11:b9:00:f1:f1:88:e7:92:cc:
                    6d:45:fe:25:1e:ee:f5:5a:be:39:de:6d:20:70:03:96:
                    6f:eb:ec:d4:ce:b3:d0:d9:c5:89:71:62:34:71:d6:f8:
                    6c:d1:a2:29:7d:e0:33:54:b2:c6:02:e8:79:9d:6b:98:
                    61:15:8d:1c:48:b8:70:84:2d:e9:59:f1:eb:43:c3:15:
                    dd:3c:b5:e9:32:af:a8:54:31:d0:47:77:75:b9:1b:13:
                    0e:81:e0:9d:06:db:48:92:82:c4:a6:51:d8:26:4d:f1:
                    46:5c:24:3e:de:44:4a:67:4f:2e:29:a9:33:d6:b9:85:
                    ac:d1:df:e1:f7:26:fc:4a:56:a9:71:52:37:fb:6e:49:
                    09:e0:f1:3f:7b:3b:40:31:1e:e7:bd:46:51:1e:0c:0a:
                    c2:35:9d:f6:ba:49:b0:86:8a:c3:da:84:6f:7b:16:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:41:d0:e6:6a:0a:3e:25:18:ea:1c:90:59:05:4d:80:
        cf:6d:83:c3:a7:b0:aa:8a:5e:57:9a:4a:f8:aa:b2:2a:
        b8:13:f0:96:d8:a8:fa:79:e5:d3:df:1c:5c:c6:ad:6f:
        1e:22:47:6a:63:c7:f9:f0:c9:16:38:45:b2:13:4d:20:
        38:13:48:f1:2e:f7:65:11:56:ce:ce:cb:9e:99:35:c6:
        68:98:53:89:cb:9a:73:77:3d:4d:d5:d7:06:e3:a7:fa:
        b0:b6:ae:b5:e6:4f:8d:e3:bd:57:77:75:b6:2d:e0:87:
        48:b8:b7:12:d5:dd:f2:01:27:3d:7a:fa:39:47:a0:72:
        b2:62:a9:37:cc:82:88:a3:b3:4f:65:ea:a2:b6:68:88:
        8b:d5:e5:3d:64:ed:ef:4d:16:26:d7:3f:08:d2:c8:ff:
        86:f9:40:29:ae:a6:90:84:fe:96:da:37:3f:f6:f6:97:
        3f:e2:47:31:d7:3d:55:27:b6:a0:de:64:20:e4:9f:e6:
        53:43:66:d2:f0:72:69:77:1b:e1:06:82:ef:b9:77:38:
        e9:2c:a3:e2:21:8d:f0:a4:3d:f3:0c:7f:c0:64:7b:6b:
        26:85:7f:13:65:8b:41:f8:03:86:59:b3:c8:86:d2:d8:
        be:26:1d:3e:21:62:5e:73:48:7b:01:21:f7:40:0c:44
    Fingerprint (SHA-256):
        C6:AF:08:D1:8A:1F:84:C9:6D:1A:4C:67:E4:83:22:82:47:7D:4D:CD:E3:79:63:C8:7E:35:26:B3:CD:99:1C:27
    Fingerprint (SHA1):
        22:82:CD:63:2B:B7:41:7A:F4:CA:99:D7:FF:06:8C:C1:D4:7D:06:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6223: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6224: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121171 (0x1e67d4d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:17 2017
            Not After : Tue May 10 12:12:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:ee:77:70:ca:05:c9:4d:fe:49:c0:dc:6a:ee:e4:54:
                    80:40:f0:cc:cc:bf:cc:cf:35:81:c0:75:6e:4f:d7:c0:
                    16:75:d6:f1:70:b2:30:75:41:65:19:e6:01:0c:c4:85:
                    b9:91:75:95:f0:af:da:14:aa:bb:00:8c:47:3e:61:34:
                    60:78:29:d7:a0:56:5a:d4:5c:34:a4:8d:2a:99:02:5c:
                    45:70:e4:0e:a9:ec:15:f7:0e:16:50:10:79:04:5b:98:
                    3e:81:64:b8:d3:74:02:08:4e:84:73:84:26:39:a0:6b:
                    13:2e:84:a1:06:93:74:c1:69:0c:0e:72:0e:24:85:52:
                    94:a0:c8:87:ee:97:8a:19:1f:1f:12:c6:21:8b:8e:62:
                    b6:f3:c7:50:6a:bc:44:27:53:01:67:08:46:3e:68:56:
                    b3:18:5f:7f:c2:90:1b:5b:06:4a:e4:08:5c:07:68:29:
                    f2:d6:5b:9d:fd:70:44:87:ce:43:7a:93:d6:3d:9e:8d:
                    71:25:9b:24:52:a3:8d:33:e1:8f:b8:8e:77:2a:19:6e:
                    04:4e:7f:3e:5b:1b:13:5f:41:d7:45:1d:2b:21:8b:dc:
                    6e:a3:a0:69:b8:a3:fd:27:9f:6b:9f:5d:59:f1:3d:39:
                    d5:7f:03:3f:92:92:be:8d:ee:04:c3:09:61:d9:b3:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:fe:8f:af:25:94:4e:6c:8e:9c:bf:ff:ae:13:4c:2a:
        a1:6f:5d:9d:5a:d4:df:9b:96:49:67:c1:75:6e:df:19:
        91:c6:81:0e:99:b0:a5:d6:00:2d:59:85:e5:d4:f7:de:
        e8:9b:bb:47:aa:72:c9:f2:41:ee:2c:92:73:99:15:61:
        6f:09:48:48:48:05:f5:51:c0:54:fd:f7:d8:3d:5d:5f:
        8d:19:d7:c8:e4:65:e9:3d:be:78:27:e4:84:9c:3d:9c:
        e2:0f:81:15:18:e0:2e:f2:1a:69:59:6e:a7:d4:8a:46:
        5a:fc:f0:8b:cf:f7:82:ff:d8:be:27:f3:2f:74:34:ad:
        36:38:79:99:9e:d1:5e:9c:5a:a1:36:28:ee:6f:6f:26:
        43:ed:cf:41:79:36:71:be:a1:da:a9:7e:f8:62:9f:3b:
        68:96:5a:77:d9:d2:4c:a3:0c:36:8c:0c:f4:75:83:3e:
        c7:55:54:11:57:17:c5:15:5d:02:69:70:20:c7:a2:e5:
        ce:bf:2e:13:e4:b5:e0:b1:ad:dc:9f:6c:f7:57:5d:f2:
        22:bc:60:5a:47:10:74:f5:88:3b:b7:9e:89:59:54:1d:
        4f:3e:30:00:f5:bb:89:67:d0:ca:37:3e:f4:38:de:ba:
        92:30:05:0e:67:ee:46:99:a4:5a:01:90:81:4d:8d:5d
    Fingerprint (SHA-256):
        21:3B:B1:CB:BF:38:68:C2:94:96:6A:D7:EF:4D:45:98:D8:8D:1C:32:0D:5D:0A:03:90:51:78:81:63:96:B5:D9
    Fingerprint (SHA1):
        4B:4B:AF:A1:56:ED:C0:0C:E3:4A:75:E3:47:59:D8:26:7C:A4:12:C9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6225: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6226: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6227: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6228: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6229: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121169 (0x1e67d4d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:15 2017
            Not After : Tue May 10 12:12:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:f9:6f:9b:af:a8:05:ec:ce:e4:d9:ad:72:56:82:e2:
                    73:d2:9f:37:af:64:91:9a:1d:5e:5b:04:d7:7f:41:09:
                    3b:ff:ed:01:37:6f:b9:a4:fa:fa:f5:80:47:6c:34:f8:
                    f6:05:6a:bd:ca:da:c0:ff:d7:a3:2f:fc:5d:00:83:1e:
                    ae:de:d9:f6:87:f8:86:67:16:7d:09:6a:64:e2:b4:6b:
                    8c:83:ab:26:51:55:0a:22:02:42:b2:30:55:e9:78:a8:
                    c0:f9:7f:fb:ff:e6:55:a1:50:a2:50:b5:ba:45:96:07:
                    d5:8c:8e:be:34:dd:1f:a2:7c:9f:d6:10:f7:b2:ef:4e:
                    a6:a3:8f:1b:b7:0e:82:8e:c7:0e:8c:d7:c9:97:68:09:
                    3b:f0:2a:18:89:93:21:4d:6a:68:06:f4:03:c0:ff:06:
                    2c:13:80:67:e6:ae:d3:6d:8a:a3:b8:c2:b1:97:df:f7:
                    4b:df:03:20:0c:ec:8f:43:87:7e:dd:a5:67:49:0c:12:
                    66:fb:74:79:7b:fa:e4:21:fb:de:ce:85:0f:07:27:75:
                    58:2b:6a:63:6a:d5:3d:06:e1:de:23:e3:61:51:4b:86:
                    1b:2c:4f:8c:8a:92:93:8c:d1:cf:9d:f1:ec:d0:56:ce:
                    0c:3e:55:11:13:53:1d:c6:2c:26:35:0f:7c:01:95:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:46:72:28:6c:2b:35:99:27:3a:cb:cc:52:01:78:5a:
        7c:3e:2e:91:62:34:7c:72:b5:59:8a:bb:a8:ac:90:49:
        3c:c1:b6:00:8d:a5:e7:b5:39:5d:95:c9:96:0a:b9:cc:
        c9:66:d1:01:e4:c0:57:f7:6b:06:0c:73:05:86:8f:a3:
        76:f5:44:c4:65:70:f6:59:b5:6b:55:62:28:43:eb:5c:
        00:9e:96:34:2e:68:81:23:bf:1a:95:c4:3e:30:63:82:
        e3:4d:45:91:4d:dd:fc:3a:21:59:86:83:37:38:27:2a:
        d0:5f:01:bc:15:fc:f7:20:50:a6:eb:00:c8:b7:98:38:
        0b:75:80:f9:02:c8:c5:72:a7:67:c0:f4:94:1b:33:61:
        04:87:f7:5c:6e:b2:f3:a0:bf:1f:a1:a1:fc:eb:0b:5c:
        d0:20:4f:9d:48:db:96:2b:4b:11:8a:56:4b:93:cd:61:
        16:86:58:ce:ee:07:16:7d:1d:34:5c:e4:e3:1a:a3:61:
        2a:e3:6c:2d:69:79:06:a4:7e:49:6c:e2:b0:7d:9a:72:
        38:2f:4d:75:b3:38:1d:8c:55:bc:11:fa:8f:08:68:ee:
        77:4c:1f:7b:35:1c:d9:8e:7f:e8:4a:9e:4d:cf:88:bf:
        e5:05:0e:40:58:a1:00:5a:04:d8:68:90:84:65:f6:12
    Fingerprint (SHA-256):
        01:7F:DB:DA:FF:A0:4E:99:08:62:2B:0A:CE:1E:45:07:B8:17:BF:56:E1:B2:9B:61:02:52:D5:A1:09:0C:E3:11
    Fingerprint (SHA1):
        CF:6C:A9:16:E2:1D:82:47:1D:28:64:B1:98:D4:EB:8E:EE:DF:E8:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6230: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6231: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121170 (0x1e67d4d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:16 2017
            Not After : Tue May 10 12:12:16 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:f2:bc:ed:b1:be:36:4b:24:b6:66:d1:f3:1f:23:10:
                    74:e3:ef:9a:a0:b0:d5:9f:9c:12:82:ac:d5:a8:33:af:
                    37:33:de:7b:d6:f2:73:71:a4:fb:c8:19:ef:77:4d:ba:
                    7e:7b:fe:63:c3:80:d5:bb:bb:e3:94:5f:88:5a:06:bc:
                    ca:2b:3e:56:ee:f2:6c:fa:e1:16:05:58:f1:9d:16:6f:
                    71:a9:1d:1a:9f:74:48:11:b9:00:f1:f1:88:e7:92:cc:
                    6d:45:fe:25:1e:ee:f5:5a:be:39:de:6d:20:70:03:96:
                    6f:eb:ec:d4:ce:b3:d0:d9:c5:89:71:62:34:71:d6:f8:
                    6c:d1:a2:29:7d:e0:33:54:b2:c6:02:e8:79:9d:6b:98:
                    61:15:8d:1c:48:b8:70:84:2d:e9:59:f1:eb:43:c3:15:
                    dd:3c:b5:e9:32:af:a8:54:31:d0:47:77:75:b9:1b:13:
                    0e:81:e0:9d:06:db:48:92:82:c4:a6:51:d8:26:4d:f1:
                    46:5c:24:3e:de:44:4a:67:4f:2e:29:a9:33:d6:b9:85:
                    ac:d1:df:e1:f7:26:fc:4a:56:a9:71:52:37:fb:6e:49:
                    09:e0:f1:3f:7b:3b:40:31:1e:e7:bd:46:51:1e:0c:0a:
                    c2:35:9d:f6:ba:49:b0:86:8a:c3:da:84:6f:7b:16:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:41:d0:e6:6a:0a:3e:25:18:ea:1c:90:59:05:4d:80:
        cf:6d:83:c3:a7:b0:aa:8a:5e:57:9a:4a:f8:aa:b2:2a:
        b8:13:f0:96:d8:a8:fa:79:e5:d3:df:1c:5c:c6:ad:6f:
        1e:22:47:6a:63:c7:f9:f0:c9:16:38:45:b2:13:4d:20:
        38:13:48:f1:2e:f7:65:11:56:ce:ce:cb:9e:99:35:c6:
        68:98:53:89:cb:9a:73:77:3d:4d:d5:d7:06:e3:a7:fa:
        b0:b6:ae:b5:e6:4f:8d:e3:bd:57:77:75:b6:2d:e0:87:
        48:b8:b7:12:d5:dd:f2:01:27:3d:7a:fa:39:47:a0:72:
        b2:62:a9:37:cc:82:88:a3:b3:4f:65:ea:a2:b6:68:88:
        8b:d5:e5:3d:64:ed:ef:4d:16:26:d7:3f:08:d2:c8:ff:
        86:f9:40:29:ae:a6:90:84:fe:96:da:37:3f:f6:f6:97:
        3f:e2:47:31:d7:3d:55:27:b6:a0:de:64:20:e4:9f:e6:
        53:43:66:d2:f0:72:69:77:1b:e1:06:82:ef:b9:77:38:
        e9:2c:a3:e2:21:8d:f0:a4:3d:f3:0c:7f:c0:64:7b:6b:
        26:85:7f:13:65:8b:41:f8:03:86:59:b3:c8:86:d2:d8:
        be:26:1d:3e:21:62:5e:73:48:7b:01:21:f7:40:0c:44
    Fingerprint (SHA-256):
        C6:AF:08:D1:8A:1F:84:C9:6D:1A:4C:67:E4:83:22:82:47:7D:4D:CD:E3:79:63:C8:7E:35:26:B3:CD:99:1C:27
    Fingerprint (SHA1):
        22:82:CD:63:2B:B7:41:7A:F4:CA:99:D7:FF:06:8C:C1:D4:7D:06:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6232: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6233: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121171 (0x1e67d4d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:17 2017
            Not After : Tue May 10 12:12:17 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:ee:77:70:ca:05:c9:4d:fe:49:c0:dc:6a:ee:e4:54:
                    80:40:f0:cc:cc:bf:cc:cf:35:81:c0:75:6e:4f:d7:c0:
                    16:75:d6:f1:70:b2:30:75:41:65:19:e6:01:0c:c4:85:
                    b9:91:75:95:f0:af:da:14:aa:bb:00:8c:47:3e:61:34:
                    60:78:29:d7:a0:56:5a:d4:5c:34:a4:8d:2a:99:02:5c:
                    45:70:e4:0e:a9:ec:15:f7:0e:16:50:10:79:04:5b:98:
                    3e:81:64:b8:d3:74:02:08:4e:84:73:84:26:39:a0:6b:
                    13:2e:84:a1:06:93:74:c1:69:0c:0e:72:0e:24:85:52:
                    94:a0:c8:87:ee:97:8a:19:1f:1f:12:c6:21:8b:8e:62:
                    b6:f3:c7:50:6a:bc:44:27:53:01:67:08:46:3e:68:56:
                    b3:18:5f:7f:c2:90:1b:5b:06:4a:e4:08:5c:07:68:29:
                    f2:d6:5b:9d:fd:70:44:87:ce:43:7a:93:d6:3d:9e:8d:
                    71:25:9b:24:52:a3:8d:33:e1:8f:b8:8e:77:2a:19:6e:
                    04:4e:7f:3e:5b:1b:13:5f:41:d7:45:1d:2b:21:8b:dc:
                    6e:a3:a0:69:b8:a3:fd:27:9f:6b:9f:5d:59:f1:3d:39:
                    d5:7f:03:3f:92:92:be:8d:ee:04:c3:09:61:d9:b3:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:fe:8f:af:25:94:4e:6c:8e:9c:bf:ff:ae:13:4c:2a:
        a1:6f:5d:9d:5a:d4:df:9b:96:49:67:c1:75:6e:df:19:
        91:c6:81:0e:99:b0:a5:d6:00:2d:59:85:e5:d4:f7:de:
        e8:9b:bb:47:aa:72:c9:f2:41:ee:2c:92:73:99:15:61:
        6f:09:48:48:48:05:f5:51:c0:54:fd:f7:d8:3d:5d:5f:
        8d:19:d7:c8:e4:65:e9:3d:be:78:27:e4:84:9c:3d:9c:
        e2:0f:81:15:18:e0:2e:f2:1a:69:59:6e:a7:d4:8a:46:
        5a:fc:f0:8b:cf:f7:82:ff:d8:be:27:f3:2f:74:34:ad:
        36:38:79:99:9e:d1:5e:9c:5a:a1:36:28:ee:6f:6f:26:
        43:ed:cf:41:79:36:71:be:a1:da:a9:7e:f8:62:9f:3b:
        68:96:5a:77:d9:d2:4c:a3:0c:36:8c:0c:f4:75:83:3e:
        c7:55:54:11:57:17:c5:15:5d:02:69:70:20:c7:a2:e5:
        ce:bf:2e:13:e4:b5:e0:b1:ad:dc:9f:6c:f7:57:5d:f2:
        22:bc:60:5a:47:10:74:f5:88:3b:b7:9e:89:59:54:1d:
        4f:3e:30:00:f5:bb:89:67:d0:ca:37:3e:f4:38:de:ba:
        92:30:05:0e:67:ee:46:99:a4:5a:01:90:81:4d:8d:5d
    Fingerprint (SHA-256):
        21:3B:B1:CB:BF:38:68:C2:94:96:6A:D7:EF:4D:45:98:D8:8D:1C:32:0D:5D:0A:03:90:51:78:81:63:96:B5:D9
    Fingerprint (SHA1):
        4B:4B:AF:A1:56:ED:C0:0C:E3:4A:75:E3:47:59:D8:26:7C:A4:12:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6234: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6235: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6236: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121173 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6237: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6238: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6239: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6240: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121174   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6241: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6242: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6243: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6244: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121175   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6245: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6246: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6247: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6248: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121176   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6249: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6250: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6251: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6252: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121177   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6253: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6254: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6255: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121173 (0x1e67d4d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:19 2017
            Not After : Tue May 10 12:12:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c8:40:4a:81:92:50:3d:42:b2:9f:28:98:96:03:78:
                    9a:74:e8:37:09:30:e5:d3:72:bd:c7:ef:9b:7a:e7:9b:
                    13:18:4b:ef:8a:6c:c7:d2:a1:4b:d4:0c:74:6d:9a:f8:
                    f5:5d:0f:98:1f:16:b2:75:7f:34:aa:ac:88:3f:7c:d4:
                    f5:97:c4:5f:8a:9e:ed:81:cb:d0:02:b8:06:be:39:54:
                    ec:d6:94:76:0c:ea:85:dd:b9:27:29:de:cc:9c:2e:4a:
                    57:e6:25:68:31:c0:16:66:e0:1a:e0:e3:4a:32:ea:ad:
                    04:fa:fc:0b:d1:aa:1d:12:e6:85:1d:1b:d4:e9:9d:b6:
                    ba:01:22:8b:65:25:4b:b9:fe:6f:54:19:0c:f7:05:79:
                    f6:36:72:4f:88:cd:2b:9b:af:87:5c:28:4f:d8:69:e6:
                    71:5b:d5:04:85:a9:fe:88:17:cf:7f:fb:eb:57:9e:48:
                    d0:c9:b6:e6:69:8b:a3:51:50:ba:c4:50:e2:fd:bf:f9:
                    40:f5:1c:f3:1c:1a:73:83:13:36:ed:b5:57:b1:95:c7:
                    a6:ff:81:a2:a0:2d:9d:ea:aa:9d:ec:91:12:8e:32:80:
                    16:bf:0a:87:5a:98:a8:b6:fb:b0:fd:61:29:8d:5d:48:
                    88:f5:94:09:72:e8:83:18:b9:35:f1:5c:68:d4:57:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:df:b3:03:ce:50:1b:a9:bc:12:17:da:4c:ad:87:f5:
        55:0f:e8:f2:da:00:1b:3a:70:59:06:dc:6a:83:5c:32:
        e6:33:fb:0c:d7:a1:78:4a:31:52:73:ac:94:20:e2:03:
        1d:db:4a:a4:ba:45:f4:a5:19:11:3e:1e:c0:c8:82:58:
        5f:46:9c:af:c9:14:9a:93:b7:03:8e:a3:20:47:3a:cf:
        5a:63:c1:19:63:82:19:8f:e3:80:f6:6f:ea:65:fb:e8:
        88:af:88:5a:6b:d6:45:90:8d:04:81:c0:b2:f9:3c:4b:
        ee:a5:71:79:1e:c2:ca:01:1a:ee:fe:ae:b4:89:ff:db:
        00:4e:f3:8a:7a:3a:f9:64:44:7c:08:d2:f7:48:1c:44:
        07:2c:97:ea:d5:8a:06:fd:69:55:a8:70:8e:f6:ed:4a:
        af:90:a3:9c:f4:0b:f0:93:de:99:e3:27:e2:5b:d9:36:
        2d:48:86:e6:c8:1a:e1:9d:26:1d:1d:fd:b6:ce:f7:26:
        9e:27:fe:b7:f6:7f:bf:67:da:ba:05:a1:e6:e9:b7:f9:
        53:bc:73:ca:2e:06:65:61:3a:4c:5b:5d:75:6e:8f:b3:
        ed:ab:7d:db:87:c6:07:28:e4:7c:b9:90:a8:c6:44:d0:
        38:e9:b6:8a:48:df:44:22:22:0c:70:e9:6f:ca:b4:ce
    Fingerprint (SHA-256):
        EA:8B:A1:8A:58:87:70:45:D5:80:36:B5:1A:DD:BF:AD:F7:40:4E:FA:DF:AF:06:67:3C:AB:D2:5A:06:38:13:33
    Fingerprint (SHA1):
        A4:EC:37:9C:9B:39:89:F1:5E:C2:78:6D:BE:83:6E:B8:CB:6C:38:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6256: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6257: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121174 (0x1e67d4d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:20 2017
            Not After : Tue May 10 12:12:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:c6:80:96:54:9f:62:9c:71:ee:44:57:63:3f:39:f3:
                    eb:e6:68:a3:ec:4e:07:e6:5e:af:78:cc:69:b3:a4:d1:
                    6b:7a:1f:b1:36:67:2a:a0:4d:15:d4:23:ff:bf:5f:eb:
                    92:e6:80:18:ac:60:7a:67:06:33:06:15:ae:e5:96:fe:
                    2b:5d:af:d7:7f:e9:f3:c7:ea:7d:ca:cf:bd:57:84:d7:
                    b8:96:7a:a9:30:ab:31:96:7a:47:5f:98:9d:24:ee:1a:
                    89:dd:0a:06:28:f4:70:26:dd:7c:2b:e9:c7:9b:8a:91:
                    34:37:19:76:ce:e5:ce:31:a3:f1:5f:af:8d:1d:78:23:
                    96:ca:e3:7d:20:fb:35:c6:82:eb:95:9d:a9:61:25:20:
                    37:42:9a:56:b0:8c:59:b5:ce:50:0d:9f:d2:11:ad:96:
                    72:f4:d5:11:dd:aa:3e:d7:0a:14:d0:51:48:7f:4a:f0:
                    6d:fb:71:9f:f3:75:67:73:1e:1b:5f:48:a7:7b:05:c2:
                    19:a6:e2:02:bd:c3:d8:94:0b:8c:80:5a:32:72:f7:7c:
                    88:f6:6c:9b:7f:4f:2e:e1:b3:ec:65:a1:d2:49:1f:69:
                    bd:1d:52:cd:53:47:e3:7b:7b:5e:84:ce:cf:bb:1b:86:
                    99:bd:e5:96:09:ed:bb:45:24:e8:84:30:8a:50:cd:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:45:8a:07:64:7e:4e:da:87:5e:48:5e:00:6e:ec:fc:
        ba:27:3a:b4:84:ad:bc:e1:be:b6:0c:cc:07:e8:9c:b7:
        af:ca:e1:db:d0:bc:35:ef:38:c9:a5:50:bb:c5:14:86:
        e9:45:9f:fb:08:1b:6a:4e:88:88:c7:16:cc:21:bd:69:
        9d:3c:8e:55:2f:67:3e:75:d6:15:93:01:38:03:e4:b8:
        7d:61:f9:6b:a8:6d:4c:b6:2c:5d:b3:e8:8c:29:f2:bc:
        96:7d:bf:cf:5e:9f:50:0d:e5:21:b4:bd:e8:1d:5f:de:
        1b:33:8e:87:98:6b:af:85:d5:23:45:78:f4:cb:f5:3f:
        b8:db:50:a0:44:b8:97:76:78:76:68:05:f2:ff:54:34:
        81:c2:fc:18:b5:a2:6c:06:a0:57:52:67:e4:f2:17:17:
        61:d9:20:c1:cb:21:3c:26:1c:10:32:8d:d2:8a:d9:49:
        ca:9f:7e:c2:14:83:47:4d:7a:b3:ac:4c:62:2f:92:73:
        d4:7f:73:ed:93:a7:8a:54:cf:5f:5b:b0:60:4f:c8:a0:
        2a:61:38:9c:ac:63:10:ab:af:34:bc:70:f5:9a:4d:ec:
        59:fd:34:39:d1:b0:7d:c2:50:11:d4:13:b5:75:26:6d:
        2c:43:5f:a1:73:c4:61:4b:54:b0:71:d7:ae:d7:4f:fe
    Fingerprint (SHA-256):
        97:23:E4:13:E0:3C:9A:46:45:79:F5:AD:30:45:24:6E:56:CB:AB:C7:A2:F2:46:2E:A7:1B:F9:34:1D:1B:3E:A0
    Fingerprint (SHA1):
        9F:6D:18:85:B2:9A:A8:FE:5F:24:65:FF:47:1B:C9:AC:B6:29:05:B2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6258: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6259: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121175 (0x1e67d4d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:21 2017
            Not After : Tue May 10 12:12:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:2f:93:63:f0:a0:cb:64:0a:74:9b:03:44:ac:25:c4:
                    b0:12:66:ac:36:c3:18:0d:1d:de:3a:76:81:4f:bd:e9:
                    a1:43:42:e9:a9:41:23:47:81:f0:b8:e4:7d:a2:06:32:
                    29:7a:f2:e4:e8:ef:f0:f4:ce:d5:29:63:73:be:f9:bd:
                    68:31:8c:20:22:b9:e9:8d:5d:c1:47:07:bd:43:be:87:
                    39:02:6d:7a:03:4f:b0:df:aa:33:97:c2:2b:06:a3:95:
                    2c:19:d6:06:61:a1:c3:5b:2d:cd:3e:3c:68:c6:14:99:
                    a8:54:81:a2:89:14:34:5d:f4:35:37:c2:63:19:09:03:
                    43:f6:73:f1:d5:63:2b:39:8d:a2:f7:ef:59:5b:f9:c4:
                    50:9e:3a:f1:d3:67:35:dd:8c:dc:44:5e:6c:9c:1f:fc:
                    ae:8d:a2:7a:a6:c8:8b:6a:b0:d2:9b:57:f4:c8:26:c6:
                    ab:c9:d9:c3:57:5f:5c:ae:ec:04:cf:db:ae:55:98:c0:
                    31:a2:23:a6:06:bf:05:66:61:df:f2:18:31:45:39:7a:
                    e7:d1:7b:2b:73:3b:56:04:ca:a9:98:75:15:94:67:73:
                    f6:fd:ff:4a:a8:45:57:4c:e6:84:57:22:bf:f9:c3:04:
                    a9:91:fe:0e:38:a6:d0:80:9e:eb:ef:f8:d1:ef:fb:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:29:47:40:2c:20:a1:6d:73:48:9d:45:0e:ed:07:ff:
        c6:ac:eb:1f:07:31:e1:07:d7:4f:d1:ec:23:c3:08:71:
        67:5d:56:63:bf:76:a7:62:79:8c:88:14:e0:22:c4:04:
        37:8f:c5:bd:9c:83:24:bd:0b:e9:47:05:ba:76:fe:5d:
        6b:0b:e7:37:89:5a:b4:eb:65:df:ba:78:ee:d9:3a:5e:
        c5:63:f9:9a:12:ef:c6:63:5c:ac:60:08:2a:24:0d:a4:
        ce:72:9e:85:80:1a:55:4b:22:3b:c1:37:50:78:13:7d:
        39:85:d8:af:1c:32:cb:8a:da:2a:92:17:ad:a8:90:39:
        16:6e:8e:08:52:c7:5a:96:3b:96:00:33:d3:e5:55:ce:
        c1:0a:56:3f:a2:fd:c0:65:f0:eb:c7:26:cd:14:7a:09:
        f2:c4:f8:93:c8:8a:65:4a:6f:51:ec:36:3a:58:4f:e2:
        51:4e:d1:bf:61:45:4d:4d:c4:97:ab:1b:fa:ec:4c:ea:
        83:57:f0:f6:d6:19:d7:ad:a9:e9:7d:51:f4:10:ac:6a:
        e1:74:de:ac:cc:83:0a:50:f3:76:69:ba:4d:95:cb:e8:
        f0:aa:6a:14:2c:24:36:7d:f6:3f:be:0e:88:74:ea:9b:
        76:41:57:c0:91:91:bd:ca:86:58:d0:1e:e1:2c:ac:46
    Fingerprint (SHA-256):
        2E:C7:DF:9B:5E:03:72:2E:BB:E5:A8:14:19:E4:F4:7E:B7:BC:ED:C6:A8:23:8C:D9:E4:8B:22:26:B1:C8:B4:C5
    Fingerprint (SHA1):
        9D:2C:FF:85:55:E9:59:14:17:0B:FC:4E:1E:B4:05:7F:1D:34:AF:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6260: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6261: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6262: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6263: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6264: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121173 (0x1e67d4d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:19 2017
            Not After : Tue May 10 12:12:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c8:40:4a:81:92:50:3d:42:b2:9f:28:98:96:03:78:
                    9a:74:e8:37:09:30:e5:d3:72:bd:c7:ef:9b:7a:e7:9b:
                    13:18:4b:ef:8a:6c:c7:d2:a1:4b:d4:0c:74:6d:9a:f8:
                    f5:5d:0f:98:1f:16:b2:75:7f:34:aa:ac:88:3f:7c:d4:
                    f5:97:c4:5f:8a:9e:ed:81:cb:d0:02:b8:06:be:39:54:
                    ec:d6:94:76:0c:ea:85:dd:b9:27:29:de:cc:9c:2e:4a:
                    57:e6:25:68:31:c0:16:66:e0:1a:e0:e3:4a:32:ea:ad:
                    04:fa:fc:0b:d1:aa:1d:12:e6:85:1d:1b:d4:e9:9d:b6:
                    ba:01:22:8b:65:25:4b:b9:fe:6f:54:19:0c:f7:05:79:
                    f6:36:72:4f:88:cd:2b:9b:af:87:5c:28:4f:d8:69:e6:
                    71:5b:d5:04:85:a9:fe:88:17:cf:7f:fb:eb:57:9e:48:
                    d0:c9:b6:e6:69:8b:a3:51:50:ba:c4:50:e2:fd:bf:f9:
                    40:f5:1c:f3:1c:1a:73:83:13:36:ed:b5:57:b1:95:c7:
                    a6:ff:81:a2:a0:2d:9d:ea:aa:9d:ec:91:12:8e:32:80:
                    16:bf:0a:87:5a:98:a8:b6:fb:b0:fd:61:29:8d:5d:48:
                    88:f5:94:09:72:e8:83:18:b9:35:f1:5c:68:d4:57:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:df:b3:03:ce:50:1b:a9:bc:12:17:da:4c:ad:87:f5:
        55:0f:e8:f2:da:00:1b:3a:70:59:06:dc:6a:83:5c:32:
        e6:33:fb:0c:d7:a1:78:4a:31:52:73:ac:94:20:e2:03:
        1d:db:4a:a4:ba:45:f4:a5:19:11:3e:1e:c0:c8:82:58:
        5f:46:9c:af:c9:14:9a:93:b7:03:8e:a3:20:47:3a:cf:
        5a:63:c1:19:63:82:19:8f:e3:80:f6:6f:ea:65:fb:e8:
        88:af:88:5a:6b:d6:45:90:8d:04:81:c0:b2:f9:3c:4b:
        ee:a5:71:79:1e:c2:ca:01:1a:ee:fe:ae:b4:89:ff:db:
        00:4e:f3:8a:7a:3a:f9:64:44:7c:08:d2:f7:48:1c:44:
        07:2c:97:ea:d5:8a:06:fd:69:55:a8:70:8e:f6:ed:4a:
        af:90:a3:9c:f4:0b:f0:93:de:99:e3:27:e2:5b:d9:36:
        2d:48:86:e6:c8:1a:e1:9d:26:1d:1d:fd:b6:ce:f7:26:
        9e:27:fe:b7:f6:7f:bf:67:da:ba:05:a1:e6:e9:b7:f9:
        53:bc:73:ca:2e:06:65:61:3a:4c:5b:5d:75:6e:8f:b3:
        ed:ab:7d:db:87:c6:07:28:e4:7c:b9:90:a8:c6:44:d0:
        38:e9:b6:8a:48:df:44:22:22:0c:70:e9:6f:ca:b4:ce
    Fingerprint (SHA-256):
        EA:8B:A1:8A:58:87:70:45:D5:80:36:B5:1A:DD:BF:AD:F7:40:4E:FA:DF:AF:06:67:3C:AB:D2:5A:06:38:13:33
    Fingerprint (SHA1):
        A4:EC:37:9C:9B:39:89:F1:5E:C2:78:6D:BE:83:6E:B8:CB:6C:38:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6265: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6266: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121174 (0x1e67d4d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:20 2017
            Not After : Tue May 10 12:12:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:c6:80:96:54:9f:62:9c:71:ee:44:57:63:3f:39:f3:
                    eb:e6:68:a3:ec:4e:07:e6:5e:af:78:cc:69:b3:a4:d1:
                    6b:7a:1f:b1:36:67:2a:a0:4d:15:d4:23:ff:bf:5f:eb:
                    92:e6:80:18:ac:60:7a:67:06:33:06:15:ae:e5:96:fe:
                    2b:5d:af:d7:7f:e9:f3:c7:ea:7d:ca:cf:bd:57:84:d7:
                    b8:96:7a:a9:30:ab:31:96:7a:47:5f:98:9d:24:ee:1a:
                    89:dd:0a:06:28:f4:70:26:dd:7c:2b:e9:c7:9b:8a:91:
                    34:37:19:76:ce:e5:ce:31:a3:f1:5f:af:8d:1d:78:23:
                    96:ca:e3:7d:20:fb:35:c6:82:eb:95:9d:a9:61:25:20:
                    37:42:9a:56:b0:8c:59:b5:ce:50:0d:9f:d2:11:ad:96:
                    72:f4:d5:11:dd:aa:3e:d7:0a:14:d0:51:48:7f:4a:f0:
                    6d:fb:71:9f:f3:75:67:73:1e:1b:5f:48:a7:7b:05:c2:
                    19:a6:e2:02:bd:c3:d8:94:0b:8c:80:5a:32:72:f7:7c:
                    88:f6:6c:9b:7f:4f:2e:e1:b3:ec:65:a1:d2:49:1f:69:
                    bd:1d:52:cd:53:47:e3:7b:7b:5e:84:ce:cf:bb:1b:86:
                    99:bd:e5:96:09:ed:bb:45:24:e8:84:30:8a:50:cd:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:45:8a:07:64:7e:4e:da:87:5e:48:5e:00:6e:ec:fc:
        ba:27:3a:b4:84:ad:bc:e1:be:b6:0c:cc:07:e8:9c:b7:
        af:ca:e1:db:d0:bc:35:ef:38:c9:a5:50:bb:c5:14:86:
        e9:45:9f:fb:08:1b:6a:4e:88:88:c7:16:cc:21:bd:69:
        9d:3c:8e:55:2f:67:3e:75:d6:15:93:01:38:03:e4:b8:
        7d:61:f9:6b:a8:6d:4c:b6:2c:5d:b3:e8:8c:29:f2:bc:
        96:7d:bf:cf:5e:9f:50:0d:e5:21:b4:bd:e8:1d:5f:de:
        1b:33:8e:87:98:6b:af:85:d5:23:45:78:f4:cb:f5:3f:
        b8:db:50:a0:44:b8:97:76:78:76:68:05:f2:ff:54:34:
        81:c2:fc:18:b5:a2:6c:06:a0:57:52:67:e4:f2:17:17:
        61:d9:20:c1:cb:21:3c:26:1c:10:32:8d:d2:8a:d9:49:
        ca:9f:7e:c2:14:83:47:4d:7a:b3:ac:4c:62:2f:92:73:
        d4:7f:73:ed:93:a7:8a:54:cf:5f:5b:b0:60:4f:c8:a0:
        2a:61:38:9c:ac:63:10:ab:af:34:bc:70:f5:9a:4d:ec:
        59:fd:34:39:d1:b0:7d:c2:50:11:d4:13:b5:75:26:6d:
        2c:43:5f:a1:73:c4:61:4b:54:b0:71:d7:ae:d7:4f:fe
    Fingerprint (SHA-256):
        97:23:E4:13:E0:3C:9A:46:45:79:F5:AD:30:45:24:6E:56:CB:AB:C7:A2:F2:46:2E:A7:1B:F9:34:1D:1B:3E:A0
    Fingerprint (SHA1):
        9F:6D:18:85:B2:9A:A8:FE:5F:24:65:FF:47:1B:C9:AC:B6:29:05:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6267: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6268: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121175 (0x1e67d4d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:21 2017
            Not After : Tue May 10 12:12:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:2f:93:63:f0:a0:cb:64:0a:74:9b:03:44:ac:25:c4:
                    b0:12:66:ac:36:c3:18:0d:1d:de:3a:76:81:4f:bd:e9:
                    a1:43:42:e9:a9:41:23:47:81:f0:b8:e4:7d:a2:06:32:
                    29:7a:f2:e4:e8:ef:f0:f4:ce:d5:29:63:73:be:f9:bd:
                    68:31:8c:20:22:b9:e9:8d:5d:c1:47:07:bd:43:be:87:
                    39:02:6d:7a:03:4f:b0:df:aa:33:97:c2:2b:06:a3:95:
                    2c:19:d6:06:61:a1:c3:5b:2d:cd:3e:3c:68:c6:14:99:
                    a8:54:81:a2:89:14:34:5d:f4:35:37:c2:63:19:09:03:
                    43:f6:73:f1:d5:63:2b:39:8d:a2:f7:ef:59:5b:f9:c4:
                    50:9e:3a:f1:d3:67:35:dd:8c:dc:44:5e:6c:9c:1f:fc:
                    ae:8d:a2:7a:a6:c8:8b:6a:b0:d2:9b:57:f4:c8:26:c6:
                    ab:c9:d9:c3:57:5f:5c:ae:ec:04:cf:db:ae:55:98:c0:
                    31:a2:23:a6:06:bf:05:66:61:df:f2:18:31:45:39:7a:
                    e7:d1:7b:2b:73:3b:56:04:ca:a9:98:75:15:94:67:73:
                    f6:fd:ff:4a:a8:45:57:4c:e6:84:57:22:bf:f9:c3:04:
                    a9:91:fe:0e:38:a6:d0:80:9e:eb:ef:f8:d1:ef:fb:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:29:47:40:2c:20:a1:6d:73:48:9d:45:0e:ed:07:ff:
        c6:ac:eb:1f:07:31:e1:07:d7:4f:d1:ec:23:c3:08:71:
        67:5d:56:63:bf:76:a7:62:79:8c:88:14:e0:22:c4:04:
        37:8f:c5:bd:9c:83:24:bd:0b:e9:47:05:ba:76:fe:5d:
        6b:0b:e7:37:89:5a:b4:eb:65:df:ba:78:ee:d9:3a:5e:
        c5:63:f9:9a:12:ef:c6:63:5c:ac:60:08:2a:24:0d:a4:
        ce:72:9e:85:80:1a:55:4b:22:3b:c1:37:50:78:13:7d:
        39:85:d8:af:1c:32:cb:8a:da:2a:92:17:ad:a8:90:39:
        16:6e:8e:08:52:c7:5a:96:3b:96:00:33:d3:e5:55:ce:
        c1:0a:56:3f:a2:fd:c0:65:f0:eb:c7:26:cd:14:7a:09:
        f2:c4:f8:93:c8:8a:65:4a:6f:51:ec:36:3a:58:4f:e2:
        51:4e:d1:bf:61:45:4d:4d:c4:97:ab:1b:fa:ec:4c:ea:
        83:57:f0:f6:d6:19:d7:ad:a9:e9:7d:51:f4:10:ac:6a:
        e1:74:de:ac:cc:83:0a:50:f3:76:69:ba:4d:95:cb:e8:
        f0:aa:6a:14:2c:24:36:7d:f6:3f:be:0e:88:74:ea:9b:
        76:41:57:c0:91:91:bd:ca:86:58:d0:1e:e1:2c:ac:46
    Fingerprint (SHA-256):
        2E:C7:DF:9B:5E:03:72:2E:BB:E5:A8:14:19:E4:F4:7E:B7:BC:ED:C6:A8:23:8C:D9:E4:8B:22:26:B1:C8:B4:C5
    Fingerprint (SHA1):
        9D:2C:FF:85:55:E9:59:14:17:0B:FC:4E:1E:B4:05:7F:1D:34:AF:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6269: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6270: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121173 (0x1e67d4d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:19 2017
            Not After : Tue May 10 12:12:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c8:40:4a:81:92:50:3d:42:b2:9f:28:98:96:03:78:
                    9a:74:e8:37:09:30:e5:d3:72:bd:c7:ef:9b:7a:e7:9b:
                    13:18:4b:ef:8a:6c:c7:d2:a1:4b:d4:0c:74:6d:9a:f8:
                    f5:5d:0f:98:1f:16:b2:75:7f:34:aa:ac:88:3f:7c:d4:
                    f5:97:c4:5f:8a:9e:ed:81:cb:d0:02:b8:06:be:39:54:
                    ec:d6:94:76:0c:ea:85:dd:b9:27:29:de:cc:9c:2e:4a:
                    57:e6:25:68:31:c0:16:66:e0:1a:e0:e3:4a:32:ea:ad:
                    04:fa:fc:0b:d1:aa:1d:12:e6:85:1d:1b:d4:e9:9d:b6:
                    ba:01:22:8b:65:25:4b:b9:fe:6f:54:19:0c:f7:05:79:
                    f6:36:72:4f:88:cd:2b:9b:af:87:5c:28:4f:d8:69:e6:
                    71:5b:d5:04:85:a9:fe:88:17:cf:7f:fb:eb:57:9e:48:
                    d0:c9:b6:e6:69:8b:a3:51:50:ba:c4:50:e2:fd:bf:f9:
                    40:f5:1c:f3:1c:1a:73:83:13:36:ed:b5:57:b1:95:c7:
                    a6:ff:81:a2:a0:2d:9d:ea:aa:9d:ec:91:12:8e:32:80:
                    16:bf:0a:87:5a:98:a8:b6:fb:b0:fd:61:29:8d:5d:48:
                    88:f5:94:09:72:e8:83:18:b9:35:f1:5c:68:d4:57:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:df:b3:03:ce:50:1b:a9:bc:12:17:da:4c:ad:87:f5:
        55:0f:e8:f2:da:00:1b:3a:70:59:06:dc:6a:83:5c:32:
        e6:33:fb:0c:d7:a1:78:4a:31:52:73:ac:94:20:e2:03:
        1d:db:4a:a4:ba:45:f4:a5:19:11:3e:1e:c0:c8:82:58:
        5f:46:9c:af:c9:14:9a:93:b7:03:8e:a3:20:47:3a:cf:
        5a:63:c1:19:63:82:19:8f:e3:80:f6:6f:ea:65:fb:e8:
        88:af:88:5a:6b:d6:45:90:8d:04:81:c0:b2:f9:3c:4b:
        ee:a5:71:79:1e:c2:ca:01:1a:ee:fe:ae:b4:89:ff:db:
        00:4e:f3:8a:7a:3a:f9:64:44:7c:08:d2:f7:48:1c:44:
        07:2c:97:ea:d5:8a:06:fd:69:55:a8:70:8e:f6:ed:4a:
        af:90:a3:9c:f4:0b:f0:93:de:99:e3:27:e2:5b:d9:36:
        2d:48:86:e6:c8:1a:e1:9d:26:1d:1d:fd:b6:ce:f7:26:
        9e:27:fe:b7:f6:7f:bf:67:da:ba:05:a1:e6:e9:b7:f9:
        53:bc:73:ca:2e:06:65:61:3a:4c:5b:5d:75:6e:8f:b3:
        ed:ab:7d:db:87:c6:07:28:e4:7c:b9:90:a8:c6:44:d0:
        38:e9:b6:8a:48:df:44:22:22:0c:70:e9:6f:ca:b4:ce
    Fingerprint (SHA-256):
        EA:8B:A1:8A:58:87:70:45:D5:80:36:B5:1A:DD:BF:AD:F7:40:4E:FA:DF:AF:06:67:3C:AB:D2:5A:06:38:13:33
    Fingerprint (SHA1):
        A4:EC:37:9C:9B:39:89:F1:5E:C2:78:6D:BE:83:6E:B8:CB:6C:38:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6271: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121173 (0x1e67d4d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:19 2017
            Not After : Tue May 10 12:12:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:c8:40:4a:81:92:50:3d:42:b2:9f:28:98:96:03:78:
                    9a:74:e8:37:09:30:e5:d3:72:bd:c7:ef:9b:7a:e7:9b:
                    13:18:4b:ef:8a:6c:c7:d2:a1:4b:d4:0c:74:6d:9a:f8:
                    f5:5d:0f:98:1f:16:b2:75:7f:34:aa:ac:88:3f:7c:d4:
                    f5:97:c4:5f:8a:9e:ed:81:cb:d0:02:b8:06:be:39:54:
                    ec:d6:94:76:0c:ea:85:dd:b9:27:29:de:cc:9c:2e:4a:
                    57:e6:25:68:31:c0:16:66:e0:1a:e0:e3:4a:32:ea:ad:
                    04:fa:fc:0b:d1:aa:1d:12:e6:85:1d:1b:d4:e9:9d:b6:
                    ba:01:22:8b:65:25:4b:b9:fe:6f:54:19:0c:f7:05:79:
                    f6:36:72:4f:88:cd:2b:9b:af:87:5c:28:4f:d8:69:e6:
                    71:5b:d5:04:85:a9:fe:88:17:cf:7f:fb:eb:57:9e:48:
                    d0:c9:b6:e6:69:8b:a3:51:50:ba:c4:50:e2:fd:bf:f9:
                    40:f5:1c:f3:1c:1a:73:83:13:36:ed:b5:57:b1:95:c7:
                    a6:ff:81:a2:a0:2d:9d:ea:aa:9d:ec:91:12:8e:32:80:
                    16:bf:0a:87:5a:98:a8:b6:fb:b0:fd:61:29:8d:5d:48:
                    88:f5:94:09:72:e8:83:18:b9:35:f1:5c:68:d4:57:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:df:b3:03:ce:50:1b:a9:bc:12:17:da:4c:ad:87:f5:
        55:0f:e8:f2:da:00:1b:3a:70:59:06:dc:6a:83:5c:32:
        e6:33:fb:0c:d7:a1:78:4a:31:52:73:ac:94:20:e2:03:
        1d:db:4a:a4:ba:45:f4:a5:19:11:3e:1e:c0:c8:82:58:
        5f:46:9c:af:c9:14:9a:93:b7:03:8e:a3:20:47:3a:cf:
        5a:63:c1:19:63:82:19:8f:e3:80:f6:6f:ea:65:fb:e8:
        88:af:88:5a:6b:d6:45:90:8d:04:81:c0:b2:f9:3c:4b:
        ee:a5:71:79:1e:c2:ca:01:1a:ee:fe:ae:b4:89:ff:db:
        00:4e:f3:8a:7a:3a:f9:64:44:7c:08:d2:f7:48:1c:44:
        07:2c:97:ea:d5:8a:06:fd:69:55:a8:70:8e:f6:ed:4a:
        af:90:a3:9c:f4:0b:f0:93:de:99:e3:27:e2:5b:d9:36:
        2d:48:86:e6:c8:1a:e1:9d:26:1d:1d:fd:b6:ce:f7:26:
        9e:27:fe:b7:f6:7f:bf:67:da:ba:05:a1:e6:e9:b7:f9:
        53:bc:73:ca:2e:06:65:61:3a:4c:5b:5d:75:6e:8f:b3:
        ed:ab:7d:db:87:c6:07:28:e4:7c:b9:90:a8:c6:44:d0:
        38:e9:b6:8a:48:df:44:22:22:0c:70:e9:6f:ca:b4:ce
    Fingerprint (SHA-256):
        EA:8B:A1:8A:58:87:70:45:D5:80:36:B5:1A:DD:BF:AD:F7:40:4E:FA:DF:AF:06:67:3C:AB:D2:5A:06:38:13:33
    Fingerprint (SHA1):
        A4:EC:37:9C:9B:39:89:F1:5E:C2:78:6D:BE:83:6E:B8:CB:6C:38:AF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6272: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121174 (0x1e67d4d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:20 2017
            Not After : Tue May 10 12:12:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:c6:80:96:54:9f:62:9c:71:ee:44:57:63:3f:39:f3:
                    eb:e6:68:a3:ec:4e:07:e6:5e:af:78:cc:69:b3:a4:d1:
                    6b:7a:1f:b1:36:67:2a:a0:4d:15:d4:23:ff:bf:5f:eb:
                    92:e6:80:18:ac:60:7a:67:06:33:06:15:ae:e5:96:fe:
                    2b:5d:af:d7:7f:e9:f3:c7:ea:7d:ca:cf:bd:57:84:d7:
                    b8:96:7a:a9:30:ab:31:96:7a:47:5f:98:9d:24:ee:1a:
                    89:dd:0a:06:28:f4:70:26:dd:7c:2b:e9:c7:9b:8a:91:
                    34:37:19:76:ce:e5:ce:31:a3:f1:5f:af:8d:1d:78:23:
                    96:ca:e3:7d:20:fb:35:c6:82:eb:95:9d:a9:61:25:20:
                    37:42:9a:56:b0:8c:59:b5:ce:50:0d:9f:d2:11:ad:96:
                    72:f4:d5:11:dd:aa:3e:d7:0a:14:d0:51:48:7f:4a:f0:
                    6d:fb:71:9f:f3:75:67:73:1e:1b:5f:48:a7:7b:05:c2:
                    19:a6:e2:02:bd:c3:d8:94:0b:8c:80:5a:32:72:f7:7c:
                    88:f6:6c:9b:7f:4f:2e:e1:b3:ec:65:a1:d2:49:1f:69:
                    bd:1d:52:cd:53:47:e3:7b:7b:5e:84:ce:cf:bb:1b:86:
                    99:bd:e5:96:09:ed:bb:45:24:e8:84:30:8a:50:cd:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:45:8a:07:64:7e:4e:da:87:5e:48:5e:00:6e:ec:fc:
        ba:27:3a:b4:84:ad:bc:e1:be:b6:0c:cc:07:e8:9c:b7:
        af:ca:e1:db:d0:bc:35:ef:38:c9:a5:50:bb:c5:14:86:
        e9:45:9f:fb:08:1b:6a:4e:88:88:c7:16:cc:21:bd:69:
        9d:3c:8e:55:2f:67:3e:75:d6:15:93:01:38:03:e4:b8:
        7d:61:f9:6b:a8:6d:4c:b6:2c:5d:b3:e8:8c:29:f2:bc:
        96:7d:bf:cf:5e:9f:50:0d:e5:21:b4:bd:e8:1d:5f:de:
        1b:33:8e:87:98:6b:af:85:d5:23:45:78:f4:cb:f5:3f:
        b8:db:50:a0:44:b8:97:76:78:76:68:05:f2:ff:54:34:
        81:c2:fc:18:b5:a2:6c:06:a0:57:52:67:e4:f2:17:17:
        61:d9:20:c1:cb:21:3c:26:1c:10:32:8d:d2:8a:d9:49:
        ca:9f:7e:c2:14:83:47:4d:7a:b3:ac:4c:62:2f:92:73:
        d4:7f:73:ed:93:a7:8a:54:cf:5f:5b:b0:60:4f:c8:a0:
        2a:61:38:9c:ac:63:10:ab:af:34:bc:70:f5:9a:4d:ec:
        59:fd:34:39:d1:b0:7d:c2:50:11:d4:13:b5:75:26:6d:
        2c:43:5f:a1:73:c4:61:4b:54:b0:71:d7:ae:d7:4f:fe
    Fingerprint (SHA-256):
        97:23:E4:13:E0:3C:9A:46:45:79:F5:AD:30:45:24:6E:56:CB:AB:C7:A2:F2:46:2E:A7:1B:F9:34:1D:1B:3E:A0
    Fingerprint (SHA1):
        9F:6D:18:85:B2:9A:A8:FE:5F:24:65:FF:47:1B:C9:AC:B6:29:05:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6273: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121174 (0x1e67d4d6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:20 2017
            Not After : Tue May 10 12:12:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:c6:80:96:54:9f:62:9c:71:ee:44:57:63:3f:39:f3:
                    eb:e6:68:a3:ec:4e:07:e6:5e:af:78:cc:69:b3:a4:d1:
                    6b:7a:1f:b1:36:67:2a:a0:4d:15:d4:23:ff:bf:5f:eb:
                    92:e6:80:18:ac:60:7a:67:06:33:06:15:ae:e5:96:fe:
                    2b:5d:af:d7:7f:e9:f3:c7:ea:7d:ca:cf:bd:57:84:d7:
                    b8:96:7a:a9:30:ab:31:96:7a:47:5f:98:9d:24:ee:1a:
                    89:dd:0a:06:28:f4:70:26:dd:7c:2b:e9:c7:9b:8a:91:
                    34:37:19:76:ce:e5:ce:31:a3:f1:5f:af:8d:1d:78:23:
                    96:ca:e3:7d:20:fb:35:c6:82:eb:95:9d:a9:61:25:20:
                    37:42:9a:56:b0:8c:59:b5:ce:50:0d:9f:d2:11:ad:96:
                    72:f4:d5:11:dd:aa:3e:d7:0a:14:d0:51:48:7f:4a:f0:
                    6d:fb:71:9f:f3:75:67:73:1e:1b:5f:48:a7:7b:05:c2:
                    19:a6:e2:02:bd:c3:d8:94:0b:8c:80:5a:32:72:f7:7c:
                    88:f6:6c:9b:7f:4f:2e:e1:b3:ec:65:a1:d2:49:1f:69:
                    bd:1d:52:cd:53:47:e3:7b:7b:5e:84:ce:cf:bb:1b:86:
                    99:bd:e5:96:09:ed:bb:45:24:e8:84:30:8a:50:cd:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:45:8a:07:64:7e:4e:da:87:5e:48:5e:00:6e:ec:fc:
        ba:27:3a:b4:84:ad:bc:e1:be:b6:0c:cc:07:e8:9c:b7:
        af:ca:e1:db:d0:bc:35:ef:38:c9:a5:50:bb:c5:14:86:
        e9:45:9f:fb:08:1b:6a:4e:88:88:c7:16:cc:21:bd:69:
        9d:3c:8e:55:2f:67:3e:75:d6:15:93:01:38:03:e4:b8:
        7d:61:f9:6b:a8:6d:4c:b6:2c:5d:b3:e8:8c:29:f2:bc:
        96:7d:bf:cf:5e:9f:50:0d:e5:21:b4:bd:e8:1d:5f:de:
        1b:33:8e:87:98:6b:af:85:d5:23:45:78:f4:cb:f5:3f:
        b8:db:50:a0:44:b8:97:76:78:76:68:05:f2:ff:54:34:
        81:c2:fc:18:b5:a2:6c:06:a0:57:52:67:e4:f2:17:17:
        61:d9:20:c1:cb:21:3c:26:1c:10:32:8d:d2:8a:d9:49:
        ca:9f:7e:c2:14:83:47:4d:7a:b3:ac:4c:62:2f:92:73:
        d4:7f:73:ed:93:a7:8a:54:cf:5f:5b:b0:60:4f:c8:a0:
        2a:61:38:9c:ac:63:10:ab:af:34:bc:70:f5:9a:4d:ec:
        59:fd:34:39:d1:b0:7d:c2:50:11:d4:13:b5:75:26:6d:
        2c:43:5f:a1:73:c4:61:4b:54:b0:71:d7:ae:d7:4f:fe
    Fingerprint (SHA-256):
        97:23:E4:13:E0:3C:9A:46:45:79:F5:AD:30:45:24:6E:56:CB:AB:C7:A2:F2:46:2E:A7:1B:F9:34:1D:1B:3E:A0
    Fingerprint (SHA1):
        9F:6D:18:85:B2:9A:A8:FE:5F:24:65:FF:47:1B:C9:AC:B6:29:05:B2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6274: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121175 (0x1e67d4d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:21 2017
            Not After : Tue May 10 12:12:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:2f:93:63:f0:a0:cb:64:0a:74:9b:03:44:ac:25:c4:
                    b0:12:66:ac:36:c3:18:0d:1d:de:3a:76:81:4f:bd:e9:
                    a1:43:42:e9:a9:41:23:47:81:f0:b8:e4:7d:a2:06:32:
                    29:7a:f2:e4:e8:ef:f0:f4:ce:d5:29:63:73:be:f9:bd:
                    68:31:8c:20:22:b9:e9:8d:5d:c1:47:07:bd:43:be:87:
                    39:02:6d:7a:03:4f:b0:df:aa:33:97:c2:2b:06:a3:95:
                    2c:19:d6:06:61:a1:c3:5b:2d:cd:3e:3c:68:c6:14:99:
                    a8:54:81:a2:89:14:34:5d:f4:35:37:c2:63:19:09:03:
                    43:f6:73:f1:d5:63:2b:39:8d:a2:f7:ef:59:5b:f9:c4:
                    50:9e:3a:f1:d3:67:35:dd:8c:dc:44:5e:6c:9c:1f:fc:
                    ae:8d:a2:7a:a6:c8:8b:6a:b0:d2:9b:57:f4:c8:26:c6:
                    ab:c9:d9:c3:57:5f:5c:ae:ec:04:cf:db:ae:55:98:c0:
                    31:a2:23:a6:06:bf:05:66:61:df:f2:18:31:45:39:7a:
                    e7:d1:7b:2b:73:3b:56:04:ca:a9:98:75:15:94:67:73:
                    f6:fd:ff:4a:a8:45:57:4c:e6:84:57:22:bf:f9:c3:04:
                    a9:91:fe:0e:38:a6:d0:80:9e:eb:ef:f8:d1:ef:fb:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:29:47:40:2c:20:a1:6d:73:48:9d:45:0e:ed:07:ff:
        c6:ac:eb:1f:07:31:e1:07:d7:4f:d1:ec:23:c3:08:71:
        67:5d:56:63:bf:76:a7:62:79:8c:88:14:e0:22:c4:04:
        37:8f:c5:bd:9c:83:24:bd:0b:e9:47:05:ba:76:fe:5d:
        6b:0b:e7:37:89:5a:b4:eb:65:df:ba:78:ee:d9:3a:5e:
        c5:63:f9:9a:12:ef:c6:63:5c:ac:60:08:2a:24:0d:a4:
        ce:72:9e:85:80:1a:55:4b:22:3b:c1:37:50:78:13:7d:
        39:85:d8:af:1c:32:cb:8a:da:2a:92:17:ad:a8:90:39:
        16:6e:8e:08:52:c7:5a:96:3b:96:00:33:d3:e5:55:ce:
        c1:0a:56:3f:a2:fd:c0:65:f0:eb:c7:26:cd:14:7a:09:
        f2:c4:f8:93:c8:8a:65:4a:6f:51:ec:36:3a:58:4f:e2:
        51:4e:d1:bf:61:45:4d:4d:c4:97:ab:1b:fa:ec:4c:ea:
        83:57:f0:f6:d6:19:d7:ad:a9:e9:7d:51:f4:10:ac:6a:
        e1:74:de:ac:cc:83:0a:50:f3:76:69:ba:4d:95:cb:e8:
        f0:aa:6a:14:2c:24:36:7d:f6:3f:be:0e:88:74:ea:9b:
        76:41:57:c0:91:91:bd:ca:86:58:d0:1e:e1:2c:ac:46
    Fingerprint (SHA-256):
        2E:C7:DF:9B:5E:03:72:2E:BB:E5:A8:14:19:E4:F4:7E:B7:BC:ED:C6:A8:23:8C:D9:E4:8B:22:26:B1:C8:B4:C5
    Fingerprint (SHA1):
        9D:2C:FF:85:55:E9:59:14:17:0B:FC:4E:1E:B4:05:7F:1D:34:AF:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6275: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121175 (0x1e67d4d7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:12:21 2017
            Not After : Tue May 10 12:12:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:2f:93:63:f0:a0:cb:64:0a:74:9b:03:44:ac:25:c4:
                    b0:12:66:ac:36:c3:18:0d:1d:de:3a:76:81:4f:bd:e9:
                    a1:43:42:e9:a9:41:23:47:81:f0:b8:e4:7d:a2:06:32:
                    29:7a:f2:e4:e8:ef:f0:f4:ce:d5:29:63:73:be:f9:bd:
                    68:31:8c:20:22:b9:e9:8d:5d:c1:47:07:bd:43:be:87:
                    39:02:6d:7a:03:4f:b0:df:aa:33:97:c2:2b:06:a3:95:
                    2c:19:d6:06:61:a1:c3:5b:2d:cd:3e:3c:68:c6:14:99:
                    a8:54:81:a2:89:14:34:5d:f4:35:37:c2:63:19:09:03:
                    43:f6:73:f1:d5:63:2b:39:8d:a2:f7:ef:59:5b:f9:c4:
                    50:9e:3a:f1:d3:67:35:dd:8c:dc:44:5e:6c:9c:1f:fc:
                    ae:8d:a2:7a:a6:c8:8b:6a:b0:d2:9b:57:f4:c8:26:c6:
                    ab:c9:d9:c3:57:5f:5c:ae:ec:04:cf:db:ae:55:98:c0:
                    31:a2:23:a6:06:bf:05:66:61:df:f2:18:31:45:39:7a:
                    e7:d1:7b:2b:73:3b:56:04:ca:a9:98:75:15:94:67:73:
                    f6:fd:ff:4a:a8:45:57:4c:e6:84:57:22:bf:f9:c3:04:
                    a9:91:fe:0e:38:a6:d0:80:9e:eb:ef:f8:d1:ef:fb:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:29:47:40:2c:20:a1:6d:73:48:9d:45:0e:ed:07:ff:
        c6:ac:eb:1f:07:31:e1:07:d7:4f:d1:ec:23:c3:08:71:
        67:5d:56:63:bf:76:a7:62:79:8c:88:14:e0:22:c4:04:
        37:8f:c5:bd:9c:83:24:bd:0b:e9:47:05:ba:76:fe:5d:
        6b:0b:e7:37:89:5a:b4:eb:65:df:ba:78:ee:d9:3a:5e:
        c5:63:f9:9a:12:ef:c6:63:5c:ac:60:08:2a:24:0d:a4:
        ce:72:9e:85:80:1a:55:4b:22:3b:c1:37:50:78:13:7d:
        39:85:d8:af:1c:32:cb:8a:da:2a:92:17:ad:a8:90:39:
        16:6e:8e:08:52:c7:5a:96:3b:96:00:33:d3:e5:55:ce:
        c1:0a:56:3f:a2:fd:c0:65:f0:eb:c7:26:cd:14:7a:09:
        f2:c4:f8:93:c8:8a:65:4a:6f:51:ec:36:3a:58:4f:e2:
        51:4e:d1:bf:61:45:4d:4d:c4:97:ab:1b:fa:ec:4c:ea:
        83:57:f0:f6:d6:19:d7:ad:a9:e9:7d:51:f4:10:ac:6a:
        e1:74:de:ac:cc:83:0a:50:f3:76:69:ba:4d:95:cb:e8:
        f0:aa:6a:14:2c:24:36:7d:f6:3f:be:0e:88:74:ea:9b:
        76:41:57:c0:91:91:bd:ca:86:58:d0:1e:e1:2c:ac:46
    Fingerprint (SHA-256):
        2E:C7:DF:9B:5E:03:72:2E:BB:E5:A8:14:19:E4:F4:7E:B7:BC:ED:C6:A8:23:8C:D9:E4:8B:22:26:B1:C8:B4:C5
    Fingerprint (SHA1):
        9D:2C:FF:85:55:E9:59:14:17:0B:FC:4E:1E:B4:05:7F:1D:34:AF:DA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6276: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6277: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121178 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6278: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6279: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6280: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6281: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121179   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6282: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6283: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6284: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6285: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121180   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6286: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6287: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6288: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6289: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510121181   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6290: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6291: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6292: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6293: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121182   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6294: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6295: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6296: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6297: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121183   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6298: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6299: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6300: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6301: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510121184   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6302: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6303: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6304: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6305: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6306: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6307: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6308: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121178 (0x1e67d4da)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:25 2017
            Not After : Tue May 10 12:12:25 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:92:a4:e2:61:0d:c9:7a:b6:44:61:1f:33:d1:09:77:
                    f2:ee:41:b2:66:48:5f:d6:47:ea:a4:78:cd:09:ba:80:
                    35:1b:7d:42:29:5c:7a:74:87:c9:af:62:56:b3:20:cd:
                    97:16:b3:d8:14:2a:e0:70:86:3b:43:52:c0:aa:9b:80:
                    18:16:62:7f:e1:0d:96:7e:7b:f7:8b:f7:a2:61:c7:45:
                    8a:53:6f:8d:83:13:01:3d:46:d5:c7:b4:22:80:30:46:
                    61:54:fc:51:05:4c:d9:ea:d4:b7:c4:e4:3e:85:32:56:
                    ce:19:b4:8d:7e:da:3f:9e:a0:b0:be:76:b4:9c:3e:45:
                    19:12:04:ea:0c:47:49:37:61:89:03:24:78:da:ba:12:
                    8b:8a:f5:32:5b:a1:86:2e:07:61:39:c5:6d:b9:85:7a:
                    3c:28:2b:09:56:e7:9e:bc:ea:c4:f8:c8:ab:52:c7:90:
                    eb:06:53:f8:e1:a6:33:eb:84:60:24:9c:2f:ea:57:22:
                    c3:09:57:bc:2a:b4:24:75:62:94:6c:06:84:9a:73:34:
                    28:8f:b0:b4:0e:66:da:ab:0c:9f:b8:9f:b1:66:fe:8b:
                    85:04:51:26:bd:c6:f4:89:80:46:e9:fd:9e:48:7b:e4:
                    20:2e:f7:7f:f2:bf:4f:2c:e8:2d:1d:9e:09:ec:5c:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:be:20:82:02:83:fc:98:fa:96:88:30:49:18:82:c6:
        f1:37:dc:d2:36:82:d8:c4:1f:25:d9:7f:b3:2c:24:fd:
        8c:fd:c2:d8:38:95:b5:7e:d2:01:48:db:13:90:95:7c:
        a0:38:15:5e:6f:4c:47:67:b9:43:f3:12:c8:75:97:d3:
        b2:d3:ba:ab:d0:5e:51:b4:bc:20:83:91:87:3d:5f:b8:
        ff:6e:62:0f:fd:80:f7:7f:4c:81:33:77:e4:47:7c:1c:
        32:bf:ac:b6:03:fb:5f:4c:e4:3b:66:5b:9b:93:25:88:
        e3:37:2c:43:10:a9:43:f9:9c:3f:77:e2:dd:ee:c6:ab:
        25:96:0a:89:ae:3f:d5:d4:68:9f:f6:2f:42:6d:f8:c9:
        22:b0:11:6b:19:b7:2f:cb:d5:15:ac:d7:ce:0b:f5:99:
        be:a0:e6:a5:b4:8e:c6:cc:1c:f3:a4:88:27:5a:65:9c:
        11:31:e8:c1:af:77:64:4c:31:88:0b:10:1b:5c:3e:42:
        66:b6:85:ed:c7:b7:b8:07:fb:bc:ac:4b:29:45:6c:ac:
        28:e3:d4:1b:40:89:bf:85:b9:ad:75:dd:8a:e8:b3:b7:
        45:8c:98:09:8f:08:7b:ca:09:62:54:bf:82:a4:08:19:
        fe:95:d5:6b:20:4e:68:90:f9:3a:72:da:60:35:26:c0
    Fingerprint (SHA-256):
        29:DE:42:F4:06:BE:4E:0C:A5:2C:58:6E:8F:60:9C:03:EF:1C:19:60:26:7C:31:3E:23:C8:32:41:DB:5C:18:77
    Fingerprint (SHA1):
        D6:89:6B:EC:3C:C2:1A:48:A2:2E:7D:C7:00:7C:EA:81:4A:F3:4B:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6309: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6310: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6311: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6312: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121178 (0x1e67d4da)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:25 2017
            Not After : Tue May 10 12:12:25 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:92:a4:e2:61:0d:c9:7a:b6:44:61:1f:33:d1:09:77:
                    f2:ee:41:b2:66:48:5f:d6:47:ea:a4:78:cd:09:ba:80:
                    35:1b:7d:42:29:5c:7a:74:87:c9:af:62:56:b3:20:cd:
                    97:16:b3:d8:14:2a:e0:70:86:3b:43:52:c0:aa:9b:80:
                    18:16:62:7f:e1:0d:96:7e:7b:f7:8b:f7:a2:61:c7:45:
                    8a:53:6f:8d:83:13:01:3d:46:d5:c7:b4:22:80:30:46:
                    61:54:fc:51:05:4c:d9:ea:d4:b7:c4:e4:3e:85:32:56:
                    ce:19:b4:8d:7e:da:3f:9e:a0:b0:be:76:b4:9c:3e:45:
                    19:12:04:ea:0c:47:49:37:61:89:03:24:78:da:ba:12:
                    8b:8a:f5:32:5b:a1:86:2e:07:61:39:c5:6d:b9:85:7a:
                    3c:28:2b:09:56:e7:9e:bc:ea:c4:f8:c8:ab:52:c7:90:
                    eb:06:53:f8:e1:a6:33:eb:84:60:24:9c:2f:ea:57:22:
                    c3:09:57:bc:2a:b4:24:75:62:94:6c:06:84:9a:73:34:
                    28:8f:b0:b4:0e:66:da:ab:0c:9f:b8:9f:b1:66:fe:8b:
                    85:04:51:26:bd:c6:f4:89:80:46:e9:fd:9e:48:7b:e4:
                    20:2e:f7:7f:f2:bf:4f:2c:e8:2d:1d:9e:09:ec:5c:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:be:20:82:02:83:fc:98:fa:96:88:30:49:18:82:c6:
        f1:37:dc:d2:36:82:d8:c4:1f:25:d9:7f:b3:2c:24:fd:
        8c:fd:c2:d8:38:95:b5:7e:d2:01:48:db:13:90:95:7c:
        a0:38:15:5e:6f:4c:47:67:b9:43:f3:12:c8:75:97:d3:
        b2:d3:ba:ab:d0:5e:51:b4:bc:20:83:91:87:3d:5f:b8:
        ff:6e:62:0f:fd:80:f7:7f:4c:81:33:77:e4:47:7c:1c:
        32:bf:ac:b6:03:fb:5f:4c:e4:3b:66:5b:9b:93:25:88:
        e3:37:2c:43:10:a9:43:f9:9c:3f:77:e2:dd:ee:c6:ab:
        25:96:0a:89:ae:3f:d5:d4:68:9f:f6:2f:42:6d:f8:c9:
        22:b0:11:6b:19:b7:2f:cb:d5:15:ac:d7:ce:0b:f5:99:
        be:a0:e6:a5:b4:8e:c6:cc:1c:f3:a4:88:27:5a:65:9c:
        11:31:e8:c1:af:77:64:4c:31:88:0b:10:1b:5c:3e:42:
        66:b6:85:ed:c7:b7:b8:07:fb:bc:ac:4b:29:45:6c:ac:
        28:e3:d4:1b:40:89:bf:85:b9:ad:75:dd:8a:e8:b3:b7:
        45:8c:98:09:8f:08:7b:ca:09:62:54:bf:82:a4:08:19:
        fe:95:d5:6b:20:4e:68:90:f9:3a:72:da:60:35:26:c0
    Fingerprint (SHA-256):
        29:DE:42:F4:06:BE:4E:0C:A5:2C:58:6E:8F:60:9C:03:EF:1C:19:60:26:7C:31:3E:23:C8:32:41:DB:5C:18:77
    Fingerprint (SHA1):
        D6:89:6B:EC:3C:C2:1A:48:A2:2E:7D:C7:00:7C:EA:81:4A:F3:4B:36
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6313: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6314: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6315: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121185 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6316: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6317: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6318: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6319: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121186   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6320: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6321: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6322: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6323: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510121187   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6324: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6325: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6326: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6327: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510121188   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6328: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6329: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6330: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6331: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510121189   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6332: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6333: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6334: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6335: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510121190   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6336: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6337: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #6338: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6339: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510121191   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6340: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6341: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6342: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6343: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510121192   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6344: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6345: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #6346: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6347: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510121193   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6348: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6349: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #6350: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6351: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510121194   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6352: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6353: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6354: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6355: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510121195   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6356: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6357: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #6358: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6359: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510121196   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6360: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6361: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #6362: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6363: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510121197   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6364: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6365: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6366: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6367: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510121198   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6368: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6369: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #6370: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6371: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510121199   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6372: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6373: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #6374: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6375: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510121200   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6376: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6377: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #6378: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6379: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510121201   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6380: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6381: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #6382: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6383: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510121202   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6384: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6385: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #6386: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6387: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510121203   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6388: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6389: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #6390: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6391: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510121204   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6392: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6393: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #6394: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6395: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510121205   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6396: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6397: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #6398: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6399: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510121206   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6400: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6401: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #6402: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6403: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510121207   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6404: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6405: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #6406: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6407: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510121208   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6408: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6409: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #6410: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6411: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510121209   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6412: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6413: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #6414: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6415: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510121210   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6416: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6417: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #6418: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6419: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510121211   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6420: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6421: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #6422: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6423: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510121212   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6424: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6425: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #6426: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6427: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510121213   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6428: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6429: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #6430: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6431: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510121214   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6432: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6433: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6434: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6435: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6436: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6437: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6438: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6439: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6440: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6441: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6442: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6443: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6444: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6445: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6446: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6447: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6448: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6449: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6450: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6451: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6452: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6453: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6454: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6455: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6456: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121185 (0x1e67d4e1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:12:32 2017
            Not After : Tue May 10 12:12:32 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:27:37:f6:0f:71:fc:f8:13:92:36:d3:1a:8b:ef:1b:
                    17:b9:0c:b4:a1:26:d3:1c:d4:21:0f:8b:4b:b6:8f:15:
                    3f:68:c9:55:9a:31:a0:1c:07:d0:86:6e:2f:9c:5f:f6:
                    3c:f5:b8:31:71:75:02:96:a7:7f:86:2b:64:10:16:53:
                    0d:58:d5:76:0d:4c:b8:d5:ee:8c:e6:3f:50:60:9e:e0:
                    f4:a8:9b:99:66:d9:72:44:dc:e6:b6:61:62:f1:4f:43:
                    bd:9e:48:8a:d4:e1:ae:be:6c:6d:6c:2e:49:37:6a:0e:
                    23:4f:a7:87:c6:78:a8:47:23:61:0a:92:77:34:b3:9a:
                    6a:42:a4:ab:a3:37:39:17:81:46:ee:3c:f2:7c:d4:dd:
                    40:d4:58:61:0f:c7:7f:37:c8:b4:53:11:05:17:79:b2:
                    7d:47:16:e5:61:76:f2:23:d7:d7:83:3c:be:6a:af:3d:
                    2e:c6:d2:82:20:57:48:80:02:10:a1:8e:4c:4b:2c:72:
                    1d:b1:f5:b0:a0:82:a7:77:df:22:44:a8:6b:d8:2a:1c:
                    49:9a:84:d2:5b:f4:f0:c3:80:6d:53:26:10:93:1b:6f:
                    96:67:32:0a:6b:06:b8:05:87:b6:ea:78:0e:39:d0:a6:
                    cc:e8:9a:84:3a:6c:5d:35:bc:4c:78:75:72:93:59:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:9c:15:7b:c7:48:d3:84:9e:eb:12:d3:db:15:f4:99:
        c8:17:c3:92:c8:3f:10:15:08:3c:ca:20:a5:d8:c1:f5:
        d1:7e:05:65:2c:4a:0a:26:1f:c9:49:18:6f:38:df:81:
        4e:65:60:9d:f0:59:f2:b1:b9:d8:aa:6c:5e:dc:2a:e2:
        ea:e9:40:25:ee:46:4a:39:ba:34:2e:f4:72:2d:0d:e8:
        d4:c0:86:ca:57:6c:a5:65:3b:2e:6c:51:99:95:e2:63:
        20:08:a1:a9:db:7c:70:85:33:f8:4c:6f:46:e7:cd:a0:
        d5:2e:c4:52:7a:e6:72:1f:de:2a:e2:8b:91:93:0b:82:
        0a:07:e6:6a:48:51:0e:35:67:17:ff:a2:b2:e0:9d:88:
        98:cb:95:b5:af:51:35:f7:25:06:01:db:51:4c:a1:9b:
        71:fc:13:ae:32:9d:77:5b:06:b0:7f:b7:35:6d:10:5a:
        d8:2c:e2:ef:96:0f:7a:25:5f:bf:f6:fd:6e:7d:22:16:
        41:a7:54:c6:bc:c7:2e:90:ff:f7:dd:ae:94:c4:f7:33:
        78:be:8f:bd:98:49:40:bc:77:a6:d5:28:a7:d1:6c:7e:
        9c:5f:98:45:d6:08:cc:dd:6b:e8:4a:e7:e2:37:91:26:
        ac:e5:d6:84:8f:e1:5a:ae:bd:b1:7e:32:9f:6f:d7:fb
    Fingerprint (SHA-256):
        1B:34:77:93:5C:EF:63:C1:01:EF:89:A7:C9:A5:06:1E:C5:55:FE:E9:AB:F7:87:B2:74:78:F3:AB:AF:B8:29:54
    Fingerprint (SHA1):
        9B:D1:DB:4B:C9:98:74:E0:EA:8C:4E:16:1A:1A:83:22:CB:F4:93:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6457: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6458: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6459: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121215 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6460: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6461: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #6462: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6463: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510121216   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6464: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6465: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #6466: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6467: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510121217   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6468: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6469: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #6470: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6471: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510121218   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6472: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6473: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #6474: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6475: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510121219   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6476: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6477: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #6478: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6479: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510121220   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6480: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6481: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #6482: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6483: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510121221   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6484: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6485: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6486: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121215 (0x1e67d4ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:59 2017
            Not After : Tue May 10 12:12:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:95:85:bf:53:6e:ef:8a:50:54:90:4f:91:f7:76:70:
                    15:b2:83:63:c8:77:98:cd:b9:75:d7:94:e5:6b:eb:d8:
                    5c:a5:a9:bf:01:93:7b:b6:aa:86:f8:e0:d6:9b:24:cc:
                    66:da:ef:c7:ae:ca:72:3d:bc:57:72:9a:40:0e:fb:b6:
                    87:b4:a6:c2:a2:54:43:1c:b8:39:fa:be:d6:1b:39:5d:
                    3c:0f:aa:e9:d1:c2:61:9f:83:68:8c:7b:4f:d3:bb:3f:
                    29:ae:65:13:1b:b5:5f:fd:d9:a3:74:ce:0d:5e:00:dd:
                    44:0b:6c:e5:a4:07:d6:80:55:41:c7:c2:7d:a0:58:7d:
                    19:d3:5f:d1:6c:b4:a7:63:e9:a5:21:ae:08:77:b4:2a:
                    aa:ed:3c:2e:6d:5a:1b:a0:4c:f8:68:3d:40:8d:a5:7b:
                    af:8c:c0:b4:fc:a7:8e:42:11:7d:95:a8:ca:18:dd:92:
                    46:2d:1d:22:2a:93:d5:ac:5d:30:d1:95:12:cc:d8:09:
                    02:46:41:bd:b7:38:f8:6a:3e:4f:99:f5:e7:7a:50:c3:
                    f9:99:30:d1:b7:60:c7:b8:8e:ac:51:60:7c:64:24:22:
                    6e:03:14:c1:02:88:42:ae:0d:05:9f:cc:74:1e:7a:46:
                    11:b6:9c:c3:31:0c:8e:f3:2c:0a:92:65:3a:5a:30:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:5e:e3:51:a7:4e:c6:e3:cc:81:dc:4d:8e:61:cb:ab:
        6c:24:6c:a8:a8:a9:8c:b3:e9:c8:cc:03:90:0e:ae:3f:
        d3:ab:aa:8e:91:8b:7e:72:9d:60:9f:13:c9:b0:6f:fb:
        fc:f5:94:dc:3e:8e:cd:16:20:00:d9:a6:53:6f:d4:d8:
        ee:98:3f:0f:3f:03:1a:59:b8:78:44:cc:a7:69:7b:68:
        8e:4a:02:eb:f7:19:57:f1:53:b9:87:f8:79:99:21:73:
        76:5a:b4:fc:f8:1e:19:17:36:98:70:28:19:fb:9e:56:
        88:d0:8c:99:eb:2f:da:60:61:28:c3:60:ac:29:2b:8b:
        5f:8c:29:ad:5d:ce:01:16:36:14:fb:ab:cd:55:6e:f6:
        a7:b2:c2:3e:bc:73:35:30:9e:d2:5b:82:1d:9e:38:93:
        4c:ee:84:12:c2:89:9e:f9:c2:1d:96:d9:5a:f3:c0:e9:
        2e:2c:8f:44:3f:5c:e9:6e:0f:4f:dd:70:44:5b:5e:6a:
        f7:50:23:9d:55:60:03:f6:75:cb:c1:ee:c2:12:09:f3:
        d3:21:e7:c5:2e:a9:fc:d1:51:58:90:97:5e:35:01:d2:
        b6:f9:71:f0:0e:d2:47:c1:29:76:5e:10:c6:3b:59:7e:
        3c:4e:0d:0d:cc:d3:e5:f5:db:58:f9:33:41:a5:8e:93
    Fingerprint (SHA-256):
        94:37:EF:7A:F4:F9:97:BB:2A:09:5F:E9:66:A7:CF:BF:0E:C9:E7:40:AC:B4:A2:D8:60:2D:E0:E8:26:B2:D2:5E
    Fingerprint (SHA1):
        5F:DF:80:13:58:EC:1C:F8:8F:BF:53:B9:44:79:E2:59:3A:F2:F3:43
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6487: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6488: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6489: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6490: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121215 (0x1e67d4ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:12:59 2017
            Not After : Tue May 10 12:12:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:95:85:bf:53:6e:ef:8a:50:54:90:4f:91:f7:76:70:
                    15:b2:83:63:c8:77:98:cd:b9:75:d7:94:e5:6b:eb:d8:
                    5c:a5:a9:bf:01:93:7b:b6:aa:86:f8:e0:d6:9b:24:cc:
                    66:da:ef:c7:ae:ca:72:3d:bc:57:72:9a:40:0e:fb:b6:
                    87:b4:a6:c2:a2:54:43:1c:b8:39:fa:be:d6:1b:39:5d:
                    3c:0f:aa:e9:d1:c2:61:9f:83:68:8c:7b:4f:d3:bb:3f:
                    29:ae:65:13:1b:b5:5f:fd:d9:a3:74:ce:0d:5e:00:dd:
                    44:0b:6c:e5:a4:07:d6:80:55:41:c7:c2:7d:a0:58:7d:
                    19:d3:5f:d1:6c:b4:a7:63:e9:a5:21:ae:08:77:b4:2a:
                    aa:ed:3c:2e:6d:5a:1b:a0:4c:f8:68:3d:40:8d:a5:7b:
                    af:8c:c0:b4:fc:a7:8e:42:11:7d:95:a8:ca:18:dd:92:
                    46:2d:1d:22:2a:93:d5:ac:5d:30:d1:95:12:cc:d8:09:
                    02:46:41:bd:b7:38:f8:6a:3e:4f:99:f5:e7:7a:50:c3:
                    f9:99:30:d1:b7:60:c7:b8:8e:ac:51:60:7c:64:24:22:
                    6e:03:14:c1:02:88:42:ae:0d:05:9f:cc:74:1e:7a:46:
                    11:b6:9c:c3:31:0c:8e:f3:2c:0a:92:65:3a:5a:30:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:5e:e3:51:a7:4e:c6:e3:cc:81:dc:4d:8e:61:cb:ab:
        6c:24:6c:a8:a8:a9:8c:b3:e9:c8:cc:03:90:0e:ae:3f:
        d3:ab:aa:8e:91:8b:7e:72:9d:60:9f:13:c9:b0:6f:fb:
        fc:f5:94:dc:3e:8e:cd:16:20:00:d9:a6:53:6f:d4:d8:
        ee:98:3f:0f:3f:03:1a:59:b8:78:44:cc:a7:69:7b:68:
        8e:4a:02:eb:f7:19:57:f1:53:b9:87:f8:79:99:21:73:
        76:5a:b4:fc:f8:1e:19:17:36:98:70:28:19:fb:9e:56:
        88:d0:8c:99:eb:2f:da:60:61:28:c3:60:ac:29:2b:8b:
        5f:8c:29:ad:5d:ce:01:16:36:14:fb:ab:cd:55:6e:f6:
        a7:b2:c2:3e:bc:73:35:30:9e:d2:5b:82:1d:9e:38:93:
        4c:ee:84:12:c2:89:9e:f9:c2:1d:96:d9:5a:f3:c0:e9:
        2e:2c:8f:44:3f:5c:e9:6e:0f:4f:dd:70:44:5b:5e:6a:
        f7:50:23:9d:55:60:03:f6:75:cb:c1:ee:c2:12:09:f3:
        d3:21:e7:c5:2e:a9:fc:d1:51:58:90:97:5e:35:01:d2:
        b6:f9:71:f0:0e:d2:47:c1:29:76:5e:10:c6:3b:59:7e:
        3c:4e:0d:0d:cc:d3:e5:f5:db:58:f9:33:41:a5:8e:93
    Fingerprint (SHA-256):
        94:37:EF:7A:F4:F9:97:BB:2A:09:5F:E9:66:A7:CF:BF:0E:C9:E7:40:AC:B4:A2:D8:60:2D:E0:E8:26:B2:D2:5E
    Fingerprint (SHA1):
        5F:DF:80:13:58:EC:1C:F8:8F:BF:53:B9:44:79:E2:59:3A:F2:F3:43
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6491: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6492: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6493: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6494: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121222 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6495: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6496: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6497: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6498: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121223   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6499: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6500: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6501: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6502: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121224   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6503: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6504: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6505: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6506: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121225   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6507: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6508: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6509: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6510: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6511: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6512: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121222 (0x1e67d506)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:05 2017
            Not After : Tue May 10 12:13:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b0:9e:00:07:5e:60:00:15:aa:be:dc:64:61:31:44:
                    b3:83:26:89:93:98:b6:63:54:03:28:cf:84:77:f7:5b:
                    2d:5a:2d:f5:6c:ca:3e:d2:c6:1e:2a:8f:ff:19:6a:54:
                    fc:fd:ed:1e:d7:a5:ca:f9:bd:ed:07:7f:36:d2:08:2d:
                    ad:3c:82:7c:45:fe:e7:62:5e:ae:91:ad:d6:23:91:8c:
                    29:fc:1a:48:1e:b2:d9:aa:f1:29:e7:e1:3c:f0:94:b4:
                    28:ab:e2:1e:68:b8:92:eb:38:8e:ef:2d:4e:6e:36:6a:
                    a2:23:63:95:b2:f3:bb:b1:9c:e8:a5:aa:de:fe:0a:f0:
                    b8:3b:a7:27:d4:b5:96:ad:87:2f:7c:4d:10:6e:cd:6c:
                    f8:1b:15:3b:65:5c:52:d7:00:95:11:0f:96:b4:8f:8e:
                    d8:5e:75:88:b1:39:2b:c0:f1:88:05:d4:e1:4f:5e:e9:
                    be:0c:d2:89:56:af:75:1b:25:f8:7a:59:9f:6a:3e:fe:
                    aa:04:76:79:cc:27:6c:9f:61:2b:90:b8:01:d1:2b:57:
                    25:06:35:33:8e:f2:5a:12:ac:8f:d1:ba:e0:5b:48:fb:
                    b2:9b:58:20:1c:1e:ae:b5:f1:62:be:2c:62:f3:bf:9e:
                    f7:ce:99:2e:f6:1b:e3:3b:72:25:8a:53:7b:ea:69:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:55:79:d1:f9:e8:32:d3:3a:4f:be:7c:1e:7a:10:32:
        1b:3d:fd:ec:1d:61:b9:fd:f4:03:1a:6b:46:d8:05:bb:
        36:01:97:2a:73:b8:e2:6e:17:01:3a:03:cd:3f:59:39:
        d0:f2:97:58:98:82:32:77:d0:d5:a3:55:fc:2d:ca:e7:
        a5:cb:90:66:47:59:1d:cc:4f:23:77:ee:ca:94:10:46:
        6e:08:99:c3:06:25:f4:18:4e:26:5f:ac:dd:ff:9f:5d:
        f1:d7:a0:79:33:0c:85:9f:dc:ac:0d:45:80:91:e0:22:
        21:d0:ee:89:73:84:58:6b:3f:cf:f9:f6:67:7e:9b:3d:
        1c:13:5b:dd:62:6c:49:89:eb:63:7d:49:81:c9:74:49:
        cd:92:e3:ea:19:f7:31:f9:04:51:c5:d8:97:55:57:f4:
        1a:7a:b7:1a:6e:ec:0c:c3:20:4f:8e:5a:db:ba:ad:08:
        ac:6d:64:87:6c:72:67:18:1d:b1:33:36:26:2f:7f:73:
        91:30:38:94:d3:66:fd:79:71:e9:49:ad:22:55:62:e3:
        99:df:45:62:49:a3:17:6b:49:3f:4d:ca:a4:c8:db:a6:
        71:ea:76:01:31:e5:0c:1b:cf:1c:b6:80:1f:2d:64:4f:
        37:b2:7a:c5:e2:9c:84:d9:43:f9:c6:cf:8f:60:cc:ec
    Fingerprint (SHA-256):
        EE:36:74:D7:5C:08:9C:6E:2D:54:69:39:46:29:0F:80:E8:B2:D2:0B:3C:3F:C8:C0:70:CF:21:2F:D2:48:6F:27
    Fingerprint (SHA1):
        B7:81:A8:54:A8:86:9E:9A:7D:47:FA:ED:67:BB:BF:D4:8C:F9:E5:52
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6513: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6514: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6515: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121223 (0x1e67d507)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:05 2017
            Not After : Tue May 10 12:13:05 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:56:d1:99:6c:65:e7:fd:64:04:37:1c:84:76:9e:54:
                    4c:2f:15:88:b6:f8:d3:6b:ea:e6:e4:c5:4f:cb:10:6d:
                    4a:c6:46:78:72:90:3d:cb:be:d9:a3:66:52:e4:64:16:
                    21:38:a1:ba:f5:a3:72:0f:44:8b:8f:cc:33:a0:0c:3a:
                    fc:48:78:1a:ba:53:4b:08:0e:5c:00:d2:cf:63:ac:05:
                    c7:69:1e:12:fc:01:4d:0a:d7:23:22:c3:2b:16:d2:6e:
                    99:be:f4:7c:0c:c0:9c:02:33:86:9f:ad:eb:0d:ae:f9:
                    ed:aa:98:81:62:36:95:08:02:bb:33:e7:6b:68:0c:39:
                    79:fd:20:91:e4:19:8b:2f:47:87:b4:f5:2a:7f:83:a8:
                    c2:3e:d0:a3:74:60:5d:ca:56:ed:48:52:40:c2:c6:ed:
                    48:5f:5b:c7:c7:b3:1f:e2:b6:75:84:b0:f1:31:71:4b:
                    e1:63:8c:67:ec:82:c6:5c:cd:07:65:c7:39:9e:26:d3:
                    ec:97:6a:31:80:6c:3c:9d:32:1e:e2:df:02:4b:68:ae:
                    54:c3:1b:4a:6a:63:b6:ec:7e:42:0a:5b:7f:3a:63:8c:
                    bc:d9:ab:cd:7e:9d:54:56:b2:fb:15:bb:96:5f:eb:44:
                    85:b9:ad:dd:7c:45:44:e2:e6:61:8e:7f:09:5e:79:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:e3:a0:29:04:73:d9:7d:1e:05:26:ed:1b:e3:80:25:
        d5:6d:04:0c:47:5c:5f:f0:b4:0c:a2:b9:36:53:46:52:
        9e:17:88:fa:74:f8:ff:57:a8:b7:ef:f5:5a:37:cf:50:
        e3:a2:cd:62:3a:a9:9d:72:8a:19:f1:22:ec:56:2a:04:
        ff:87:17:a2:af:61:ed:6f:e6:94:7d:d6:f3:b5:28:e2:
        ce:fc:65:8c:78:42:f2:41:89:5f:81:7d:6c:9a:23:a5:
        58:99:4b:e9:27:18:ee:df:57:e9:45:a6:fa:75:a9:cd:
        11:0a:2e:15:06:be:8c:48:4a:09:5a:a2:c4:43:3b:03:
        cb:ba:4a:58:fb:7e:f1:e5:ee:5f:22:e7:20:14:cc:a7:
        70:93:39:66:07:a2:98:fc:b0:15:41:b7:48:0a:85:62:
        d9:8b:56:67:90:62:ab:34:db:49:19:df:6a:8f:a9:25:
        7a:2e:ec:33:77:8b:4b:b7:e9:ab:17:83:5a:e0:c1:ce:
        7b:c9:19:d6:f6:4c:65:eb:b9:ac:d2:bf:46:d3:c7:67:
        07:21:bb:51:7c:b3:c3:e4:09:87:a9:7d:e0:ca:d3:b1:
        03:ad:8b:3c:68:67:fd:e0:8e:e1:b7:2e:7e:69:8a:47:
        50:9c:79:12:53:9c:ae:de:f2:52:1b:80:de:26:70:ab
    Fingerprint (SHA-256):
        01:D7:56:A4:45:A0:97:D7:7E:7F:86:BD:63:92:A2:60:85:6E:14:C1:FE:A3:11:35:0D:02:4D:DF:D0:7F:3D:2E
    Fingerprint (SHA1):
        33:BF:B6:AE:8A:8C:36:18:5D:AC:48:AB:05:FF:C9:50:64:FA:91:7B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6516: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6517: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121224 (0x1e67d508)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:13:06 2017
            Not After : Tue May 10 12:13:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:a8:20:d4:de:10:d9:0e:56:f5:4f:45:83:85:29:99:
                    23:96:50:b3:26:f3:96:dc:1c:13:d8:c4:91:34:78:55:
                    21:22:6e:e1:bb:fb:40:9a:54:44:3d:ec:05:ae:5e:e3:
                    78:a7:5f:51:cb:f4:b1:27:52:d6:2a:67:a4:24:8f:7b:
                    fb:6b:79:a9:d6:9c:6c:24:28:a8:5d:9e:33:c0:68:f3:
                    ad:97:be:2b:77:8c:44:d6:06:fb:70:aa:1f:f7:0d:5b:
                    74:bd:0a:bc:6b:95:e1:e5:70:7e:87:43:b0:01:07:9a:
                    9c:84:ca:f6:8d:46:9d:74:70:2c:83:8d:4c:bb:bc:68:
                    30:49:a6:d1:89:44:df:bd:90:12:f6:3d:2a:f1:be:8d:
                    5a:c3:7e:d5:b9:e0:ed:87:bb:c0:2e:a3:e7:3c:39:06:
                    60:96:a4:43:41:b3:08:29:bd:30:d7:49:a0:be:ab:19:
                    cb:89:63:6b:11:cd:15:65:12:3a:0e:b8:4b:8f:ee:80:
                    b3:cb:73:c7:0f:27:d5:35:4d:8b:95:8f:f6:f9:70:6e:
                    b3:eb:c6:ff:85:c9:ee:0f:d4:e4:62:f2:ec:49:2b:d0:
                    43:61:58:5d:56:3c:24:0c:2d:54:05:f2:70:c8:e1:12:
                    38:82:a2:91:72:c4:e9:6c:1c:12:13:46:cf:32:25:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:dc:0c:8c:97:b4:43:ba:60:78:86:4d:96:ab:2d:74:
        3a:a0:88:0e:f1:70:b3:4f:6c:de:66:a7:06:f1:b5:52:
        9f:14:3c:08:e0:ec:c2:b5:e2:76:59:9a:d0:6d:7f:16:
        a6:40:fb:b3:71:a4:bd:d9:9a:df:cf:81:f2:d6:a4:e5:
        ef:c6:3b:a8:9a:e4:63:48:e0:d1:8a:2a:b5:3f:ed:ab:
        cc:dc:b7:9c:e6:b2:6c:d8:82:b9:77:d7:59:52:9f:e8:
        4c:94:db:0e:d8:3f:66:95:6c:40:8e:1b:b9:aa:e3:61:
        e3:56:80:86:f4:16:0e:77:64:f6:c3:7d:87:d7:4e:18:
        59:65:5a:9f:32:35:26:a3:fc:8c:84:dd:04:d2:56:49:
        77:97:23:87:35:ca:27:67:09:d4:4c:90:7a:bc:77:2a:
        77:cf:65:18:ad:3b:37:f0:49:8f:2a:62:83:bd:33:71:
        67:2a:6a:e2:3e:1b:7d:16:03:11:88:13:07:63:83:4f:
        5f:b6:61:6d:58:92:69:48:68:3c:8c:7b:28:a5:3b:17:
        62:3e:a3:ed:5c:2c:7d:99:07:0f:a7:6f:c1:84:7d:dd:
        db:40:48:68:e9:49:ff:9e:5c:f7:c1:44:43:69:ae:c4:
        5b:86:9c:d2:a0:81:85:c0:5b:ab:a7:a0:eb:1f:8b:ab
    Fingerprint (SHA-256):
        E8:88:D6:06:CB:5B:9F:AE:85:ED:E9:07:97:89:98:C2:F7:2B:5F:DE:4B:FA:7D:65:CE:15:84:F3:45:D1:03:05
    Fingerprint (SHA1):
        57:87:A5:E4:D4:3B:99:7C:0E:52:72:B3:A8:9A:67:A3:FF:0F:0A:9D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6518: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6519: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121226 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6520: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6521: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6522: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6523: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121227   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6524: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6525: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6526: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6527: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121228   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6528: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6529: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6530: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6531: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510121229   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6532: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6533: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6534: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6535: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510121230   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6536: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6537: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6538: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6539: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6540: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6541: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #6542: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121226 (0x1e67d50a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:08 2017
            Not After : Tue May 10 12:13:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:8e:d3:19:11:4a:47:39:0e:4a:84:2b:69:ff:19:7f:
                    29:e1:c4:db:21:4b:63:1e:f3:36:86:20:42:53:7d:8f:
                    78:ce:ae:28:b8:fe:da:07:eb:49:ad:d7:5f:2f:04:b9:
                    a9:61:7c:a3:f8:a6:27:1e:86:a5:b1:a3:a2:49:15:55:
                    d5:3f:7c:66:51:1c:5d:bb:58:18:19:2b:f0:a8:bc:0e:
                    36:8c:4c:36:8d:8e:a6:73:95:98:97:e9:60:d8:56:b9:
                    fb:0e:fa:e1:7e:b6:81:29:73:d3:d6:c2:ee:41:09:af:
                    68:c5:cd:ad:a1:9a:07:da:c7:12:e3:9d:e4:39:11:92:
                    e9:70:91:aa:d7:d4:f5:34:31:24:3e:80:b5:07:b0:ac:
                    c6:de:1b:69:f8:ae:80:b2:cd:6d:e6:d0:b8:52:44:a5:
                    de:ad:dd:30:41:59:6f:83:3b:19:c8:d7:f0:c5:e1:9a:
                    35:ec:be:a6:48:52:36:f7:a6:96:51:4f:c5:ab:5a:2a:
                    e8:3d:1b:72:8a:f9:d4:e8:a9:e8:11:74:41:3f:75:d6:
                    4e:87:7c:45:a6:e2:37:3b:7d:de:5e:8d:5a:6f:5b:49:
                    86:6e:0d:98:11:94:df:6b:75:e8:b1:0e:d9:56:63:02:
                    d2:7a:12:0a:16:36:63:eb:97:b9:11:4b:26:25:4f:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:ff:2a:e9:63:cd:a4:2d:31:13:70:b0:d9:3d:38:5a:
        84:14:55:8d:e9:97:78:0d:76:35:9c:fa:75:f9:30:bd:
        9a:83:1f:76:f0:31:dc:3e:9d:cc:fb:b5:5f:ab:1a:74:
        10:3a:1b:2d:51:2c:38:84:69:bb:ee:1f:8c:7f:30:e6:
        14:fb:aa:95:b5:37:cd:df:39:94:af:72:8c:4b:49:db:
        2b:f1:76:b4:eb:d8:a1:bc:be:d2:09:7e:da:ef:2e:b5:
        47:78:e5:4f:f1:98:5c:a2:ce:fa:db:5d:5d:63:d1:79:
        4d:a6:4f:ee:10:5a:23:6c:42:98:10:d7:a2:53:cf:91:
        4a:79:80:8b:2b:eb:1c:5b:1a:bc:83:e8:b4:9b:ce:51:
        bf:93:0d:fc:d0:ec:19:82:6f:1a:32:73:26:27:6d:26:
        c8:1b:f0:13:d2:d9:e3:d6:79:a3:fe:76:bd:77:55:8e:
        28:f8:d3:42:b5:f1:da:08:8f:f7:da:ef:85:5f:a2:37:
        b5:fb:f4:10:ea:2d:2a:5f:33:a6:49:2c:24:1d:c4:3c:
        68:a9:cb:67:67:02:90:f0:dc:ea:1a:fd:7a:65:9b:ef:
        b7:74:5f:4b:6d:fb:ed:d8:b0:98:e2:9a:40:76:af:d6:
        3a:9f:b1:45:e9:0d:d1:f6:ee:41:d4:ef:c7:c1:42:9a
    Fingerprint (SHA-256):
        C1:1B:12:B0:D3:39:06:FF:2F:13:AD:29:3C:5A:8B:BB:B0:5D:18:28:6F:D6:1F:40:4F:EA:FA:41:4E:37:65:4C
    Fingerprint (SHA1):
        4D:71:C2:7C:BD:FD:FB:AC:76:E5:B6:0D:AF:28:1C:5D:B0:D3:14:75
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6543: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6544: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121227 (0x1e67d50b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:09 2017
            Not After : Tue May 10 12:13:09 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:41:7d:0c:78:5f:8b:b2:95:5d:87:78:24:13:1f:96:
                    ab:10:85:b4:28:b4:95:a9:0e:44:74:e1:0d:9f:6a:b3:
                    ac:96:a8:4d:6a:3c:54:46:e3:66:12:55:99:99:64:ae:
                    79:08:b3:03:12:b8:74:52:d4:79:ae:62:2e:34:02:56:
                    cd:24:33:fb:11:ec:c7:22:e9:6f:8d:4f:02:59:f8:5e:
                    ad:1e:38:03:60:e4:63:8b:36:7e:7b:37:09:ea:91:56:
                    b1:25:87:c3:e6:64:d5:68:8d:79:99:f5:b9:b7:ae:1e:
                    13:47:e0:5e:91:77:09:c1:65:2a:91:fa:f3:c5:ee:fb:
                    0c:b7:de:21:ce:f2:08:01:8f:60:49:e6:d2:dc:33:c6:
                    71:9b:53:ef:23:72:10:71:ec:3a:ce:c1:5e:30:f1:03:
                    63:38:27:91:80:ed:27:17:7f:96:7f:76:bf:5f:7b:4e:
                    e5:95:cc:c2:0e:ca:a4:ab:39:80:f6:75:11:fa:f1:01:
                    52:93:dd:95:67:41:86:ff:99:21:be:9b:fd:77:21:9e:
                    68:07:f1:d6:03:4f:1a:2c:bc:a9:b5:15:b0:eb:54:36:
                    f3:71:6a:0f:40:e7:f5:d8:4e:7c:24:2b:22:e0:4d:2b:
                    d1:dd:22:6b:d2:a1:7f:7d:f0:9c:f1:a1:fa:b3:23:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7a:51:84:d2:6e:19:9a:38:9b:23:76:03:4e:fe:7c:64:
        0e:06:a9:92:a6:5a:a9:50:ff:33:eb:b7:f6:36:08:b6:
        d3:90:f2:93:06:e7:fa:3d:66:03:49:99:e5:9d:5f:8c:
        b5:46:04:ec:98:31:e5:25:a6:a2:91:ac:aa:19:07:02:
        97:d6:d4:d0:cb:5e:f9:03:3a:75:f8:2f:0d:a1:b4:00:
        3f:a7:45:10:5c:37:35:f8:95:22:3d:bc:6d:e6:b9:c5:
        ad:6f:d7:db:31:cb:0d:a1:74:57:db:d6:06:6b:e0:9d:
        8f:09:ff:80:0c:e2:a8:63:79:42:a2:b7:36:46:f8:4e:
        1e:36:a9:b5:ff:ce:25:a5:e1:4a:b2:a9:63:b5:18:46:
        82:8e:07:0c:0d:94:14:7e:45:d1:fb:bc:1a:61:51:d8:
        51:dc:4e:cb:b7:88:dc:b8:27:88:27:b7:6b:9f:1e:64:
        3c:db:44:ec:e9:59:09:9f:82:d2:35:84:2f:39:94:5f:
        aa:9f:7d:e5:76:c2:10:53:fa:87:50:19:0e:b0:ce:6e:
        7b:3e:dc:7b:b4:6b:8b:6e:4f:c7:b1:2b:73:cf:e6:8a:
        e9:01:c1:75:fa:bd:3e:d4:50:d6:f8:35:80:b5:2a:ce:
        52:f9:38:54:41:99:ae:77:8b:9d:e5:e4:7e:85:5d:70
    Fingerprint (SHA-256):
        CD:5A:BD:EF:2E:D5:5C:18:CA:8F:AA:31:73:3A:B5:C3:27:D6:A9:1B:D6:73:97:EF:D8:3B:B3:55:90:A7:AA:23
    Fingerprint (SHA1):
        9A:64:50:16:B6:C6:AE:00:5C:20:93:F9:60:97:0E:E4:E9:0A:FE:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6545: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6546: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6547: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121228 (0x1e67d50c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:13:09 2017
            Not After : Tue May 10 12:13:09 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:c6:49:44:ba:65:27:12:99:5d:d8:1d:19:42:7a:fe:
                    af:8c:79:e2:0e:be:b3:b0:82:8e:82:c9:8c:b8:0c:d9:
                    42:77:01:e0:1c:d4:46:34:ee:fe:94:6e:a3:07:d3:a4:
                    35:21:75:d7:7a:59:2d:b9:44:d1:10:35:a2:f7:c4:d3:
                    23:47:ca:14:7d:82:c4:04:b1:12:77:0f:de:53:8e:a5:
                    12:45:b2:1f:fd:24:13:cd:34:b5:29:51:45:92:71:ea:
                    00:02:f0:e5:fb:84:6b:03:18:1d:2f:80:a2:f2:21:16:
                    6e:29:44:ad:ed:a9:e9:7c:04:2b:41:17:1d:22:97:9a:
                    9a:b6:f1:74:52:21:5f:ec:06:b2:9c:b2:ea:05:d0:86:
                    fb:f3:60:ed:ad:17:13:74:91:2f:97:41:17:c4:ba:3d:
                    25:fd:d6:6c:0f:b0:df:cf:d8:03:76:da:98:93:89:35:
                    12:32:b6:d1:f9:59:29:a4:b1:cf:eb:e2:96:98:ad:c2:
                    85:c3:fb:70:07:db:03:2c:16:85:79:33:f8:ca:7b:9a:
                    6a:ed:68:0f:7f:b2:21:2b:42:08:26:01:2d:8e:d9:86:
                    d7:a5:7c:d7:96:4b:8b:e2:6b:c7:62:a2:bd:6a:c3:1a:
                    ec:10:a2:94:c3:a0:72:09:e9:fc:a1:03:0b:bf:bc:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:ce:04:9d:3f:eb:fe:95:4c:d8:57:29:0b:67:07:82:
        33:09:92:d0:e4:eb:58:d6:4b:fa:ff:12:e3:4f:45:26:
        ed:e0:8b:89:8e:b9:04:37:fd:8d:ca:28:8f:07:d1:dc:
        c4:ef:f2:92:fb:fe:52:20:1c:34:a5:4d:4d:83:df:75:
        e7:2d:af:65:24:c7:fa:f5:64:0d:5f:b3:c6:26:c4:8e:
        cf:58:e5:f3:af:12:ca:47:68:41:c9:39:11:39:2d:a7:
        37:b7:86:e9:fe:cf:f2:68:23:ff:97:43:bf:12:64:29:
        66:a1:22:d6:1c:ff:93:3e:44:99:55:96:d9:fe:eb:1e:
        3e:d5:93:a9:88:4b:26:11:f7:27:43:0c:29:0f:cb:ff:
        a9:8c:7d:f0:32:bb:63:a2:b5:1e:a8:55:bf:24:9c:da:
        14:09:8d:a3:ba:d6:a7:86:35:8b:2c:df:31:ed:e3:ca:
        c8:ab:f4:fe:7b:99:ad:1e:55:5d:50:1d:c2:8f:d0:d3:
        f7:fc:f0:ba:99:c0:ae:47:4d:ec:f9:37:99:65:ff:96:
        5b:78:7a:d3:ba:fd:2a:80:8c:1b:6d:7d:06:94:fb:cd:
        ac:31:48:e3:d4:77:b2:09:9f:b0:15:d2:26:b1:96:63:
        76:65:14:db:5a:76:0b:27:16:59:4a:85:67:1d:ec:ef
    Fingerprint (SHA-256):
        C3:3A:C0:C3:54:0E:EB:DD:F0:15:6C:72:E2:D0:6F:18:CE:8B:F8:C9:0F:D6:11:B5:5C:76:68:3C:4D:51:45:DE
    Fingerprint (SHA1):
        F6:5A:AA:CE:72:66:74:50:C7:22:D7:F3:A7:4E:48:AD:D0:5D:BA:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6548: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6549: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121231 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6550: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6551: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6552: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6553: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121232   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6554: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6555: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6556: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6557: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121233   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA1Root-510121140.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6558: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6559: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6560: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6561: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121234   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6562: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6563: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #6564: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121231 (0x1e67d50f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:12 2017
            Not After : Tue May 10 12:13:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:6c:aa:60:2b:26:a3:3c:54:ce:2b:92:90:2c:c6:81:
                    ab:4a:13:a7:94:93:56:5f:d9:2a:cb:ce:e9:6c:ea:ab:
                    e6:4f:0b:28:18:30:c4:ba:03:50:30:5b:ff:eb:2d:cb:
                    a2:4f:e2:a8:9a:6f:31:d7:44:10:47:c4:1f:23:ed:42:
                    ea:05:a1:cf:16:ba:9a:c3:24:89:fb:ba:b0:ae:cb:f5:
                    a1:70:0b:7b:15:94:a4:f1:8f:13:93:a6:be:2e:52:98:
                    77:61:de:dd:fa:94:7d:f2:e2:37:3c:80:5d:31:ea:0d:
                    12:d3:5d:f4:78:d8:c9:a3:47:69:a5:29:63:b6:e3:d9:
                    fd:28:dc:46:46:fa:80:90:37:3a:bf:16:4b:5d:69:a2:
                    bf:4d:e8:5a:78:27:6d:97:74:6d:b8:ba:eb:b2:b7:08:
                    c8:2e:e2:e5:d7:f0:d3:c7:01:34:20:47:24:c0:ba:37:
                    cd:ac:ae:41:9f:ff:88:ca:a9:a9:8c:a9:0a:f4:2f:b7:
                    7b:5a:d8:6c:b3:12:06:79:e5:d6:06:25:2e:e4:21:dd:
                    8a:45:15:fc:be:67:2f:2e:5a:b5:f6:0c:8a:3f:34:1d:
                    1f:20:5b:fb:6b:27:b2:6f:43:02:6a:91:9e:57:6d:ac:
                    5f:0d:76:df:80:ae:5b:8e:f0:8b:56:57:6a:33:3d:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7e:a4:73:ed:1b:23:b4:36:30:6c:6a:0e:0c:65:3e:95:
        9b:9f:21:8d:41:33:c9:54:69:88:2a:3f:81:db:2e:1d:
        5c:e0:7f:c1:1e:af:62:1e:08:f5:87:38:81:2a:2c:d3:
        2d:76:4a:4c:e1:2c:ad:34:9b:72:01:8a:5f:98:af:ad:
        88:d5:8a:f9:1e:c6:16:ef:9f:0b:6b:c5:28:8b:e6:6f:
        35:77:37:29:e8:7e:61:e5:d9:35:a9:9b:d2:73:a5:fc:
        4c:ee:a6:85:c8:5d:ee:4d:ec:1a:2e:1a:53:7b:4a:e1:
        9e:a6:78:6d:53:d3:c5:60:ac:4c:44:20:7b:2e:66:3e:
        17:ec:c5:d9:e1:9c:de:b7:26:18:c7:93:5c:6f:4a:51:
        57:ef:9d:52:20:27:de:f2:86:01:4e:ce:74:13:af:6f:
        ee:f1:84:a8:f0:20:c5:f2:af:80:6c:c7:12:36:fb:b9:
        63:55:0d:fe:cc:6f:7a:72:d9:24:57:a1:f9:95:a1:59:
        ee:7c:cc:47:cd:b1:75:ad:b2:f3:25:d7:79:f1:ca:ba:
        e4:84:42:9b:3b:1c:02:52:5c:ea:56:9c:1d:fc:70:02:
        2f:69:31:b9:4f:66:48:86:1e:a8:8e:72:63:e9:c4:d1:
        c3:90:5b:d3:af:01:80:11:4f:ca:74:0a:91:ae:7a:bd
    Fingerprint (SHA-256):
        A9:0C:BE:B9:A3:18:53:C6:F0:0D:D9:36:EE:E9:F4:B0:8B:2A:0D:83:4D:7D:83:6A:BB:D4:B9:30:50:67:F3:64
    Fingerprint (SHA1):
        89:02:FB:63:92:58:5D:AD:D2:89:EC:0A:B4:8F:1D:5D:22:B8:4C:33
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6565: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6566: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121235 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6567: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6568: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6569: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121236 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6570: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6571: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6572: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6573: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121237 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6574: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6575: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121238 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6576: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6577: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6578: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6579: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6580: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121239   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510121141.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6581: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6582: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6583: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6584: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121240   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6585: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6586: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6587: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6588: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121236 (0x1e67d514)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:15 2017
            Not After : Tue May 10 12:13:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:24:39:9a:79:05:b1:7c:5c:f6:ff:6d:7d:82:3a:c4:
                    9a:4b:a4:27:cc:6d:c2:ca:a1:29:1c:8a:7f:c7:5e:04:
                    d9:90:b0:cd:cc:5c:2c:d8:28:b2:3b:82:fb:dc:bf:0c:
                    1f:b6:8b:c8:e4:1e:07:24:5d:69:c7:df:23:8d:2b:18:
                    df:51:e0:c2:51:23:ff:c9:71:79:7e:0b:98:e3:5d:af:
                    95:b1:29:ab:fc:d1:3e:c3:71:0a:8b:50:70:71:0c:1f:
                    9d:5f:2b:60:db:41:48:20:83:54:1e:0a:10:1f:0b:fc:
                    4d:5a:7d:52:44:b5:b6:2b:07:c5:9a:d2:a1:37:e8:f9:
                    b6:f6:cc:fe:f7:71:39:5d:8d:6a:74:aa:25:2a:64:0c:
                    94:4e:60:e0:7a:3d:40:9f:af:e9:a4:68:50:a9:17:a4:
                    1c:51:70:70:50:6c:c6:c9:3e:55:14:2f:61:9c:43:b6:
                    7f:a4:70:db:2b:06:a2:54:d0:57:13:77:7f:2d:9e:77:
                    eb:bc:cf:04:ce:22:53:45:dd:3c:07:2a:7e:51:09:61:
                    45:c4:4c:84:64:d7:1d:3c:77:98:7a:c3:37:11:91:06:
                    eb:ad:00:22:36:fa:46:97:34:fe:07:b9:fa:d1:a0:8b:
                    1d:84:76:86:0c:e0:83:f5:03:c7:48:a5:16:c8:a2:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:2f:ab:e4:ec:ca:8b:d5:f0:78:9b:d8:d2:31:32:79:
        c5:ef:e9:a0:f5:32:dc:57:be:38:23:1b:79:9f:49:eb:
        db:d2:2c:61:9b:26:a9:50:6c:35:0a:b6:96:a2:19:f4:
        89:fb:e0:b3:39:81:a1:42:e2:f7:0f:90:2d:b5:2a:8b:
        34:88:40:c0:5a:1b:79:4c:13:c0:5f:ac:f6:d1:21:42:
        a1:9f:01:02:00:78:a2:6e:72:cd:80:b4:0a:60:97:ec:
        29:b8:7d:be:f1:a5:a7:c9:67:09:d5:4a:9b:5e:e2:5c:
        5a:83:3c:d6:d3:b8:b7:cb:6f:d4:d1:b1:c9:5d:fb:c0:
        fe:e2:91:e9:77:82:ed:7f:e4:4c:f4:0f:1c:ca:a2:48:
        0d:5f:54:31:9b:e7:89:41:c3:55:d4:45:70:e6:cd:d9:
        13:0b:9f:b8:c0:c4:bd:9f:ef:27:be:88:3a:c0:2d:1a:
        ff:81:7d:63:c8:be:c7:41:15:44:8a:b4:85:08:7e:08:
        82:27:4d:f9:5a:a8:dc:0e:d1:e3:89:30:fc:9d:22:eb:
        19:12:cf:ff:97:f1:51:57:42:8b:1a:83:ff:45:ee:e4:
        4c:b0:ed:f0:05:fa:1e:af:df:91:ec:97:8a:3b:40:2a:
        3f:f0:5d:c4:d0:7f:60:a3:fb:c8:f8:7d:78:a1:8b:14
    Fingerprint (SHA-256):
        73:8F:64:A8:22:5B:8A:60:BC:A1:16:DA:36:86:DF:FD:21:ED:18:70:3E:07:86:6A:2A:84:B4:FF:0F:78:13:E2
    Fingerprint (SHA1):
        CC:B1:EE:7F:73:5C:3E:D0:3C:95:9F:76:0E:B7:D5:E5:F3:48:F6:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6589: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121236 (0x1e67d514)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:15 2017
            Not After : Tue May 10 12:13:15 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:24:39:9a:79:05:b1:7c:5c:f6:ff:6d:7d:82:3a:c4:
                    9a:4b:a4:27:cc:6d:c2:ca:a1:29:1c:8a:7f:c7:5e:04:
                    d9:90:b0:cd:cc:5c:2c:d8:28:b2:3b:82:fb:dc:bf:0c:
                    1f:b6:8b:c8:e4:1e:07:24:5d:69:c7:df:23:8d:2b:18:
                    df:51:e0:c2:51:23:ff:c9:71:79:7e:0b:98:e3:5d:af:
                    95:b1:29:ab:fc:d1:3e:c3:71:0a:8b:50:70:71:0c:1f:
                    9d:5f:2b:60:db:41:48:20:83:54:1e:0a:10:1f:0b:fc:
                    4d:5a:7d:52:44:b5:b6:2b:07:c5:9a:d2:a1:37:e8:f9:
                    b6:f6:cc:fe:f7:71:39:5d:8d:6a:74:aa:25:2a:64:0c:
                    94:4e:60:e0:7a:3d:40:9f:af:e9:a4:68:50:a9:17:a4:
                    1c:51:70:70:50:6c:c6:c9:3e:55:14:2f:61:9c:43:b6:
                    7f:a4:70:db:2b:06:a2:54:d0:57:13:77:7f:2d:9e:77:
                    eb:bc:cf:04:ce:22:53:45:dd:3c:07:2a:7e:51:09:61:
                    45:c4:4c:84:64:d7:1d:3c:77:98:7a:c3:37:11:91:06:
                    eb:ad:00:22:36:fa:46:97:34:fe:07:b9:fa:d1:a0:8b:
                    1d:84:76:86:0c:e0:83:f5:03:c7:48:a5:16:c8:a2:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:2f:ab:e4:ec:ca:8b:d5:f0:78:9b:d8:d2:31:32:79:
        c5:ef:e9:a0:f5:32:dc:57:be:38:23:1b:79:9f:49:eb:
        db:d2:2c:61:9b:26:a9:50:6c:35:0a:b6:96:a2:19:f4:
        89:fb:e0:b3:39:81:a1:42:e2:f7:0f:90:2d:b5:2a:8b:
        34:88:40:c0:5a:1b:79:4c:13:c0:5f:ac:f6:d1:21:42:
        a1:9f:01:02:00:78:a2:6e:72:cd:80:b4:0a:60:97:ec:
        29:b8:7d:be:f1:a5:a7:c9:67:09:d5:4a:9b:5e:e2:5c:
        5a:83:3c:d6:d3:b8:b7:cb:6f:d4:d1:b1:c9:5d:fb:c0:
        fe:e2:91:e9:77:82:ed:7f:e4:4c:f4:0f:1c:ca:a2:48:
        0d:5f:54:31:9b:e7:89:41:c3:55:d4:45:70:e6:cd:d9:
        13:0b:9f:b8:c0:c4:bd:9f:ef:27:be:88:3a:c0:2d:1a:
        ff:81:7d:63:c8:be:c7:41:15:44:8a:b4:85:08:7e:08:
        82:27:4d:f9:5a:a8:dc:0e:d1:e3:89:30:fc:9d:22:eb:
        19:12:cf:ff:97:f1:51:57:42:8b:1a:83:ff:45:ee:e4:
        4c:b0:ed:f0:05:fa:1e:af:df:91:ec:97:8a:3b:40:2a:
        3f:f0:5d:c4:d0:7f:60:a3:fb:c8:f8:7d:78:a1:8b:14
    Fingerprint (SHA-256):
        73:8F:64:A8:22:5B:8A:60:BC:A1:16:DA:36:86:DF:FD:21:ED:18:70:3E:07:86:6A:2A:84:B4:FF:0F:78:13:E2
    Fingerprint (SHA1):
        CC:B1:EE:7F:73:5C:3E:D0:3C:95:9F:76:0E:B7:D5:E5:F3:48:F6:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6590: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6591: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121241 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6592: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6593: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6594: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121242 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6595: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6596: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6597: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6598: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121243 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6599: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6600: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121244 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6601: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6602: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6603: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6604: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6605: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121245   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510121142.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6606: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6607: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6608: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6609: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121246   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6610: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6611: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6612: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6613: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121247   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-BridgeNavy-510121143.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6614: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6615: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6616: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6617: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121248   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6618: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6619: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6620: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6621: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121242 (0x1e67d51a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:18 2017
            Not After : Tue May 10 12:13:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7c:c6:36:8c:1e:02:6d:c5:8a:12:ae:86:09:61:a9:
                    20:e3:34:81:b8:a8:56:10:69:41:ee:fc:78:65:51:02:
                    2a:8b:08:7d:72:6d:b8:80:c8:0b:e0:16:42:03:ca:73:
                    58:20:25:c0:51:d7:bb:00:13:79:3d:6e:a9:52:d8:2a:
                    3a:25:11:44:4a:73:cc:81:66:bf:e5:d9:ab:cf:96:56:
                    40:a7:37:df:4c:56:9c:17:58:f8:cc:2a:b0:55:f4:41:
                    e4:5f:55:13:2a:f9:59:bd:ce:93:36:b6:7c:a7:4f:e5:
                    b7:68:79:32:a5:a1:49:9b:c7:54:93:05:be:bc:6b:33:
                    a6:dd:fc:e1:60:54:de:59:a5:08:e3:3c:48:5e:df:ed:
                    3d:78:03:e5:40:06:1b:8b:83:73:5c:4d:1d:c3:78:8b:
                    79:80:96:a5:a3:de:5b:56:27:67:c8:a0:cd:6c:1e:a0:
                    63:70:ff:73:6f:0a:6b:54:56:dc:70:94:d4:8b:62:40:
                    8e:2d:3a:08:31:05:5a:ac:03:68:c4:ff:c9:79:70:a6:
                    30:16:f9:7c:f1:0f:8e:0b:e0:c4:ea:af:5a:5f:7a:b5:
                    2d:8b:b1:29:6d:c1:5b:cc:ff:3c:99:fe:20:60:8f:37:
                    ea:ce:4f:16:ef:22:1b:71:cb:df:73:1c:07:87:d0:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8b:f5:d6:6f:c6:ae:bf:53:05:57:d0:2f:11:68:e8:
        5b:a5:b8:ad:91:3e:88:a8:12:9f:61:c7:29:aa:60:13:
        88:c8:8f:76:b9:92:10:59:1f:c2:ef:10:87:92:02:f0:
        c0:ea:3f:86:1f:6f:c0:4f:45:32:6c:b5:e9:24:91:40:
        f4:56:cd:a3:04:87:c9:df:30:b3:f6:6b:a7:60:5b:a0:
        7d:27:d5:6b:d5:f1:a8:a1:01:c7:7b:e9:94:73:48:dc:
        a0:ae:2f:77:9f:ba:f7:36:e9:0c:2c:33:f7:e8:5e:3b:
        3f:19:e4:49:72:fd:dd:00:f9:62:02:13:35:f1:f6:24:
        6b:10:de:27:58:32:8d:82:9c:17:75:70:68:4d:ef:32:
        0b:9c:7f:02:77:ee:86:01:d6:72:2a:50:32:aa:26:3f:
        b0:3b:cf:27:a7:ef:d0:9c:bb:58:99:89:1b:69:0b:55:
        14:8a:f8:ff:9d:3c:8d:94:31:46:1f:bb:f1:f1:31:f2:
        a9:ba:37:77:0c:26:40:c8:f0:16:e8:d1:2c:dd:c1:52:
        c8:15:f7:d3:bc:ee:45:bd:b6:b1:6f:c0:f6:45:22:ca:
        22:22:45:0b:ad:c8:68:81:57:d2:82:72:88:50:31:fe:
        10:27:7b:5e:c1:b4:53:50:8f:d0:00:da:1b:cf:01:c0
    Fingerprint (SHA-256):
        A1:5D:B5:8C:81:AA:10:00:D9:D4:C1:86:05:A0:37:86:1F:B4:0E:48:1A:CD:CC:89:63:40:9F:90:C7:38:8A:91
    Fingerprint (SHA1):
        2C:9C:76:38:BA:A5:02:1B:19:3F:8A:04:23:B4:D7:2F:FD:45:44:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6622: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121242 (0x1e67d51a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:18 2017
            Not After : Tue May 10 12:13:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7c:c6:36:8c:1e:02:6d:c5:8a:12:ae:86:09:61:a9:
                    20:e3:34:81:b8:a8:56:10:69:41:ee:fc:78:65:51:02:
                    2a:8b:08:7d:72:6d:b8:80:c8:0b:e0:16:42:03:ca:73:
                    58:20:25:c0:51:d7:bb:00:13:79:3d:6e:a9:52:d8:2a:
                    3a:25:11:44:4a:73:cc:81:66:bf:e5:d9:ab:cf:96:56:
                    40:a7:37:df:4c:56:9c:17:58:f8:cc:2a:b0:55:f4:41:
                    e4:5f:55:13:2a:f9:59:bd:ce:93:36:b6:7c:a7:4f:e5:
                    b7:68:79:32:a5:a1:49:9b:c7:54:93:05:be:bc:6b:33:
                    a6:dd:fc:e1:60:54:de:59:a5:08:e3:3c:48:5e:df:ed:
                    3d:78:03:e5:40:06:1b:8b:83:73:5c:4d:1d:c3:78:8b:
                    79:80:96:a5:a3:de:5b:56:27:67:c8:a0:cd:6c:1e:a0:
                    63:70:ff:73:6f:0a:6b:54:56:dc:70:94:d4:8b:62:40:
                    8e:2d:3a:08:31:05:5a:ac:03:68:c4:ff:c9:79:70:a6:
                    30:16:f9:7c:f1:0f:8e:0b:e0:c4:ea:af:5a:5f:7a:b5:
                    2d:8b:b1:29:6d:c1:5b:cc:ff:3c:99:fe:20:60:8f:37:
                    ea:ce:4f:16:ef:22:1b:71:cb:df:73:1c:07:87:d0:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8b:f5:d6:6f:c6:ae:bf:53:05:57:d0:2f:11:68:e8:
        5b:a5:b8:ad:91:3e:88:a8:12:9f:61:c7:29:aa:60:13:
        88:c8:8f:76:b9:92:10:59:1f:c2:ef:10:87:92:02:f0:
        c0:ea:3f:86:1f:6f:c0:4f:45:32:6c:b5:e9:24:91:40:
        f4:56:cd:a3:04:87:c9:df:30:b3:f6:6b:a7:60:5b:a0:
        7d:27:d5:6b:d5:f1:a8:a1:01:c7:7b:e9:94:73:48:dc:
        a0:ae:2f:77:9f:ba:f7:36:e9:0c:2c:33:f7:e8:5e:3b:
        3f:19:e4:49:72:fd:dd:00:f9:62:02:13:35:f1:f6:24:
        6b:10:de:27:58:32:8d:82:9c:17:75:70:68:4d:ef:32:
        0b:9c:7f:02:77:ee:86:01:d6:72:2a:50:32:aa:26:3f:
        b0:3b:cf:27:a7:ef:d0:9c:bb:58:99:89:1b:69:0b:55:
        14:8a:f8:ff:9d:3c:8d:94:31:46:1f:bb:f1:f1:31:f2:
        a9:ba:37:77:0c:26:40:c8:f0:16:e8:d1:2c:dd:c1:52:
        c8:15:f7:d3:bc:ee:45:bd:b6:b1:6f:c0:f6:45:22:ca:
        22:22:45:0b:ad:c8:68:81:57:d2:82:72:88:50:31:fe:
        10:27:7b:5e:c1:b4:53:50:8f:d0:00:da:1b:cf:01:c0
    Fingerprint (SHA-256):
        A1:5D:B5:8C:81:AA:10:00:D9:D4:C1:86:05:A0:37:86:1F:B4:0E:48:1A:CD:CC:89:63:40:9F:90:C7:38:8A:91
    Fingerprint (SHA1):
        2C:9C:76:38:BA:A5:02:1B:19:3F:8A:04:23:B4:D7:2F:FD:45:44:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6623: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #6624: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121241 (0x1e67d519)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:13:17 2017
            Not After : Tue May 10 12:13:17 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:44:a0:dd:a9:9d:c2:fc:b9:1a:ea:d7:a6:de:ca:b4:
                    65:60:cc:3c:8e:63:d7:2c:ce:d6:58:8d:5a:c0:20:87:
                    14:7c:8d:32:d7:27:d7:7f:7f:87:97:dc:ac:80:f1:d4:
                    cd:82:eb:83:b4:11:13:69:73:5e:d2:69:47:b8:e3:80:
                    a1:b6:10:fa:21:d2:7b:3a:b4:40:17:34:cb:af:a0:bf:
                    3f:32:19:7e:08:ef:e5:4f:d4:02:84:6f:c6:b1:60:4b:
                    82:89:43:31:cc:dd:8e:42:ea:27:c7:f3:39:94:c5:6b:
                    ec:2b:f7:f5:38:40:b0:c1:56:65:de:29:a9:5e:3a:24:
                    8f:62:c0:b4:6a:ed:b3:45:ab:48:3f:b0:c1:ae:2b:cd:
                    6f:ff:f8:1a:bf:a0:23:94:44:2e:c7:9e:4b:f9:c5:c2:
                    08:0a:83:de:fc:f0:60:fc:fd:b5:67:fa:13:a4:fe:ee:
                    c5:45:41:8e:66:98:7e:91:34:cb:3d:08:68:bc:cd:34:
                    3e:aa:5a:17:f7:30:7b:c9:53:ff:c4:eb:e5:f5:4f:67:
                    b1:84:bc:0c:c1:30:a4:40:08:75:62:25:65:53:f4:2b:
                    25:55:a9:aa:70:23:e5:56:2a:c1:f9:b1:f3:4c:5e:54:
                    e3:ff:9a:28:47:22:9f:70:41:26:35:ea:de:1f:36:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:53:91:62:90:ce:b8:90:b7:0a:de:49:34:78:aa:f7:
        fd:89:c4:fe:fa:f3:05:f9:a6:33:cf:55:58:1f:b3:6f:
        6e:af:8e:81:8d:d6:93:8c:50:1c:3b:76:6b:73:42:83:
        48:78:d4:d8:8d:f0:a7:91:4a:3c:63:77:96:d1:f1:d9:
        ba:6e:6f:3b:03:39:a1:3f:da:8c:fc:01:69:28:22:c0:
        f7:a6:fa:1a:78:d5:6f:bd:c2:9d:da:12:21:d0:ae:90:
        fd:0e:c3:71:5e:42:c5:e0:2f:17:48:1e:93:da:34:94:
        7d:ea:99:e9:d2:dc:8b:28:59:cf:60:48:ce:af:e3:cb:
        dd:1e:89:92:92:db:3d:6d:e9:eb:ed:95:eb:a8:97:8b:
        90:f4:a0:46:8c:2b:a7:67:00:69:9e:f4:da:ee:1f:59:
        9f:c7:aa:ae:e2:31:70:63:d2:fa:dc:d7:a2:6a:cc:bf:
        80:2f:82:d4:8e:00:e3:c9:1e:ae:ae:00:0e:68:e4:76:
        8f:d3:33:99:13:89:0d:35:13:fb:a9:5d:95:8b:b2:48:
        4b:1d:93:bd:f9:1a:73:01:7c:49:46:05:e7:61:f4:92:
        af:17:67:fb:25:93:c9:dc:0d:c7:9f:b7:03:f7:06:7e:
        92:29:a7:c2:fc:19:c0:a9:c3:25:21:f5:f4:6e:58:d5
    Fingerprint (SHA-256):
        D4:24:9C:E0:B1:9D:74:B3:0A:C7:18:E2:AE:1A:49:E2:11:93:C9:33:EF:CE:63:67:55:CF:57:90:1E:74:65:64
    Fingerprint (SHA1):
        F8:E0:F0:E2:52:29:6F:55:FB:56:BB:97:FD:E8:ED:8B:4A:CA:D5:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6625: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121242 (0x1e67d51a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:18 2017
            Not After : Tue May 10 12:13:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7c:c6:36:8c:1e:02:6d:c5:8a:12:ae:86:09:61:a9:
                    20:e3:34:81:b8:a8:56:10:69:41:ee:fc:78:65:51:02:
                    2a:8b:08:7d:72:6d:b8:80:c8:0b:e0:16:42:03:ca:73:
                    58:20:25:c0:51:d7:bb:00:13:79:3d:6e:a9:52:d8:2a:
                    3a:25:11:44:4a:73:cc:81:66:bf:e5:d9:ab:cf:96:56:
                    40:a7:37:df:4c:56:9c:17:58:f8:cc:2a:b0:55:f4:41:
                    e4:5f:55:13:2a:f9:59:bd:ce:93:36:b6:7c:a7:4f:e5:
                    b7:68:79:32:a5:a1:49:9b:c7:54:93:05:be:bc:6b:33:
                    a6:dd:fc:e1:60:54:de:59:a5:08:e3:3c:48:5e:df:ed:
                    3d:78:03:e5:40:06:1b:8b:83:73:5c:4d:1d:c3:78:8b:
                    79:80:96:a5:a3:de:5b:56:27:67:c8:a0:cd:6c:1e:a0:
                    63:70:ff:73:6f:0a:6b:54:56:dc:70:94:d4:8b:62:40:
                    8e:2d:3a:08:31:05:5a:ac:03:68:c4:ff:c9:79:70:a6:
                    30:16:f9:7c:f1:0f:8e:0b:e0:c4:ea:af:5a:5f:7a:b5:
                    2d:8b:b1:29:6d:c1:5b:cc:ff:3c:99:fe:20:60:8f:37:
                    ea:ce:4f:16:ef:22:1b:71:cb:df:73:1c:07:87:d0:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8b:f5:d6:6f:c6:ae:bf:53:05:57:d0:2f:11:68:e8:
        5b:a5:b8:ad:91:3e:88:a8:12:9f:61:c7:29:aa:60:13:
        88:c8:8f:76:b9:92:10:59:1f:c2:ef:10:87:92:02:f0:
        c0:ea:3f:86:1f:6f:c0:4f:45:32:6c:b5:e9:24:91:40:
        f4:56:cd:a3:04:87:c9:df:30:b3:f6:6b:a7:60:5b:a0:
        7d:27:d5:6b:d5:f1:a8:a1:01:c7:7b:e9:94:73:48:dc:
        a0:ae:2f:77:9f:ba:f7:36:e9:0c:2c:33:f7:e8:5e:3b:
        3f:19:e4:49:72:fd:dd:00:f9:62:02:13:35:f1:f6:24:
        6b:10:de:27:58:32:8d:82:9c:17:75:70:68:4d:ef:32:
        0b:9c:7f:02:77:ee:86:01:d6:72:2a:50:32:aa:26:3f:
        b0:3b:cf:27:a7:ef:d0:9c:bb:58:99:89:1b:69:0b:55:
        14:8a:f8:ff:9d:3c:8d:94:31:46:1f:bb:f1:f1:31:f2:
        a9:ba:37:77:0c:26:40:c8:f0:16:e8:d1:2c:dd:c1:52:
        c8:15:f7:d3:bc:ee:45:bd:b6:b1:6f:c0:f6:45:22:ca:
        22:22:45:0b:ad:c8:68:81:57:d2:82:72:88:50:31:fe:
        10:27:7b:5e:c1:b4:53:50:8f:d0:00:da:1b:cf:01:c0
    Fingerprint (SHA-256):
        A1:5D:B5:8C:81:AA:10:00:D9:D4:C1:86:05:A0:37:86:1F:B4:0E:48:1A:CD:CC:89:63:40:9F:90:C7:38:8A:91
    Fingerprint (SHA1):
        2C:9C:76:38:BA:A5:02:1B:19:3F:8A:04:23:B4:D7:2F:FD:45:44:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6626: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121242 (0x1e67d51a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:18 2017
            Not After : Tue May 10 12:13:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:7c:c6:36:8c:1e:02:6d:c5:8a:12:ae:86:09:61:a9:
                    20:e3:34:81:b8:a8:56:10:69:41:ee:fc:78:65:51:02:
                    2a:8b:08:7d:72:6d:b8:80:c8:0b:e0:16:42:03:ca:73:
                    58:20:25:c0:51:d7:bb:00:13:79:3d:6e:a9:52:d8:2a:
                    3a:25:11:44:4a:73:cc:81:66:bf:e5:d9:ab:cf:96:56:
                    40:a7:37:df:4c:56:9c:17:58:f8:cc:2a:b0:55:f4:41:
                    e4:5f:55:13:2a:f9:59:bd:ce:93:36:b6:7c:a7:4f:e5:
                    b7:68:79:32:a5:a1:49:9b:c7:54:93:05:be:bc:6b:33:
                    a6:dd:fc:e1:60:54:de:59:a5:08:e3:3c:48:5e:df:ed:
                    3d:78:03:e5:40:06:1b:8b:83:73:5c:4d:1d:c3:78:8b:
                    79:80:96:a5:a3:de:5b:56:27:67:c8:a0:cd:6c:1e:a0:
                    63:70:ff:73:6f:0a:6b:54:56:dc:70:94:d4:8b:62:40:
                    8e:2d:3a:08:31:05:5a:ac:03:68:c4:ff:c9:79:70:a6:
                    30:16:f9:7c:f1:0f:8e:0b:e0:c4:ea:af:5a:5f:7a:b5:
                    2d:8b:b1:29:6d:c1:5b:cc:ff:3c:99:fe:20:60:8f:37:
                    ea:ce:4f:16:ef:22:1b:71:cb:df:73:1c:07:87:d0:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a2:8b:f5:d6:6f:c6:ae:bf:53:05:57:d0:2f:11:68:e8:
        5b:a5:b8:ad:91:3e:88:a8:12:9f:61:c7:29:aa:60:13:
        88:c8:8f:76:b9:92:10:59:1f:c2:ef:10:87:92:02:f0:
        c0:ea:3f:86:1f:6f:c0:4f:45:32:6c:b5:e9:24:91:40:
        f4:56:cd:a3:04:87:c9:df:30:b3:f6:6b:a7:60:5b:a0:
        7d:27:d5:6b:d5:f1:a8:a1:01:c7:7b:e9:94:73:48:dc:
        a0:ae:2f:77:9f:ba:f7:36:e9:0c:2c:33:f7:e8:5e:3b:
        3f:19:e4:49:72:fd:dd:00:f9:62:02:13:35:f1:f6:24:
        6b:10:de:27:58:32:8d:82:9c:17:75:70:68:4d:ef:32:
        0b:9c:7f:02:77:ee:86:01:d6:72:2a:50:32:aa:26:3f:
        b0:3b:cf:27:a7:ef:d0:9c:bb:58:99:89:1b:69:0b:55:
        14:8a:f8:ff:9d:3c:8d:94:31:46:1f:bb:f1:f1:31:f2:
        a9:ba:37:77:0c:26:40:c8:f0:16:e8:d1:2c:dd:c1:52:
        c8:15:f7:d3:bc:ee:45:bd:b6:b1:6f:c0:f6:45:22:ca:
        22:22:45:0b:ad:c8:68:81:57:d2:82:72:88:50:31:fe:
        10:27:7b:5e:c1:b4:53:50:8f:d0:00:da:1b:cf:01:c0
    Fingerprint (SHA-256):
        A1:5D:B5:8C:81:AA:10:00:D9:D4:C1:86:05:A0:37:86:1F:B4:0E:48:1A:CD:CC:89:63:40:9F:90:C7:38:8A:91
    Fingerprint (SHA1):
        2C:9C:76:38:BA:A5:02:1B:19:3F:8A:04:23:B4:D7:2F:FD:45:44:51
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6627: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6628: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121249 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6629: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6630: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6631: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121250 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6632: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6633: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #6634: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6635: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510121251   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6636: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6637: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #6638: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6639: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510121252   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6640: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6641: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6642: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6643: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510121253 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6644: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6645: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510121254 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6646: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6647: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #6648: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6649: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6650: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121255   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6651: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6652: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6653: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6654: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121256   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6655: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6656: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6657: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6658: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121257   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6659: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6660: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6661: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6662: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121258   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6663: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6664: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6665: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121249 (0x1e67d521)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:13:23 2017
            Not After : Tue May 10 12:13:23 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:6d:ac:b7:7c:0f:bb:df:79:13:e8:a2:27:3b:6c:3d:
                    b8:09:91:83:eb:0f:ff:2b:3d:69:7b:48:82:3c:a4:61:
                    f0:76:60:62:b7:78:7d:a0:c8:01:c7:8e:ba:ac:1e:50:
                    98:9f:8f:55:d1:57:33:18:f9:b5:1b:aa:03:f7:46:76:
                    0c:b2:88:29:00:29:48:6f:97:05:48:c3:5f:60:0d:c7:
                    1d:18:63:d6:e1:29:30:68:76:c8:75:df:53:1f:21:ea:
                    c4:95:ed:05:97:d2:fa:a2:b1:2f:64:df:c4:ee:ab:7e:
                    05:b0:dd:0c:71:65:f1:67:44:79:7f:ec:e1:80:5c:45:
                    c0:49:c9:91:a0:60:5b:51:1b:2c:e7:f1:2d:e9:fd:25:
                    6b:7a:2a:0f:e7:b6:10:d6:6f:10:c1:a9:d6:02:cc:67:
                    b7:92:e1:cd:c3:c8:b9:ce:64:2b:b4:3b:0b:8d:2e:58:
                    9b:33:ba:60:a2:0c:70:0b:88:12:df:da:a4:93:cf:3d:
                    86:24:ce:91:2e:e6:5e:fe:ed:72:54:05:e3:a9:f5:73:
                    47:b7:3a:30:68:25:ee:3c:58:c5:8e:cb:c8:4d:12:14:
                    4f:47:b6:e0:ad:49:41:98:3c:f4:12:60:9c:0e:bf:74:
                    6b:c1:c3:c0:1f:90:de:a1:9c:c2:39:b7:71:41:57:ff
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5b:3b:23:85:97:80:5c:c1:cc:f4:e8:aa:3e:06:f2:cf:
        8a:07:06:ed:74:b3:f9:72:f2:72:7c:ec:e2:7f:cc:58:
        15:e1:46:22:ab:24:bc:2f:9a:61:7b:53:dd:9f:b3:a0:
        7b:b2:a1:7b:cc:2d:c1:8a:47:27:6a:df:b3:f2:e0:29:
        c4:e1:ed:db:36:15:1a:43:44:bf:68:aa:3e:4f:66:a2:
        b0:9d:48:89:46:36:2f:35:66:4b:fc:fd:37:94:e0:bf:
        e5:50:a7:d4:df:24:0b:b9:17:2b:13:cc:6e:1b:7f:ec:
        ee:b3:3a:29:e8:59:e3:69:67:3c:af:bb:fc:ac:4e:80:
        27:d2:3c:bc:61:fc:1e:f5:d7:28:5e:79:58:ab:25:a9:
        73:be:5d:8e:fa:37:9b:60:11:83:ad:49:fb:0d:b2:85:
        33:ed:e3:ba:30:47:10:dd:24:3d:41:08:e5:0a:0f:ec:
        fc:f5:1f:e5:f3:3b:5e:a3:92:a9:34:37:c7:24:f0:f9:
        05:9a:45:7d:03:0f:24:95:c8:e2:7d:82:8f:5e:1a:24:
        4a:6d:ec:8d:07:c4:08:ea:21:64:4c:6d:d8:4a:6b:5c:
        62:d8:bf:01:54:fb:ba:b0:98:89:5f:80:a7:4d:bd:6a:
        48:e7:b6:cf:4f:a7:52:0b:87:0a:87:80:10:ba:ee:2e
    Fingerprint (SHA-256):
        8D:74:44:92:80:33:57:58:B8:9E:AE:06:11:93:74:B1:74:15:53:85:A8:3E:CA:E6:49:CC:47:8A:8B:B3:3C:68
    Fingerprint (SHA1):
        13:84:56:A1:A8:CD:37:26:ED:6F:54:47:85:F5:DA:CE:CD:4C:F9:5D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6666: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6667: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6668: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6669: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6670: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6671: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6672: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6673: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6674: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121250 (0x1e67d522)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:13:24 2017
            Not After : Tue May 10 12:13:24 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:5c:97:d4:d8:5c:b5:15:cf:f8:0c:9d:4e:2a:5a:a6:
                    7d:4c:33:23:b1:17:58:14:b3:bc:9c:43:34:cf:d2:bb:
                    66:22:61:78:02:3f:59:5a:d1:1d:5c:ee:a1:2f:1f:7a:
                    b2:67:39:85:a1:b8:9f:87:d7:7b:0f:b2:05:db:e5:8d:
                    b2:34:e6:f1:a6:80:b6:d1:01:0d:e5:de:eb:92:0b:4b:
                    a3:8c:be:5c:98:09:a2:c3:1d:ee:f5:84:ad:4e:80:2b:
                    c5:fc:a1:a0:c3:3c:ea:0c:66:3c:1d:46:f3:24:25:29:
                    ca:d7:db:71:a7:83:3d:2b:a3:a8:db:df:18:0e:f5:7d:
                    08:f4:ec:59:eb:35:69:4b:6f:b9:eb:2e:43:6a:4d:c8:
                    63:bd:da:bb:8f:7b:4a:b5:87:ce:83:16:45:07:4a:bf:
                    68:99:e7:3c:5a:43:be:53:4f:8e:b8:d7:08:38:d6:81:
                    ca:fb:8e:16:b7:a3:0d:91:3d:f3:61:fd:7a:d2:3c:93:
                    8b:ba:f0:45:fd:40:82:c1:f0:6e:7e:ea:d1:10:06:86:
                    c6:d8:04:b3:79:5a:e5:23:e2:2b:6d:54:d0:89:7f:f7:
                    20:1d:f9:37:59:00:ff:82:67:fe:42:06:2a:f8:5c:f1:
                    f7:a6:85:66:01:82:61:5f:a8:68:a6:75:51:1d:2b:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:17:76:0e:84:2a:27:ef:e4:a2:1b:b7:6c:42:bc:10:
        b0:bf:25:ae:50:50:51:23:78:56:aa:af:2e:25:77:e5:
        42:ae:10:d8:05:6c:aa:57:4e:f4:8f:f7:c8:44:67:17:
        35:ca:66:ea:67:54:91:75:90:1f:9b:db:17:16:ff:51:
        3d:47:71:85:20:83:bd:3f:0e:a4:71:b1:96:89:5f:0a:
        d1:40:69:c4:b8:8a:72:8b:ef:20:f6:ba:4a:da:53:d8:
        b1:e2:98:f6:79:ea:dc:92:3d:30:8d:28:0c:a9:48:e3:
        8d:1c:38:e1:89:58:20:0d:e1:09:ce:a5:ea:d5:d8:a2:
        0a:c0:84:7f:f1:28:84:0f:cf:a1:ab:4e:03:6a:31:3f:
        48:68:b9:41:c6:59:b9:ff:78:44:48:f7:bb:d5:2d:c3:
        e1:37:91:45:c3:64:15:81:cd:d6:88:45:76:60:7e:6a:
        5f:00:d3:6c:f3:d1:82:4d:6c:a1:1d:b7:71:b9:8c:c5:
        a0:5a:46:3d:9a:88:83:38:8a:80:2e:1d:8c:97:28:b8:
        ab:2f:2d:48:86:ec:80:3a:ff:25:11:1a:19:4f:f3:69:
        f6:dc:fd:c3:d6:c4:0c:dd:9f:5a:48:f7:49:d8:f8:83:
        e8:65:87:42:ca:16:36:70:e3:84:05:32:1a:23:8b:30
    Fingerprint (SHA-256):
        37:68:F1:62:C8:98:20:C7:E3:55:4E:FA:66:78:05:82:6A:A0:46:86:DC:E9:86:94:81:5D:93:28:9D:E8:02:3C
    Fingerprint (SHA1):
        B2:FF:6C:12:16:E8:60:96:47:68:C0:37:53:35:BB:BA:87:9B:11:2E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6675: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6676: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6677: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6678: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6679: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6680: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6681: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #6682: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #6683: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #6684: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #6685: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #6686: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #6687: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #6688: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6689: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6690: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #6691: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #6692: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6693: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121259 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6694: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6695: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6696: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6697: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121260   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6698: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6699: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6700: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6701: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121261   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6702: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6703: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6704: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6705: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510121262   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6706: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6707: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6708: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6709: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121263   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6710: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6711: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6712: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6713: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510121264   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6714: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6715: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6716: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6717: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510121265   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6718: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6719: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #6720: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6721: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510121266   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6722: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6723: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6724: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6725: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510121267   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6726: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6727: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6728: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121259 (0x1e67d52b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:31 2017
            Not After : Tue May 10 12:13:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:2d:fe:d0:4c:e3:b2:b0:9f:f9:2c:71:b6:99:b1:b2:
                    f1:89:4b:a1:ed:6f:90:91:20:a6:32:b6:53:78:96:53:
                    06:73:63:a3:18:66:43:0d:c6:f9:eb:4c:20:5e:d4:d6:
                    c4:f6:e5:8e:35:0a:b1:d7:78:3b:39:46:f5:38:fc:1d:
                    ed:9a:99:1d:81:fb:0f:9b:b2:50:26:16:6a:bd:36:a5:
                    22:1d:cd:94:ca:31:06:30:b2:ec:60:e2:68:80:1e:02:
                    1b:60:e2:c7:cc:3f:6b:ac:df:cf:e2:a0:c2:20:ab:89:
                    09:9a:46:64:bf:5d:1f:a9:0b:65:e0:db:f9:1d:0e:f1:
                    19:b7:b3:9e:ff:78:28:39:b4:c7:02:6f:bb:2d:47:52:
                    76:a1:49:ab:ac:50:85:ba:84:30:73:66:70:ad:35:69:
                    c6:50:93:a1:7e:e6:98:36:87:c8:94:b7:c9:b3:12:f6:
                    71:37:8a:e9:77:51:0e:ab:6c:3c:98:0f:57:3f:50:9f:
                    33:92:0b:90:04:e6:fb:dd:3c:04:30:1c:cb:fb:33:be:
                    dc:b7:bf:75:0e:2a:96:75:57:23:7b:4e:2d:f0:7b:74:
                    af:f2:07:d4:5e:94:fa:81:b1:00:40:09:4d:77:d7:ac:
                    68:a6:c7:7c:f8:d7:a8:31:54:65:df:c1:aa:a8:5e:97
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9d:47:1e:ad:99:82:d3:a8:43:8a:0e:
        3f:b3:bf:f5:4c:16:fa:7f:da:99:d0:0d:3a:61:fb:88:
        0c:02:1c:1e:d5:8a:81:ae:ad:f8:5b:04:70:d4:52:93:
        e4:ed:1b:af:df:76:9f:d5:7e:ac:42:cc:c7:07:49
    Fingerprint (SHA-256):
        44:3C:52:87:74:E0:DC:4E:E7:1C:A5:23:24:71:04:47:40:C4:45:FC:DD:4C:A3:45:80:D6:BB:4E:41:41:E3:44
    Fingerprint (SHA1):
        2E:1B:EF:54:E3:63:81:18:55:A2:43:B8:95:D8:26:30:01:A7:ED:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6729: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121259 (0x1e67d52b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:31 2017
            Not After : Tue May 10 12:13:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:2d:fe:d0:4c:e3:b2:b0:9f:f9:2c:71:b6:99:b1:b2:
                    f1:89:4b:a1:ed:6f:90:91:20:a6:32:b6:53:78:96:53:
                    06:73:63:a3:18:66:43:0d:c6:f9:eb:4c:20:5e:d4:d6:
                    c4:f6:e5:8e:35:0a:b1:d7:78:3b:39:46:f5:38:fc:1d:
                    ed:9a:99:1d:81:fb:0f:9b:b2:50:26:16:6a:bd:36:a5:
                    22:1d:cd:94:ca:31:06:30:b2:ec:60:e2:68:80:1e:02:
                    1b:60:e2:c7:cc:3f:6b:ac:df:cf:e2:a0:c2:20:ab:89:
                    09:9a:46:64:bf:5d:1f:a9:0b:65:e0:db:f9:1d:0e:f1:
                    19:b7:b3:9e:ff:78:28:39:b4:c7:02:6f:bb:2d:47:52:
                    76:a1:49:ab:ac:50:85:ba:84:30:73:66:70:ad:35:69:
                    c6:50:93:a1:7e:e6:98:36:87:c8:94:b7:c9:b3:12:f6:
                    71:37:8a:e9:77:51:0e:ab:6c:3c:98:0f:57:3f:50:9f:
                    33:92:0b:90:04:e6:fb:dd:3c:04:30:1c:cb:fb:33:be:
                    dc:b7:bf:75:0e:2a:96:75:57:23:7b:4e:2d:f0:7b:74:
                    af:f2:07:d4:5e:94:fa:81:b1:00:40:09:4d:77:d7:ac:
                    68:a6:c7:7c:f8:d7:a8:31:54:65:df:c1:aa:a8:5e:97
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9d:47:1e:ad:99:82:d3:a8:43:8a:0e:
        3f:b3:bf:f5:4c:16:fa:7f:da:99:d0:0d:3a:61:fb:88:
        0c:02:1c:1e:d5:8a:81:ae:ad:f8:5b:04:70:d4:52:93:
        e4:ed:1b:af:df:76:9f:d5:7e:ac:42:cc:c7:07:49
    Fingerprint (SHA-256):
        44:3C:52:87:74:E0:DC:4E:E7:1C:A5:23:24:71:04:47:40:C4:45:FC:DD:4C:A3:45:80:D6:BB:4E:41:41:E3:44
    Fingerprint (SHA1):
        2E:1B:EF:54:E3:63:81:18:55:A2:43:B8:95:D8:26:30:01:A7:ED:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6730: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121259 (0x1e67d52b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:31 2017
            Not After : Tue May 10 12:13:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:2d:fe:d0:4c:e3:b2:b0:9f:f9:2c:71:b6:99:b1:b2:
                    f1:89:4b:a1:ed:6f:90:91:20:a6:32:b6:53:78:96:53:
                    06:73:63:a3:18:66:43:0d:c6:f9:eb:4c:20:5e:d4:d6:
                    c4:f6:e5:8e:35:0a:b1:d7:78:3b:39:46:f5:38:fc:1d:
                    ed:9a:99:1d:81:fb:0f:9b:b2:50:26:16:6a:bd:36:a5:
                    22:1d:cd:94:ca:31:06:30:b2:ec:60:e2:68:80:1e:02:
                    1b:60:e2:c7:cc:3f:6b:ac:df:cf:e2:a0:c2:20:ab:89:
                    09:9a:46:64:bf:5d:1f:a9:0b:65:e0:db:f9:1d:0e:f1:
                    19:b7:b3:9e:ff:78:28:39:b4:c7:02:6f:bb:2d:47:52:
                    76:a1:49:ab:ac:50:85:ba:84:30:73:66:70:ad:35:69:
                    c6:50:93:a1:7e:e6:98:36:87:c8:94:b7:c9:b3:12:f6:
                    71:37:8a:e9:77:51:0e:ab:6c:3c:98:0f:57:3f:50:9f:
                    33:92:0b:90:04:e6:fb:dd:3c:04:30:1c:cb:fb:33:be:
                    dc:b7:bf:75:0e:2a:96:75:57:23:7b:4e:2d:f0:7b:74:
                    af:f2:07:d4:5e:94:fa:81:b1:00:40:09:4d:77:d7:ac:
                    68:a6:c7:7c:f8:d7:a8:31:54:65:df:c1:aa:a8:5e:97
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9d:47:1e:ad:99:82:d3:a8:43:8a:0e:
        3f:b3:bf:f5:4c:16:fa:7f:da:99:d0:0d:3a:61:fb:88:
        0c:02:1c:1e:d5:8a:81:ae:ad:f8:5b:04:70:d4:52:93:
        e4:ed:1b:af:df:76:9f:d5:7e:ac:42:cc:c7:07:49
    Fingerprint (SHA-256):
        44:3C:52:87:74:E0:DC:4E:E7:1C:A5:23:24:71:04:47:40:C4:45:FC:DD:4C:A3:45:80:D6:BB:4E:41:41:E3:44
    Fingerprint (SHA1):
        2E:1B:EF:54:E3:63:81:18:55:A2:43:B8:95:D8:26:30:01:A7:ED:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6731: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121259 (0x1e67d52b)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:31 2017
            Not After : Tue May 10 12:13:31 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ad:2d:fe:d0:4c:e3:b2:b0:9f:f9:2c:71:b6:99:b1:b2:
                    f1:89:4b:a1:ed:6f:90:91:20:a6:32:b6:53:78:96:53:
                    06:73:63:a3:18:66:43:0d:c6:f9:eb:4c:20:5e:d4:d6:
                    c4:f6:e5:8e:35:0a:b1:d7:78:3b:39:46:f5:38:fc:1d:
                    ed:9a:99:1d:81:fb:0f:9b:b2:50:26:16:6a:bd:36:a5:
                    22:1d:cd:94:ca:31:06:30:b2:ec:60:e2:68:80:1e:02:
                    1b:60:e2:c7:cc:3f:6b:ac:df:cf:e2:a0:c2:20:ab:89:
                    09:9a:46:64:bf:5d:1f:a9:0b:65:e0:db:f9:1d:0e:f1:
                    19:b7:b3:9e:ff:78:28:39:b4:c7:02:6f:bb:2d:47:52:
                    76:a1:49:ab:ac:50:85:ba:84:30:73:66:70:ad:35:69:
                    c6:50:93:a1:7e:e6:98:36:87:c8:94:b7:c9:b3:12:f6:
                    71:37:8a:e9:77:51:0e:ab:6c:3c:98:0f:57:3f:50:9f:
                    33:92:0b:90:04:e6:fb:dd:3c:04:30:1c:cb:fb:33:be:
                    dc:b7:bf:75:0e:2a:96:75:57:23:7b:4e:2d:f0:7b:74:
                    af:f2:07:d4:5e:94:fa:81:b1:00:40:09:4d:77:d7:ac:
                    68:a6:c7:7c:f8:d7:a8:31:54:65:df:c1:aa:a8:5e:97
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:9d:47:1e:ad:99:82:d3:a8:43:8a:0e:
        3f:b3:bf:f5:4c:16:fa:7f:da:99:d0:0d:3a:61:fb:88:
        0c:02:1c:1e:d5:8a:81:ae:ad:f8:5b:04:70:d4:52:93:
        e4:ed:1b:af:df:76:9f:d5:7e:ac:42:cc:c7:07:49
    Fingerprint (SHA-256):
        44:3C:52:87:74:E0:DC:4E:E7:1C:A5:23:24:71:04:47:40:C4:45:FC:DD:4C:A3:45:80:D6:BB:4E:41:41:E3:44
    Fingerprint (SHA1):
        2E:1B:EF:54:E3:63:81:18:55:A2:43:B8:95:D8:26:30:01:A7:ED:7C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #6732: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6733: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6734: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6735: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6736: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6737: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6738: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6739: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6740: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6741: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6742: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6743: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6744: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6745: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6746: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6747: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #6748: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6749: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6750: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6751: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6752: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6753: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6754: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6755: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6756: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6757: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6758: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6759: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121341Z
nextupdate=20180510121341Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:13:41 2017
    Next Update: Thu May 10 12:13:41 2018
    CRL Extensions:
chains.sh: #6760: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121341Z
nextupdate=20180510121341Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:13:41 2017
    Next Update: Thu May 10 12:13:41 2018
    CRL Extensions:
chains.sh: #6761: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121341Z
nextupdate=20180510121341Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:13:41 2017
    Next Update: Thu May 10 12:13:41 2018
    CRL Extensions:
chains.sh: #6762: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121341Z
nextupdate=20180510121341Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:13:41 2017
    Next Update: Thu May 10 12:13:41 2018
    CRL Extensions:
chains.sh: #6763: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121342Z
addcert 14 20170510121342Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:13:42 2017
    Next Update: Thu May 10 12:13:41 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:13:42 2017
    CRL Extensions:
chains.sh: #6764: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121343Z
addcert 15 20170510121343Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:13:43 2017
    Next Update: Thu May 10 12:13:41 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:13:43 2017
    CRL Extensions:
chains.sh: #6765: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6766: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6767: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6768: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #6769: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #6770: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #6771: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #6772: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #6773: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #6774: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:35 2017
            Not After : Tue May 10 12:13:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:a5:24:34:51:c0:82:88:5c:a9:61:3c:57:e5:fb:e9:
                    73:03:9c:f0:fa:2b:c1:44:f6:97:f4:3f:5c:b8:9f:02:
                    f3:7e:61:ce:f5:af:98:f8:a3:95:41:95:7b:b8:5b:4f:
                    b9:ea:52:b6:24:66:40:6e:c9:20:6d:5d:11:98:da:ea:
                    6e:5c:2a:f1:67:be:e1:9c:c8:db:71:ca:e9:5b:98:c4:
                    fb:51:2e:4f:fb:8c:92:52:78:29:af:8e:6b:a8:90:79:
                    04:a7:ff:e9:a2:1a:df:d9:c2:78:5a:71:f8:4c:58:6e:
                    a7:13:bf:4e:20:5e:7a:98:ac:1f:9d:1d:45:c8:59:34:
                    3b:44:c8:77:a0:04:01:57:bb:d0:71:03:41:c5:e0:77:
                    15:3e:c6:d3:84:ec:fb:89:b1:67:2c:74:21:b8:3c:40:
                    ac:4e:da:de:c0:2b:77:18:e2:92:6e:95:92:f7:c1:96:
                    e0:e8:a0:3a:24:11:24:ab:b1:50:50:fe:f8:0b:6d:33:
                    01:c4:38:f8:a6:23:71:42:43:2f:89:9b:68:ce:81:a3:
                    af:4d:dd:6c:2a:c7:3a:08:82:71:ab:1a:a1:c4:63:c0:
                    bf:ff:16:1b:8e:fb:c4:7f:ea:67:df:df:58:e9:37:84:
                    0d:36:5e:21:c0:35:db:62:4e:40:8a:96:3f:fa:c8:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:6b:a1:51:17:ad:d3:94:94:44:58:c2:99:1e:f0:0a:
        6f:4d:f8:6a:ac:ea:05:97:e3:ee:78:cc:95:3e:af:ec:
        2a:1e:4e:9a:89:ba:30:d7:26:61:a9:a7:44:bf:e9:86:
        b2:ca:82:6d:4c:5b:f0:6b:c6:73:28:bc:20:d1:a0:c8:
        18:f6:7f:38:78:99:6d:d1:8a:6e:e7:10:d1:78:c7:07:
        27:ea:6b:02:ac:e7:cf:1d:ae:04:8f:a5:18:60:86:cb:
        21:99:d3:6f:a1:19:de:57:0b:43:2e:a2:fd:ae:5d:12:
        ba:c5:49:90:51:b5:ca:56:6e:d9:7c:c3:90:30:9d:04:
        6e:76:40:c5:b7:e0:d7:53:6c:0a:97:59:c6:f2:89:23:
        35:18:8e:cc:d7:e9:7f:bc:4d:f5:38:be:95:81:4c:09:
        69:e0:3a:a9:58:85:f4:90:45:89:44:15:3b:f6:ae:35:
        ea:68:35:78:e2:91:26:b3:75:12:50:db:48:bf:39:74:
        1a:55:54:3c:93:18:9f:27:0b:d7:2c:ad:a2:80:dd:25:
        46:6c:ca:62:6c:df:56:6b:76:f3:c2:05:60:26:8b:19:
        3a:0f:19:57:2d:7f:26:56:7f:06:4e:45:b5:5c:37:04:
        e1:37:4e:85:cc:18:5d:19:c8:77:c2:87:55:59:50:79
    Fingerprint (SHA-256):
        77:0E:DE:75:8E:2A:EE:55:0E:13:12:E2:2C:D5:54:E6:A2:30:4E:13:95:60:10:30:0E:5B:EC:FC:C3:46:7A:A4
    Fingerprint (SHA1):
        18:D4:9E:AF:C0:CA:15:38:89:93:6E:A2:59:BA:68:24:C8:30:79:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6775: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6776: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:35 2017
            Not After : Tue May 10 12:13:35 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:a5:24:34:51:c0:82:88:5c:a9:61:3c:57:e5:fb:e9:
                    73:03:9c:f0:fa:2b:c1:44:f6:97:f4:3f:5c:b8:9f:02:
                    f3:7e:61:ce:f5:af:98:f8:a3:95:41:95:7b:b8:5b:4f:
                    b9:ea:52:b6:24:66:40:6e:c9:20:6d:5d:11:98:da:ea:
                    6e:5c:2a:f1:67:be:e1:9c:c8:db:71:ca:e9:5b:98:c4:
                    fb:51:2e:4f:fb:8c:92:52:78:29:af:8e:6b:a8:90:79:
                    04:a7:ff:e9:a2:1a:df:d9:c2:78:5a:71:f8:4c:58:6e:
                    a7:13:bf:4e:20:5e:7a:98:ac:1f:9d:1d:45:c8:59:34:
                    3b:44:c8:77:a0:04:01:57:bb:d0:71:03:41:c5:e0:77:
                    15:3e:c6:d3:84:ec:fb:89:b1:67:2c:74:21:b8:3c:40:
                    ac:4e:da:de:c0:2b:77:18:e2:92:6e:95:92:f7:c1:96:
                    e0:e8:a0:3a:24:11:24:ab:b1:50:50:fe:f8:0b:6d:33:
                    01:c4:38:f8:a6:23:71:42:43:2f:89:9b:68:ce:81:a3:
                    af:4d:dd:6c:2a:c7:3a:08:82:71:ab:1a:a1:c4:63:c0:
                    bf:ff:16:1b:8e:fb:c4:7f:ea:67:df:df:58:e9:37:84:
                    0d:36:5e:21:c0:35:db:62:4e:40:8a:96:3f:fa:c8:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:6b:a1:51:17:ad:d3:94:94:44:58:c2:99:1e:f0:0a:
        6f:4d:f8:6a:ac:ea:05:97:e3:ee:78:cc:95:3e:af:ec:
        2a:1e:4e:9a:89:ba:30:d7:26:61:a9:a7:44:bf:e9:86:
        b2:ca:82:6d:4c:5b:f0:6b:c6:73:28:bc:20:d1:a0:c8:
        18:f6:7f:38:78:99:6d:d1:8a:6e:e7:10:d1:78:c7:07:
        27:ea:6b:02:ac:e7:cf:1d:ae:04:8f:a5:18:60:86:cb:
        21:99:d3:6f:a1:19:de:57:0b:43:2e:a2:fd:ae:5d:12:
        ba:c5:49:90:51:b5:ca:56:6e:d9:7c:c3:90:30:9d:04:
        6e:76:40:c5:b7:e0:d7:53:6c:0a:97:59:c6:f2:89:23:
        35:18:8e:cc:d7:e9:7f:bc:4d:f5:38:be:95:81:4c:09:
        69:e0:3a:a9:58:85:f4:90:45:89:44:15:3b:f6:ae:35:
        ea:68:35:78:e2:91:26:b3:75:12:50:db:48:bf:39:74:
        1a:55:54:3c:93:18:9f:27:0b:d7:2c:ad:a2:80:dd:25:
        46:6c:ca:62:6c:df:56:6b:76:f3:c2:05:60:26:8b:19:
        3a:0f:19:57:2d:7f:26:56:7f:06:4e:45:b5:5c:37:04:
        e1:37:4e:85:cc:18:5d:19:c8:77:c2:87:55:59:50:79
    Fingerprint (SHA-256):
        77:0E:DE:75:8E:2A:EE:55:0E:13:12:E2:2C:D5:54:E6:A2:30:4E:13:95:60:10:30:0E:5B:EC:FC:C3:46:7A:A4
    Fingerprint (SHA1):
        18:D4:9E:AF:C0:CA:15:38:89:93:6E:A2:59:BA:68:24:C8:30:79:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6777: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6778: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6779: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121268 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6780: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6781: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6782: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6783: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510121269   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6784: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6785: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6786: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121159.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6787: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121144.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6788: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6789: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6790: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121159.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6791: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510121270   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6792: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6793: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6794: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121159.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6795: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121145.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6796: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6797: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6798: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6799: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510121271   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6800: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6801: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6802: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121159.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6803: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121146.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6804: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6805: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6806: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121159.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6807: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121147.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6808: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6809: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121349Z
nextupdate=20180510121349Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:13:49 2017
    Next Update: Thu May 10 12:13:49 2018
    CRL Extensions:
chains.sh: #6810: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121349Z
nextupdate=20180510121349Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:13:49 2017
    Next Update: Thu May 10 12:13:49 2018
    CRL Extensions:
chains.sh: #6811: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121349Z
nextupdate=20180510121349Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:13:49 2017
    Next Update: Thu May 10 12:13:49 2018
    CRL Extensions:
chains.sh: #6812: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121349Z
nextupdate=20180510121349Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:13:49 2017
    Next Update: Thu May 10 12:13:49 2018
    CRL Extensions:
chains.sh: #6813: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121350Z
addcert 20 20170510121350Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:13:50 2017
    Next Update: Thu May 10 12:13:49 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:13:50 2017
    CRL Extensions:
chains.sh: #6814: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121351Z
addcert 40 20170510121351Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:13:51 2017
    Next Update: Thu May 10 12:13:49 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:13:50 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:13:51 2017
    CRL Extensions:
chains.sh: #6815: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6816: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6817: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6818: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121268 (0x1e67d534)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:45 2017
            Not After : Tue May 10 12:13:45 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:53:f3:8b:6e:69:74:9a:55:6c:e0:6c:7d:45:bd:74:
                    dc:c8:02:64:3c:3b:a5:42:df:af:a2:57:60:36:28:60:
                    ee:16:49:49:f0:59:0c:a3:f9:6b:6b:1b:ae:51:06:d1:
                    af:25:03:5e:a7:93:9b:6a:6a:5c:07:38:01:3c:7b:b6:
                    6c:f2:66:5a:1d:09:58:11:5b:58:ee:a2:0e:22:19:00:
                    35:c5:98:b0:87:68:25:76:c3:da:97:47:9c:de:f9:59:
                    a3:6c:98:a8:e7:f1:9f:42:fc:38:87:cd:7d:c6:60:93:
                    15:fd:4b:d7:37:2f:f1:fc:f0:8e:d6:cc:75:9c:95:0a:
                    93:10:95:aa:4f:76:ce:a7:c8:78:38:46:73:63:72:6a:
                    99:cf:a8:b5:f6:37:1b:1e:d2:58:fa:0a:3f:50:a9:82:
                    97:47:c4:ce:95:60:45:4f:c9:1c:ef:de:4a:6b:e4:59:
                    f1:6a:20:4e:f1:1f:23:a7:d9:6e:71:52:b4:bb:f2:e3:
                    b4:8b:68:79:41:54:29:dc:64:9f:eb:d2:b8:ff:68:c4:
                    b9:68:0d:99:3b:ea:da:61:a4:1a:b4:a1:4d:bc:5f:da:
                    a3:f8:b9:d8:2f:a6:ec:70:3d:03:6b:37:69:be:e6:7c:
                    e8:29:4b:fa:3f:b7:0c:79:9b:18:c0:03:d1:74:cf:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:ea:54:50:57:9f:5d:e1:2b:46:df:55:6f:68:1f:90:
        0f:f9:e0:57:c6:f6:86:03:a4:8f:b1:59:9f:69:a7:02:
        e7:6e:f1:a2:27:ec:48:7f:98:73:70:5e:d5:17:d2:1e:
        35:01:28:5e:06:7f:54:af:ac:cb:3d:2d:d5:77:07:0e:
        1c:d8:b5:a3:01:4e:01:de:e8:a8:02:35:57:52:0b:1d:
        9e:64:17:f7:57:ee:aa:6b:1e:5e:f7:14:c0:6a:5a:2d:
        1e:f9:62:44:ff:9c:74:1b:83:9d:4a:22:8d:85:21:4a:
        95:4b:96:1d:af:3f:9a:e3:b3:04:f0:02:3a:aa:72:7f:
        28:74:c1:a5:63:b9:a6:c5:08:4a:65:c0:f7:28:a6:3d:
        36:ab:cf:85:75:a5:98:00:95:0d:37:0c:77:55:1f:a3:
        e0:17:cd:f3:7f:f8:5d:97:dc:b9:82:9f:e0:00:bb:b8:
        cb:73:70:a8:1b:0d:e9:08:6e:68:d4:9c:0a:23:05:06:
        0e:53:6d:a1:ea:89:e5:8d:1f:f0:6f:42:5b:39:f9:37:
        9d:11:fd:a9:3e:7d:d6:ea:f8:26:62:ce:27:99:85:60:
        31:82:5d:94:14:c2:c6:ef:32:4d:d8:df:8a:f9:21:96:
        99:96:f7:89:7f:76:89:43:cd:b3:d3:ef:1d:8c:32:13
    Fingerprint (SHA-256):
        8A:BA:4A:5B:DC:D6:47:E5:90:8C:FB:80:26:53:8E:85:6A:AD:A7:88:90:0F:A6:DC:2D:79:59:05:D8:4A:9D:AE
    Fingerprint (SHA1):
        89:DA:1B:50:0C:9F:25:B4:22:82:F5:D8:FA:73:77:91:DB:17:E7:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6819: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6820: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121268 (0x1e67d534)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:13:45 2017
            Not After : Tue May 10 12:13:45 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:53:f3:8b:6e:69:74:9a:55:6c:e0:6c:7d:45:bd:74:
                    dc:c8:02:64:3c:3b:a5:42:df:af:a2:57:60:36:28:60:
                    ee:16:49:49:f0:59:0c:a3:f9:6b:6b:1b:ae:51:06:d1:
                    af:25:03:5e:a7:93:9b:6a:6a:5c:07:38:01:3c:7b:b6:
                    6c:f2:66:5a:1d:09:58:11:5b:58:ee:a2:0e:22:19:00:
                    35:c5:98:b0:87:68:25:76:c3:da:97:47:9c:de:f9:59:
                    a3:6c:98:a8:e7:f1:9f:42:fc:38:87:cd:7d:c6:60:93:
                    15:fd:4b:d7:37:2f:f1:fc:f0:8e:d6:cc:75:9c:95:0a:
                    93:10:95:aa:4f:76:ce:a7:c8:78:38:46:73:63:72:6a:
                    99:cf:a8:b5:f6:37:1b:1e:d2:58:fa:0a:3f:50:a9:82:
                    97:47:c4:ce:95:60:45:4f:c9:1c:ef:de:4a:6b:e4:59:
                    f1:6a:20:4e:f1:1f:23:a7:d9:6e:71:52:b4:bb:f2:e3:
                    b4:8b:68:79:41:54:29:dc:64:9f:eb:d2:b8:ff:68:c4:
                    b9:68:0d:99:3b:ea:da:61:a4:1a:b4:a1:4d:bc:5f:da:
                    a3:f8:b9:d8:2f:a6:ec:70:3d:03:6b:37:69:be:e6:7c:
                    e8:29:4b:fa:3f:b7:0c:79:9b:18:c0:03:d1:74:cf:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:ea:54:50:57:9f:5d:e1:2b:46:df:55:6f:68:1f:90:
        0f:f9:e0:57:c6:f6:86:03:a4:8f:b1:59:9f:69:a7:02:
        e7:6e:f1:a2:27:ec:48:7f:98:73:70:5e:d5:17:d2:1e:
        35:01:28:5e:06:7f:54:af:ac:cb:3d:2d:d5:77:07:0e:
        1c:d8:b5:a3:01:4e:01:de:e8:a8:02:35:57:52:0b:1d:
        9e:64:17:f7:57:ee:aa:6b:1e:5e:f7:14:c0:6a:5a:2d:
        1e:f9:62:44:ff:9c:74:1b:83:9d:4a:22:8d:85:21:4a:
        95:4b:96:1d:af:3f:9a:e3:b3:04:f0:02:3a:aa:72:7f:
        28:74:c1:a5:63:b9:a6:c5:08:4a:65:c0:f7:28:a6:3d:
        36:ab:cf:85:75:a5:98:00:95:0d:37:0c:77:55:1f:a3:
        e0:17:cd:f3:7f:f8:5d:97:dc:b9:82:9f:e0:00:bb:b8:
        cb:73:70:a8:1b:0d:e9:08:6e:68:d4:9c:0a:23:05:06:
        0e:53:6d:a1:ea:89:e5:8d:1f:f0:6f:42:5b:39:f9:37:
        9d:11:fd:a9:3e:7d:d6:ea:f8:26:62:ce:27:99:85:60:
        31:82:5d:94:14:c2:c6:ef:32:4d:d8:df:8a:f9:21:96:
        99:96:f7:89:7f:76:89:43:cd:b3:d3:ef:1d:8c:32:13
    Fingerprint (SHA-256):
        8A:BA:4A:5B:DC:D6:47:E5:90:8C:FB:80:26:53:8E:85:6A:AD:A7:88:90:0F:A6:DC:2D:79:59:05:D8:4A:9D:AE
    Fingerprint (SHA1):
        89:DA:1B:50:0C:9F:25:B4:22:82:F5:D8:FA:73:77:91:DB:17:E7:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6821: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6822: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6823: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121272 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6824: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6825: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6826: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6827: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121273   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6828: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6829: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6830: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6831: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121274   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6832: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6833: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6834: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6835: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510121275   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6836: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6837: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #6838: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121276 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6839: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #6840: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #6841: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6842: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510121277   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6843: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6844: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6845: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6846: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510121278   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6847: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6848: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #6849: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #6850: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #6851: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121272 (0x1e67d538)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:13:52 2017
            Not After : Tue May 10 12:13:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:20:24:29:bf:ee:61:12:30:62:c6:29:cd:47:80:11:
                    91:6d:59:b3:33:39:08:b8:63:23:8f:3c:ec:b2:4f:4f:
                    f4:b8:d2:31:07:51:a0:c2:19:82:d7:50:8d:dd:7a:e8:
                    f3:78:fa:70:a4:9d:0c:20:f7:73:53:1a:0a:a4:35:89:
                    f1:b8:90:f2:e1:ba:82:94:70:f2:99:74:bd:15:57:04:
                    c1:b1:a1:3d:da:c8:ae:11:bd:3d:10:e9:49:f4:d3:60:
                    8a:1d:79:50:67:3d:c0:7c:19:22:ed:3c:c9:97:17:8c:
                    3b:db:44:94:71:fd:31:62:dd:0d:08:7a:2c:ef:08:19:
                    fe:61:a0:22:fb:f7:9a:d7:90:0d:7a:71:e9:3d:07:a0:
                    fd:81:a9:0a:d1:f7:66:f3:fa:73:41:5f:f4:91:13:18:
                    c4:f8:c0:2b:8f:a0:10:3d:f8:24:c9:36:95:49:5a:0f:
                    a8:c8:85:12:3d:95:64:a7:62:d4:03:78:6d:ae:78:1d:
                    04:17:8e:51:83:15:18:8b:bd:4c:21:ae:57:f5:1e:b0:
                    43:c9:ed:be:7a:24:61:ce:d4:12:37:e1:d5:82:17:6a:
                    8a:6b:bf:58:95:7f:52:ec:09:aa:3e:21:10:c9:22:43:
                    a3:f6:46:2e:f1:de:c2:6f:f5:39:47:7f:8c:49:0f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:e1:ff:2a:d4:a2:55:dc:11:da:10:81:69:05:fe:67:
        39:fd:81:dc:4a:b3:a2:34:48:45:a9:46:1c:62:2c:8d:
        b8:6c:e3:3b:27:8a:6a:3e:4a:19:6f:25:3d:bd:0c:75:
        75:95:b8:77:43:29:ad:a1:95:20:5e:ec:45:d7:c0:5a:
        a9:74:a7:e3:88:78:1d:d3:e3:08:4c:d6:b3:7a:03:b4:
        b7:7d:77:a1:ea:58:ec:ab:17:5e:32:c2:c6:d0:97:2b:
        23:da:e5:18:38:82:06:7e:2b:a7:db:7f:d1:7e:46:49:
        1a:78:89:d3:61:7f:04:d9:69:e0:72:a2:fb:d4:ef:44:
        b3:d1:32:da:54:fb:18:60:73:36:64:8f:ab:94:aa:2a:
        fe:c1:55:98:9e:04:cf:b6:47:16:b8:03:7f:ab:20:0a:
        1d:e0:a7:c8:84:19:c7:df:5f:83:e9:b8:5d:98:b1:99:
        39:9e:74:84:16:75:50:e2:78:5f:cd:1e:59:68:a4:39:
        62:9c:a4:f6:76:b8:7b:a7:ea:88:91:14:75:bb:90:0a:
        46:55:c8:84:98:77:1e:1f:f3:2e:91:6b:79:fc:40:48:
        16:a3:05:ee:90:1e:e8:1c:fd:b4:a8:e6:89:b9:86:94:
        82:a3:01:88:f5:c8:78:35:46:52:1b:c3:b0:71:9c:41
    Fingerprint (SHA-256):
        C9:2B:04:DB:67:D9:D2:82:D3:25:B3:55:E0:F6:17:0E:B8:35:DB:08:43:63:F7:80:D5:F4:DD:F6:36:4E:70:31
    Fingerprint (SHA1):
        2B:CA:B8:BD:B9:11:63:81:F7:F4:CA:DF:9B:51:E6:A1:33:A8:13:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6852: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121274 (0x1e67d53a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:13:55 2017
            Not After : Tue May 10 12:13:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:25:9a:e5:2a:54:7e:fc:2b:91:56:5f:69:f6:23:7c:
                    f3:ec:4b:17:cc:4c:75:15:9a:63:bf:25:e5:cd:4d:52:
                    4b:5c:27:43:0c:ee:45:bd:68:0a:54:22:d7:5c:bf:60:
                    cf:8a:dd:ea:b8:82:0b:2b:fd:be:af:6e:45:77:2a:51:
                    fd:58:69:7a:ea:d0:b4:f6:63:36:08:24:2e:87:9b:e6:
                    05:a4:0c:0b:29:44:f5:24:68:de:0f:6c:e8:99:4f:15:
                    7f:ac:cc:fb:9a:db:96:b6:79:8b:c6:32:80:11:5e:b3:
                    27:d8:44:8c:85:e6:5c:ad:10:6b:4d:71:64:70:0b:8c:
                    84:10:cb:8b:58:9c:c0:f0:27:87:31:65:d0:a3:ff:aa:
                    db:85:f6:d1:27:6d:68:7a:60:e6:5c:e0:1d:4c:13:7a:
                    2c:5a:b3:13:5e:ea:7c:a3:a9:08:8a:59:b0:40:7d:03:
                    6b:28:54:a4:8c:d9:77:ed:5b:50:39:33:38:f4:e9:db:
                    aa:e6:e4:7c:de:e7:d1:a4:15:2a:01:80:49:cb:9c:3e:
                    42:07:ff:cf:9a:d3:93:2d:4f:1a:6e:d7:fc:1b:d9:84:
                    0b:87:97:27:69:21:32:67:d1:de:23:27:39:ac:31:8a:
                    19:00:a4:63:5b:26:f3:94:d4:f2:14:10:5a:77:c7:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:cb:78:e3:b0:92:6d:67:e5:ea:c0:29:af:93:8d:cc:
        24:79:05:a8:71:82:2c:8e:14:9b:08:2b:b0:b1:f4:16:
        22:a5:63:f3:5b:ce:95:64:9a:90:78:5a:66:e6:a6:17:
        e9:66:b9:a8:b0:aa:c0:35:4a:c0:7a:80:1b:01:87:ef:
        39:8e:1b:a4:11:9d:53:65:15:72:0a:4b:d8:65:aa:a6:
        39:8b:f3:ae:85:af:be:d7:40:37:c9:b3:a8:b1:38:d3:
        a9:b2:89:65:ac:54:7c:30:90:d6:f5:54:33:12:77:02:
        3b:1b:a5:f7:aa:f4:c7:cf:65:22:bd:8c:f2:2b:5f:2f:
        22:83:ee:fa:2c:6c:b8:b2:3f:e3:a6:00:77:f7:1a:05:
        7d:4c:c1:1d:e0:cd:a6:21:21:1e:97:85:b4:26:a9:48:
        54:3d:b9:4f:64:79:6d:d7:bb:d3:b4:36:11:3d:b5:0c:
        33:4b:03:c2:88:86:7c:56:b8:c2:8b:2f:e8:6a:b7:2b:
        20:12:33:d1:f8:c1:b9:1e:9c:d6:de:2b:bf:f9:85:02:
        77:a1:5d:be:89:da:11:a5:dd:5c:4e:fc:8b:5a:c3:26:
        e3:f4:39:da:7f:01:d7:5b:0c:53:3f:90:97:6b:29:6d:
        9a:86:5a:fa:a5:57:46:bf:99:c9:07:ce:71:9d:ca:46
    Fingerprint (SHA-256):
        94:A7:5C:0F:98:2C:CA:4B:36:E9:CA:C0:D2:79:C7:63:2D:28:F7:8F:AF:30:A1:DB:F5:7A:E8:0C:81:88:12:3E
    Fingerprint (SHA1):
        98:A9:6E:16:46:EB:F6:2B:D5:7E:AE:8D:61:75:3A:FD:97:8F:DF:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6853: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121272 (0x1e67d538)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:13:52 2017
            Not After : Tue May 10 12:13:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:20:24:29:bf:ee:61:12:30:62:c6:29:cd:47:80:11:
                    91:6d:59:b3:33:39:08:b8:63:23:8f:3c:ec:b2:4f:4f:
                    f4:b8:d2:31:07:51:a0:c2:19:82:d7:50:8d:dd:7a:e8:
                    f3:78:fa:70:a4:9d:0c:20:f7:73:53:1a:0a:a4:35:89:
                    f1:b8:90:f2:e1:ba:82:94:70:f2:99:74:bd:15:57:04:
                    c1:b1:a1:3d:da:c8:ae:11:bd:3d:10:e9:49:f4:d3:60:
                    8a:1d:79:50:67:3d:c0:7c:19:22:ed:3c:c9:97:17:8c:
                    3b:db:44:94:71:fd:31:62:dd:0d:08:7a:2c:ef:08:19:
                    fe:61:a0:22:fb:f7:9a:d7:90:0d:7a:71:e9:3d:07:a0:
                    fd:81:a9:0a:d1:f7:66:f3:fa:73:41:5f:f4:91:13:18:
                    c4:f8:c0:2b:8f:a0:10:3d:f8:24:c9:36:95:49:5a:0f:
                    a8:c8:85:12:3d:95:64:a7:62:d4:03:78:6d:ae:78:1d:
                    04:17:8e:51:83:15:18:8b:bd:4c:21:ae:57:f5:1e:b0:
                    43:c9:ed:be:7a:24:61:ce:d4:12:37:e1:d5:82:17:6a:
                    8a:6b:bf:58:95:7f:52:ec:09:aa:3e:21:10:c9:22:43:
                    a3:f6:46:2e:f1:de:c2:6f:f5:39:47:7f:8c:49:0f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:e1:ff:2a:d4:a2:55:dc:11:da:10:81:69:05:fe:67:
        39:fd:81:dc:4a:b3:a2:34:48:45:a9:46:1c:62:2c:8d:
        b8:6c:e3:3b:27:8a:6a:3e:4a:19:6f:25:3d:bd:0c:75:
        75:95:b8:77:43:29:ad:a1:95:20:5e:ec:45:d7:c0:5a:
        a9:74:a7:e3:88:78:1d:d3:e3:08:4c:d6:b3:7a:03:b4:
        b7:7d:77:a1:ea:58:ec:ab:17:5e:32:c2:c6:d0:97:2b:
        23:da:e5:18:38:82:06:7e:2b:a7:db:7f:d1:7e:46:49:
        1a:78:89:d3:61:7f:04:d9:69:e0:72:a2:fb:d4:ef:44:
        b3:d1:32:da:54:fb:18:60:73:36:64:8f:ab:94:aa:2a:
        fe:c1:55:98:9e:04:cf:b6:47:16:b8:03:7f:ab:20:0a:
        1d:e0:a7:c8:84:19:c7:df:5f:83:e9:b8:5d:98:b1:99:
        39:9e:74:84:16:75:50:e2:78:5f:cd:1e:59:68:a4:39:
        62:9c:a4:f6:76:b8:7b:a7:ea:88:91:14:75:bb:90:0a:
        46:55:c8:84:98:77:1e:1f:f3:2e:91:6b:79:fc:40:48:
        16:a3:05:ee:90:1e:e8:1c:fd:b4:a8:e6:89:b9:86:94:
        82:a3:01:88:f5:c8:78:35:46:52:1b:c3:b0:71:9c:41
    Fingerprint (SHA-256):
        C9:2B:04:DB:67:D9:D2:82:D3:25:B3:55:E0:F6:17:0E:B8:35:DB:08:43:63:F7:80:D5:F4:DD:F6:36:4E:70:31
    Fingerprint (SHA1):
        2B:CA:B8:BD:B9:11:63:81:F7:F4:CA:DF:9B:51:E6:A1:33:A8:13:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6854: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #6855: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121272 (0x1e67d538)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:13:52 2017
            Not After : Tue May 10 12:13:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:20:24:29:bf:ee:61:12:30:62:c6:29:cd:47:80:11:
                    91:6d:59:b3:33:39:08:b8:63:23:8f:3c:ec:b2:4f:4f:
                    f4:b8:d2:31:07:51:a0:c2:19:82:d7:50:8d:dd:7a:e8:
                    f3:78:fa:70:a4:9d:0c:20:f7:73:53:1a:0a:a4:35:89:
                    f1:b8:90:f2:e1:ba:82:94:70:f2:99:74:bd:15:57:04:
                    c1:b1:a1:3d:da:c8:ae:11:bd:3d:10:e9:49:f4:d3:60:
                    8a:1d:79:50:67:3d:c0:7c:19:22:ed:3c:c9:97:17:8c:
                    3b:db:44:94:71:fd:31:62:dd:0d:08:7a:2c:ef:08:19:
                    fe:61:a0:22:fb:f7:9a:d7:90:0d:7a:71:e9:3d:07:a0:
                    fd:81:a9:0a:d1:f7:66:f3:fa:73:41:5f:f4:91:13:18:
                    c4:f8:c0:2b:8f:a0:10:3d:f8:24:c9:36:95:49:5a:0f:
                    a8:c8:85:12:3d:95:64:a7:62:d4:03:78:6d:ae:78:1d:
                    04:17:8e:51:83:15:18:8b:bd:4c:21:ae:57:f5:1e:b0:
                    43:c9:ed:be:7a:24:61:ce:d4:12:37:e1:d5:82:17:6a:
                    8a:6b:bf:58:95:7f:52:ec:09:aa:3e:21:10:c9:22:43:
                    a3:f6:46:2e:f1:de:c2:6f:f5:39:47:7f:8c:49:0f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:e1:ff:2a:d4:a2:55:dc:11:da:10:81:69:05:fe:67:
        39:fd:81:dc:4a:b3:a2:34:48:45:a9:46:1c:62:2c:8d:
        b8:6c:e3:3b:27:8a:6a:3e:4a:19:6f:25:3d:bd:0c:75:
        75:95:b8:77:43:29:ad:a1:95:20:5e:ec:45:d7:c0:5a:
        a9:74:a7:e3:88:78:1d:d3:e3:08:4c:d6:b3:7a:03:b4:
        b7:7d:77:a1:ea:58:ec:ab:17:5e:32:c2:c6:d0:97:2b:
        23:da:e5:18:38:82:06:7e:2b:a7:db:7f:d1:7e:46:49:
        1a:78:89:d3:61:7f:04:d9:69:e0:72:a2:fb:d4:ef:44:
        b3:d1:32:da:54:fb:18:60:73:36:64:8f:ab:94:aa:2a:
        fe:c1:55:98:9e:04:cf:b6:47:16:b8:03:7f:ab:20:0a:
        1d:e0:a7:c8:84:19:c7:df:5f:83:e9:b8:5d:98:b1:99:
        39:9e:74:84:16:75:50:e2:78:5f:cd:1e:59:68:a4:39:
        62:9c:a4:f6:76:b8:7b:a7:ea:88:91:14:75:bb:90:0a:
        46:55:c8:84:98:77:1e:1f:f3:2e:91:6b:79:fc:40:48:
        16:a3:05:ee:90:1e:e8:1c:fd:b4:a8:e6:89:b9:86:94:
        82:a3:01:88:f5:c8:78:35:46:52:1b:c3:b0:71:9c:41
    Fingerprint (SHA-256):
        C9:2B:04:DB:67:D9:D2:82:D3:25:B3:55:E0:F6:17:0E:B8:35:DB:08:43:63:F7:80:D5:F4:DD:F6:36:4E:70:31
    Fingerprint (SHA1):
        2B:CA:B8:BD:B9:11:63:81:F7:F4:CA:DF:9B:51:E6:A1:33:A8:13:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6856: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121274 (0x1e67d53a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:13:55 2017
            Not After : Tue May 10 12:13:55 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:25:9a:e5:2a:54:7e:fc:2b:91:56:5f:69:f6:23:7c:
                    f3:ec:4b:17:cc:4c:75:15:9a:63:bf:25:e5:cd:4d:52:
                    4b:5c:27:43:0c:ee:45:bd:68:0a:54:22:d7:5c:bf:60:
                    cf:8a:dd:ea:b8:82:0b:2b:fd:be:af:6e:45:77:2a:51:
                    fd:58:69:7a:ea:d0:b4:f6:63:36:08:24:2e:87:9b:e6:
                    05:a4:0c:0b:29:44:f5:24:68:de:0f:6c:e8:99:4f:15:
                    7f:ac:cc:fb:9a:db:96:b6:79:8b:c6:32:80:11:5e:b3:
                    27:d8:44:8c:85:e6:5c:ad:10:6b:4d:71:64:70:0b:8c:
                    84:10:cb:8b:58:9c:c0:f0:27:87:31:65:d0:a3:ff:aa:
                    db:85:f6:d1:27:6d:68:7a:60:e6:5c:e0:1d:4c:13:7a:
                    2c:5a:b3:13:5e:ea:7c:a3:a9:08:8a:59:b0:40:7d:03:
                    6b:28:54:a4:8c:d9:77:ed:5b:50:39:33:38:f4:e9:db:
                    aa:e6:e4:7c:de:e7:d1:a4:15:2a:01:80:49:cb:9c:3e:
                    42:07:ff:cf:9a:d3:93:2d:4f:1a:6e:d7:fc:1b:d9:84:
                    0b:87:97:27:69:21:32:67:d1:de:23:27:39:ac:31:8a:
                    19:00:a4:63:5b:26:f3:94:d4:f2:14:10:5a:77:c7:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:cb:78:e3:b0:92:6d:67:e5:ea:c0:29:af:93:8d:cc:
        24:79:05:a8:71:82:2c:8e:14:9b:08:2b:b0:b1:f4:16:
        22:a5:63:f3:5b:ce:95:64:9a:90:78:5a:66:e6:a6:17:
        e9:66:b9:a8:b0:aa:c0:35:4a:c0:7a:80:1b:01:87:ef:
        39:8e:1b:a4:11:9d:53:65:15:72:0a:4b:d8:65:aa:a6:
        39:8b:f3:ae:85:af:be:d7:40:37:c9:b3:a8:b1:38:d3:
        a9:b2:89:65:ac:54:7c:30:90:d6:f5:54:33:12:77:02:
        3b:1b:a5:f7:aa:f4:c7:cf:65:22:bd:8c:f2:2b:5f:2f:
        22:83:ee:fa:2c:6c:b8:b2:3f:e3:a6:00:77:f7:1a:05:
        7d:4c:c1:1d:e0:cd:a6:21:21:1e:97:85:b4:26:a9:48:
        54:3d:b9:4f:64:79:6d:d7:bb:d3:b4:36:11:3d:b5:0c:
        33:4b:03:c2:88:86:7c:56:b8:c2:8b:2f:e8:6a:b7:2b:
        20:12:33:d1:f8:c1:b9:1e:9c:d6:de:2b:bf:f9:85:02:
        77:a1:5d:be:89:da:11:a5:dd:5c:4e:fc:8b:5a:c3:26:
        e3:f4:39:da:7f:01:d7:5b:0c:53:3f:90:97:6b:29:6d:
        9a:86:5a:fa:a5:57:46:bf:99:c9:07:ce:71:9d:ca:46
    Fingerprint (SHA-256):
        94:A7:5C:0F:98:2C:CA:4B:36:E9:CA:C0:D2:79:C7:63:2D:28:F7:8F:AF:30:A1:DB:F5:7A:E8:0C:81:88:12:3E
    Fingerprint (SHA1):
        98:A9:6E:16:46:EB:F6:2B:D5:7E:AE:8D:61:75:3A:FD:97:8F:DF:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6857: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #6858: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #6859: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #6860: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121272 (0x1e67d538)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:13:52 2017
            Not After : Tue May 10 12:13:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:20:24:29:bf:ee:61:12:30:62:c6:29:cd:47:80:11:
                    91:6d:59:b3:33:39:08:b8:63:23:8f:3c:ec:b2:4f:4f:
                    f4:b8:d2:31:07:51:a0:c2:19:82:d7:50:8d:dd:7a:e8:
                    f3:78:fa:70:a4:9d:0c:20:f7:73:53:1a:0a:a4:35:89:
                    f1:b8:90:f2:e1:ba:82:94:70:f2:99:74:bd:15:57:04:
                    c1:b1:a1:3d:da:c8:ae:11:bd:3d:10:e9:49:f4:d3:60:
                    8a:1d:79:50:67:3d:c0:7c:19:22:ed:3c:c9:97:17:8c:
                    3b:db:44:94:71:fd:31:62:dd:0d:08:7a:2c:ef:08:19:
                    fe:61:a0:22:fb:f7:9a:d7:90:0d:7a:71:e9:3d:07:a0:
                    fd:81:a9:0a:d1:f7:66:f3:fa:73:41:5f:f4:91:13:18:
                    c4:f8:c0:2b:8f:a0:10:3d:f8:24:c9:36:95:49:5a:0f:
                    a8:c8:85:12:3d:95:64:a7:62:d4:03:78:6d:ae:78:1d:
                    04:17:8e:51:83:15:18:8b:bd:4c:21:ae:57:f5:1e:b0:
                    43:c9:ed:be:7a:24:61:ce:d4:12:37:e1:d5:82:17:6a:
                    8a:6b:bf:58:95:7f:52:ec:09:aa:3e:21:10:c9:22:43:
                    a3:f6:46:2e:f1:de:c2:6f:f5:39:47:7f:8c:49:0f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:e1:ff:2a:d4:a2:55:dc:11:da:10:81:69:05:fe:67:
        39:fd:81:dc:4a:b3:a2:34:48:45:a9:46:1c:62:2c:8d:
        b8:6c:e3:3b:27:8a:6a:3e:4a:19:6f:25:3d:bd:0c:75:
        75:95:b8:77:43:29:ad:a1:95:20:5e:ec:45:d7:c0:5a:
        a9:74:a7:e3:88:78:1d:d3:e3:08:4c:d6:b3:7a:03:b4:
        b7:7d:77:a1:ea:58:ec:ab:17:5e:32:c2:c6:d0:97:2b:
        23:da:e5:18:38:82:06:7e:2b:a7:db:7f:d1:7e:46:49:
        1a:78:89:d3:61:7f:04:d9:69:e0:72:a2:fb:d4:ef:44:
        b3:d1:32:da:54:fb:18:60:73:36:64:8f:ab:94:aa:2a:
        fe:c1:55:98:9e:04:cf:b6:47:16:b8:03:7f:ab:20:0a:
        1d:e0:a7:c8:84:19:c7:df:5f:83:e9:b8:5d:98:b1:99:
        39:9e:74:84:16:75:50:e2:78:5f:cd:1e:59:68:a4:39:
        62:9c:a4:f6:76:b8:7b:a7:ea:88:91:14:75:bb:90:0a:
        46:55:c8:84:98:77:1e:1f:f3:2e:91:6b:79:fc:40:48:
        16:a3:05:ee:90:1e:e8:1c:fd:b4:a8:e6:89:b9:86:94:
        82:a3:01:88:f5:c8:78:35:46:52:1b:c3:b0:71:9c:41
    Fingerprint (SHA-256):
        C9:2B:04:DB:67:D9:D2:82:D3:25:B3:55:E0:F6:17:0E:B8:35:DB:08:43:63:F7:80:D5:F4:DD:F6:36:4E:70:31
    Fingerprint (SHA1):
        2B:CA:B8:BD:B9:11:63:81:F7:F4:CA:DF:9B:51:E6:A1:33:A8:13:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6861: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121276 (0x1e67d53c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:13:56 2017
            Not After : Tue May 10 12:13:56 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:2d:35:60:41:af:d8:59:cb:2b:4a:e4:52:06:f1:f9:
                    5c:30:2c:09:72:41:8e:c9:a8:2f:7f:57:2e:dc:ae:3f:
                    13:40:ef:41:91:6b:d9:79:3e:9f:a0:ad:2a:a2:54:b2:
                    57:30:05:80:68:91:bf:95:1f:cb:1c:03:a6:2c:73:66:
                    7b:c4:c0:a3:63:2c:07:97:56:f0:9a:ad:98:1b:24:a8:
                    4e:30:bf:6c:35:f2:d2:c5:75:39:ac:73:d9:9b:01:a1:
                    db:54:7e:dd:5c:7d:7a:1d:73:75:e9:ae:96:41:d6:6f:
                    f2:1c:5c:58:4f:e1:ab:d6:4f:d6:12:df:6c:b8:59:cf:
                    c5:26:6b:9e:a3:b9:b5:fe:80:56:48:e1:68:ce:53:3f:
                    42:e7:c0:d8:5b:46:81:b6:4e:f9:5d:ea:05:11:e7:d2:
                    0a:59:18:fe:f7:62:e6:dc:bf:12:7c:2e:dc:0d:e8:81:
                    b6:20:cc:12:1a:fd:4d:82:c5:38:80:bd:e6:b5:45:17:
                    7d:e4:a4:a3:b0:2e:28:9b:b4:33:2a:43:74:18:7b:57:
                    51:0e:f4:95:8d:0c:b7:10:47:5f:8f:46:7c:9c:d5:2d:
                    93:78:88:08:77:69:ae:26:06:7c:a5:17:68:9b:30:fb:
                    1d:19:79:bb:19:ee:32:73:b7:0d:ad:e4:fc:95:2a:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        16:39:4e:65:1f:37:49:6d:e2:79:60:2a:80:e3:34:6d:
        e6:b9:80:b5:ff:72:38:bb:fe:9c:84:94:6b:76:87:f0:
        4b:7d:47:95:eb:68:c8:34:da:dc:d2:49:37:2a:8c:05:
        36:8f:47:09:61:cd:50:af:1c:e3:55:8e:82:44:18:9a:
        c0:6e:9d:37:77:98:78:87:a1:95:85:88:bf:69:42:03:
        ce:db:a5:f6:d0:f1:b8:a9:5d:d6:62:64:79:a7:20:ec:
        61:7a:e1:a3:09:65:e7:42:e6:a4:ed:a5:f9:8b:1e:8c:
        ca:ff:4b:af:c7:9c:50:94:1b:e0:4e:9a:a7:0d:82:7e:
        61:9c:b8:fd:41:7f:c9:e6:d0:b0:7a:50:4a:c6:ec:b8:
        61:83:9d:f7:a9:3d:45:52:e3:46:4d:a0:9d:53:1c:ea:
        ff:ab:c1:d3:6a:c0:5a:36:69:80:0d:11:82:c1:32:31:
        c6:28:11:40:a3:60:70:3a:a2:f5:de:7e:b4:1d:e6:2e:
        83:a6:91:60:16:6b:8e:9f:3b:7e:82:ac:7a:b3:9c:78:
        13:11:25:78:18:f6:1f:c1:c8:0f:6a:68:71:38:1f:54:
        ef:81:5f:33:f3:6f:7a:37:15:23:42:83:99:c6:75:4b:
        de:3d:65:0d:4f:58:1c:5e:f3:6f:92:20:5d:a5:38:7b
    Fingerprint (SHA-256):
        75:B2:EE:88:44:6D:4F:23:1D:8D:49:C2:82:2C:EC:63:24:D1:28:24:9D:0B:AD:A5:72:9B:0B:8B:3B:C5:FA:4D
    Fingerprint (SHA1):
        FC:23:35:3B:02:39:C4:BA:36:9F:1E:5A:A6:9D:02:0A:B2:9D:48:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #6862: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121272 (0x1e67d538)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:13:52 2017
            Not After : Tue May 10 12:13:52 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:20:24:29:bf:ee:61:12:30:62:c6:29:cd:47:80:11:
                    91:6d:59:b3:33:39:08:b8:63:23:8f:3c:ec:b2:4f:4f:
                    f4:b8:d2:31:07:51:a0:c2:19:82:d7:50:8d:dd:7a:e8:
                    f3:78:fa:70:a4:9d:0c:20:f7:73:53:1a:0a:a4:35:89:
                    f1:b8:90:f2:e1:ba:82:94:70:f2:99:74:bd:15:57:04:
                    c1:b1:a1:3d:da:c8:ae:11:bd:3d:10:e9:49:f4:d3:60:
                    8a:1d:79:50:67:3d:c0:7c:19:22:ed:3c:c9:97:17:8c:
                    3b:db:44:94:71:fd:31:62:dd:0d:08:7a:2c:ef:08:19:
                    fe:61:a0:22:fb:f7:9a:d7:90:0d:7a:71:e9:3d:07:a0:
                    fd:81:a9:0a:d1:f7:66:f3:fa:73:41:5f:f4:91:13:18:
                    c4:f8:c0:2b:8f:a0:10:3d:f8:24:c9:36:95:49:5a:0f:
                    a8:c8:85:12:3d:95:64:a7:62:d4:03:78:6d:ae:78:1d:
                    04:17:8e:51:83:15:18:8b:bd:4c:21:ae:57:f5:1e:b0:
                    43:c9:ed:be:7a:24:61:ce:d4:12:37:e1:d5:82:17:6a:
                    8a:6b:bf:58:95:7f:52:ec:09:aa:3e:21:10:c9:22:43:
                    a3:f6:46:2e:f1:de:c2:6f:f5:39:47:7f:8c:49:0f:f3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cc:e1:ff:2a:d4:a2:55:dc:11:da:10:81:69:05:fe:67:
        39:fd:81:dc:4a:b3:a2:34:48:45:a9:46:1c:62:2c:8d:
        b8:6c:e3:3b:27:8a:6a:3e:4a:19:6f:25:3d:bd:0c:75:
        75:95:b8:77:43:29:ad:a1:95:20:5e:ec:45:d7:c0:5a:
        a9:74:a7:e3:88:78:1d:d3:e3:08:4c:d6:b3:7a:03:b4:
        b7:7d:77:a1:ea:58:ec:ab:17:5e:32:c2:c6:d0:97:2b:
        23:da:e5:18:38:82:06:7e:2b:a7:db:7f:d1:7e:46:49:
        1a:78:89:d3:61:7f:04:d9:69:e0:72:a2:fb:d4:ef:44:
        b3:d1:32:da:54:fb:18:60:73:36:64:8f:ab:94:aa:2a:
        fe:c1:55:98:9e:04:cf:b6:47:16:b8:03:7f:ab:20:0a:
        1d:e0:a7:c8:84:19:c7:df:5f:83:e9:b8:5d:98:b1:99:
        39:9e:74:84:16:75:50:e2:78:5f:cd:1e:59:68:a4:39:
        62:9c:a4:f6:76:b8:7b:a7:ea:88:91:14:75:bb:90:0a:
        46:55:c8:84:98:77:1e:1f:f3:2e:91:6b:79:fc:40:48:
        16:a3:05:ee:90:1e:e8:1c:fd:b4:a8:e6:89:b9:86:94:
        82:a3:01:88:f5:c8:78:35:46:52:1b:c3:b0:71:9c:41
    Fingerprint (SHA-256):
        C9:2B:04:DB:67:D9:D2:82:D3:25:B3:55:E0:F6:17:0E:B8:35:DB:08:43:63:F7:80:D5:F4:DD:F6:36:4E:70:31
    Fingerprint (SHA1):
        2B:CA:B8:BD:B9:11:63:81:F7:F4:CA:DF:9B:51:E6:A1:33:A8:13:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6863: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #6864: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #6865: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #6866: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #6867: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #6868: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121277 (0x1e67d53d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:13:57 2017
            Not After : Tue May 10 12:13:57 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:d7:34:a4:39:44:d5:9e:23:dc:56:0c:5a:e8:c6:e0:
                    69:f9:b4:95:20:26:e8:55:00:a6:9e:e8:61:9a:c4:2d:
                    46:4d:e9:5d:2a:46:9b:46:9a:84:15:f2:9e:21:c4:ac:
                    5d:cd:5f:1e:54:90:d6:67:94:fa:c2:34:a5:97:bc:d3:
                    55:e5:b0:47:82:33:3e:4c:66:7c:bc:13:7b:bf:92:75:
                    dd:90:a0:21:19:27:02:9e:ed:da:04:8a:43:45:55:32:
                    0d:54:2c:7c:be:41:46:90:e4:7d:2c:82:fa:de:01:d8:
                    97:f4:72:0a:e1:26:5f:9a:e7:66:13:85:64:7d:d1:44:
                    73:f7:7e:20:d4:5f:59:3e:cd:cc:bf:0b:1a:26:7e:e3:
                    21:dd:7f:f4:a9:be:7a:0e:f4:f3:6c:bd:02:06:ca:2d:
                    12:82:2b:6b:c0:50:59:0b:26:4f:fe:c2:7e:91:0e:43:
                    d9:7d:fc:2f:b4:17:30:7f:f2:e8:b6:38:40:d2:e0:60:
                    2f:99:2c:5c:c8:71:5d:ca:d5:12:6a:48:c3:1e:39:f9:
                    40:a6:06:84:87:b6:89:dd:1a:03:cf:c7:c5:87:96:a5:
                    fd:12:97:e9:fe:79:6c:e8:a0:d7:5e:f0:e1:cc:1c:21:
                    f9:e3:a3:d7:5d:3b:af:18:3e:f1:6b:6b:37:3d:1f:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:6a:18:1e:ca:90:96:bd:b2:62:40:89:3d:db:d0:85:
        20:8e:3d:a0:c5:99:4e:f7:38:da:71:e9:fc:df:17:64:
        f4:50:2a:5c:c4:9e:af:54:88:4d:cc:3a:66:65:0a:86:
        93:92:98:ff:cd:fd:03:06:49:b4:4c:d4:75:37:c0:15:
        67:71:86:09:91:88:a7:1d:73:93:b9:b7:89:57:5a:03:
        a2:de:d4:7d:ff:8e:e8:58:0f:9b:0d:16:e0:27:c6:01:
        5e:41:2d:bd:f7:bc:f6:a1:9f:f8:d4:ad:39:84:68:56:
        da:38:69:3e:93:2c:b2:02:a3:f5:22:cc:67:bf:08:9d:
        0f:91:c2:d3:be:23:d4:3d:22:ca:0b:b7:44:f3:a0:6d:
        79:4f:83:61:b5:ad:cb:e7:09:08:eb:24:f4:fd:55:f5:
        19:22:cc:ab:35:c9:78:57:4c:9d:7d:8e:6e:7c:51:d3:
        df:07:3c:94:2b:e3:47:59:f5:db:71:ec:73:c1:cb:7c:
        4a:73:c9:92:b9:8b:8e:4f:83:62:4c:b6:a9:45:cd:90:
        39:e2:0c:72:8f:30:a3:2d:fe:f9:a8:23:8d:29:22:b7:
        3f:f4:65:44:91:c8:1f:d0:7b:9e:fd:35:c5:e9:b5:ab:
        9b:8d:19:79:eb:79:8a:52:02:d1:77:53:c3:8b:b6:6d
    Fingerprint (SHA-256):
        B4:EA:0E:FB:4F:C4:63:51:FD:87:9B:07:07:BB:94:19:C7:97:7C:F2:6E:BE:5C:35:06:79:9A:63:A5:2A:C0:37
    Fingerprint (SHA1):
        3F:F0:96:E2:99:7D:57:F0:BC:B4:27:91:B3:84:B7:42:B3:40:F0:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6869: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #6870: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #6871: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #6872: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #6873: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6874: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6875: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6876: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6877: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6878: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6879: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6880: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6881: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6882: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6883: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6884: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6885: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6886: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6887: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #6888: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6889: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6890: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6891: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6892: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 3536 at Wed May 10 12:14:01 UTC 2017
kill -USR1 3536
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 3536 killed at Wed May 10 12:14:01 UTC 2017
httpserv starting at Wed May 10 12:14:01 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:14:01 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 18953 >/dev/null 2>/dev/null
httpserv with PID 18953 found at Wed May 10 12:14:01 UTC 2017
httpserv with PID 18953 started at Wed May 10 12:14:01 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6893: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121279 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6894: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6895: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6896: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121280 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6897: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6898: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6899: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6900: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121281 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6901: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6902: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121282 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6903: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6904: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6905: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6906: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6907: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510121283   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6908: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6909: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6910: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6911: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6912: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121280 (0x1e67d540)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:03 2017
            Not After : Tue May 10 12:14:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:0c:7b:97:63:38:c7:81:c3:d0:aa:ff:72:f8:2e:ef:
                    0f:9f:28:5e:71:86:5c:07:e1:99:c0:3d:55:1a:05:94:
                    88:f8:b2:2d:44:88:08:4e:3c:fa:e8:97:4d:9f:9a:9d:
                    55:6a:a6:fb:41:34:16:13:18:d0:f5:a1:b2:00:cf:16:
                    ac:ba:5d:e0:82:f0:14:50:18:ce:0d:32:c3:9f:19:ea:
                    89:6f:4e:04:b8:31:25:ad:85:3c:c7:70:2a:bd:54:be:
                    ad:b6:8b:0a:69:b5:ee:75:a3:56:1a:95:52:2b:88:50:
                    d4:53:ce:e0:bb:06:aa:2b:f6:82:46:7e:5e:61:71:83:
                    c9:a3:98:10:be:6e:b5:68:90:25:07:37:29:71:15:fa:
                    f9:49:d3:91:44:77:ec:c4:f1:e9:bf:bf:12:d5:56:cc:
                    b5:d3:65:11:28:12:64:9d:cf:98:e1:92:c9:16:d7:6e:
                    ab:04:42:92:89:a0:18:32:86:3c:21:16:08:80:23:0c:
                    cb:f7:d9:e9:0c:f9:c9:fe:0a:16:6d:0f:57:ec:4e:9f:
                    58:69:d7:b5:73:87:86:d3:46:89:20:3f:9e:f8:3e:a6:
                    d6:3b:68:3f:d6:86:fe:f9:6f:11:a1:34:13:58:02:63:
                    58:54:6e:3d:a9:63:93:17:cd:ac:52:a1:05:4b:1e:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:41:94:78:5c:bc:d6:2a:15:49:50:f7:8f:bf:86:79:
        b3:3a:15:dc:2b:98:36:44:37:f4:33:3f:01:e5:8d:69:
        43:19:b9:3a:c8:1f:c0:b9:32:8f:78:df:9e:79:c5:8d:
        09:a0:e1:01:53:d9:ef:18:27:5f:b4:d7:c6:4c:43:e9:
        64:bb:67:44:5d:7d:07:c6:95:fe:5a:24:aa:ec:59:74:
        e3:49:d5:11:f5:19:c2:8c:7b:ea:af:7d:84:fb:8b:e6:
        e4:48:75:f1:6e:ea:ca:d8:c8:a8:cc:e2:e8:76:be:f4:
        34:f7:7d:ad:d8:c3:2f:54:dc:21:a9:f0:3c:eb:06:e3:
        59:11:1d:79:5a:34:fe:8d:b2:4c:4a:06:fa:7f:a0:0e:
        b1:50:08:d0:89:e4:15:8e:fb:c7:b3:12:33:96:f3:f0:
        40:a8:29:83:67:c5:41:4c:2f:6b:9f:0b:01:30:ec:d2:
        a1:58:1d:21:b7:78:e8:12:db:0e:85:dd:9d:03:d4:8c:
        19:2a:f0:31:bb:83:ce:87:2c:89:5b:22:db:d3:b9:51:
        f9:71:b5:56:41:ac:3e:1f:e1:2d:ce:25:c8:68:9f:32:
        a2:97:c4:bd:45:64:1f:2f:00:eb:67:f2:c1:51:c5:f2:
        52:43:78:2e:ab:b4:79:1b:0c:23:a0:4c:55:4b:ab:f4
    Fingerprint (SHA-256):
        41:9C:33:C0:86:56:CD:71:02:AB:D4:B3:2A:32:41:E0:7C:D7:A0:B9:AC:AF:DC:9F:1A:45:09:A1:6B:A3:62:08
    Fingerprint (SHA1):
        97:F1:5A:18:D8:CA:A0:94:F8:E7:BF:DD:9A:16:53:DC:21:F0:9A:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6913: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121279 (0x1e67d53f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:02 2017
            Not After : Tue May 10 12:14:02 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7d:f4:61:67:66:28:f2:fa:fc:7d:66:6f:8a:dc:c1:
                    05:c2:d2:60:89:07:86:8c:04:9c:12:75:51:5d:70:d0:
                    36:14:82:40:db:ae:2a:3d:6e:67:50:ed:9e:07:85:a7:
                    58:4c:c9:ac:99:57:a0:ec:b8:5d:e0:70:bd:31:c4:a0:
                    8f:a7:69:83:a4:26:ba:db:86:92:b2:d0:34:89:2b:a8:
                    68:d9:f6:b4:16:0e:5a:18:df:2a:44:50:19:f9:76:76:
                    b5:4d:a4:b3:a7:a8:4f:0c:3e:25:c6:2d:c0:92:15:0a:
                    40:e6:9d:f0:ff:ad:5c:6f:95:f0:e2:84:db:d6:15:b7:
                    0f:fb:3b:2b:dc:fb:09:71:6a:b8:e3:2b:c2:20:07:bd:
                    0e:47:f1:d4:27:b4:23:93:40:72:50:69:5f:4e:96:52:
                    89:ce:1a:b6:70:13:cc:d0:7d:5e:64:3b:67:95:26:ee:
                    8d:70:7a:4e:46:dc:02:f3:5f:c3:16:32:24:77:53:fb:
                    c2:ee:4a:fe:b7:a4:fc:b9:9c:51:51:e8:82:42:93:f1:
                    16:d2:ae:c7:b2:ac:10:b1:57:9c:38:50:dd:aa:63:24:
                    5d:1d:9a:7f:6a:3a:48:64:46:9d:94:32:6e:90:31:d4:
                    41:b8:53:ea:50:03:fb:f4:bd:ef:85:28:27:d5:fd:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:0e:a2:9a:0b:b5:00:fd:fa:52:ce:00:0c:53:96:1c:
        d4:ad:2b:a9:0f:31:15:46:6f:b0:5f:d3:02:84:79:f9:
        2e:83:d6:81:75:e5:72:cf:3a:08:33:42:38:d3:42:32:
        e3:98:00:d6:fe:82:65:f3:b1:db:e2:58:79:b8:77:9e:
        0d:92:67:37:0d:13:ce:3c:aa:97:9d:1d:56:d0:e8:93:
        18:12:d7:75:b6:3a:29:59:9c:19:dd:67:8f:5a:34:4b:
        95:bc:d8:42:d9:a7:74:3d:3e:99:8e:bd:43:db:2d:a2:
        69:77:a6:69:40:ff:29:43:04:e5:96:b5:f6:f3:57:88:
        ea:4e:18:13:26:34:5f:0f:9c:b2:4c:42:82:8d:2b:a8:
        34:c5:44:7f:ec:b1:2a:91:83:d6:83:0a:e1:38:9f:d1:
        07:ac:50:20:06:d9:99:1c:48:85:38:7e:b8:f9:99:4c:
        d1:bb:35:10:9b:f1:58:35:17:55:6b:54:00:00:f8:58:
        27:9a:dd:22:63:3a:b6:e4:38:65:6a:57:0a:34:be:a2:
        a6:17:d8:d5:03:0d:2a:08:d1:55:88:9e:0b:f7:79:43:
        ee:89:20:4f:94:e9:7b:e3:b1:68:5e:72:7e:63:b0:58:
        2b:f2:8f:52:fc:63:e3:74:f7:71:3f:87:a5:32:2d:21
    Fingerprint (SHA-256):
        51:18:BB:FB:BC:09:7B:FC:F4:A4:C7:57:26:B6:F1:02:B8:FC:63:2C:9E:D2:14:E9:BF:85:48:BB:59:E0:41:D2
    Fingerprint (SHA1):
        64:41:37:14:0F:6B:CB:A8:06:A7:64:91:6F:4A:90:E6:D5:E5:42:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6914: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6915: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6916: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6917: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121279 (0x1e67d53f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:02 2017
            Not After : Tue May 10 12:14:02 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7d:f4:61:67:66:28:f2:fa:fc:7d:66:6f:8a:dc:c1:
                    05:c2:d2:60:89:07:86:8c:04:9c:12:75:51:5d:70:d0:
                    36:14:82:40:db:ae:2a:3d:6e:67:50:ed:9e:07:85:a7:
                    58:4c:c9:ac:99:57:a0:ec:b8:5d:e0:70:bd:31:c4:a0:
                    8f:a7:69:83:a4:26:ba:db:86:92:b2:d0:34:89:2b:a8:
                    68:d9:f6:b4:16:0e:5a:18:df:2a:44:50:19:f9:76:76:
                    b5:4d:a4:b3:a7:a8:4f:0c:3e:25:c6:2d:c0:92:15:0a:
                    40:e6:9d:f0:ff:ad:5c:6f:95:f0:e2:84:db:d6:15:b7:
                    0f:fb:3b:2b:dc:fb:09:71:6a:b8:e3:2b:c2:20:07:bd:
                    0e:47:f1:d4:27:b4:23:93:40:72:50:69:5f:4e:96:52:
                    89:ce:1a:b6:70:13:cc:d0:7d:5e:64:3b:67:95:26:ee:
                    8d:70:7a:4e:46:dc:02:f3:5f:c3:16:32:24:77:53:fb:
                    c2:ee:4a:fe:b7:a4:fc:b9:9c:51:51:e8:82:42:93:f1:
                    16:d2:ae:c7:b2:ac:10:b1:57:9c:38:50:dd:aa:63:24:
                    5d:1d:9a:7f:6a:3a:48:64:46:9d:94:32:6e:90:31:d4:
                    41:b8:53:ea:50:03:fb:f4:bd:ef:85:28:27:d5:fd:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:0e:a2:9a:0b:b5:00:fd:fa:52:ce:00:0c:53:96:1c:
        d4:ad:2b:a9:0f:31:15:46:6f:b0:5f:d3:02:84:79:f9:
        2e:83:d6:81:75:e5:72:cf:3a:08:33:42:38:d3:42:32:
        e3:98:00:d6:fe:82:65:f3:b1:db:e2:58:79:b8:77:9e:
        0d:92:67:37:0d:13:ce:3c:aa:97:9d:1d:56:d0:e8:93:
        18:12:d7:75:b6:3a:29:59:9c:19:dd:67:8f:5a:34:4b:
        95:bc:d8:42:d9:a7:74:3d:3e:99:8e:bd:43:db:2d:a2:
        69:77:a6:69:40:ff:29:43:04:e5:96:b5:f6:f3:57:88:
        ea:4e:18:13:26:34:5f:0f:9c:b2:4c:42:82:8d:2b:a8:
        34:c5:44:7f:ec:b1:2a:91:83:d6:83:0a:e1:38:9f:d1:
        07:ac:50:20:06:d9:99:1c:48:85:38:7e:b8:f9:99:4c:
        d1:bb:35:10:9b:f1:58:35:17:55:6b:54:00:00:f8:58:
        27:9a:dd:22:63:3a:b6:e4:38:65:6a:57:0a:34:be:a2:
        a6:17:d8:d5:03:0d:2a:08:d1:55:88:9e:0b:f7:79:43:
        ee:89:20:4f:94:e9:7b:e3:b1:68:5e:72:7e:63:b0:58:
        2b:f2:8f:52:fc:63:e3:74:f7:71:3f:87:a5:32:2d:21
    Fingerprint (SHA-256):
        51:18:BB:FB:BC:09:7B:FC:F4:A4:C7:57:26:B6:F1:02:B8:FC:63:2C:9E:D2:14:E9:BF:85:48:BB:59:E0:41:D2
    Fingerprint (SHA1):
        64:41:37:14:0F:6B:CB:A8:06:A7:64:91:6F:4A:90:E6:D5:E5:42:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6918: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121280 (0x1e67d540)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:03 2017
            Not After : Tue May 10 12:14:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:0c:7b:97:63:38:c7:81:c3:d0:aa:ff:72:f8:2e:ef:
                    0f:9f:28:5e:71:86:5c:07:e1:99:c0:3d:55:1a:05:94:
                    88:f8:b2:2d:44:88:08:4e:3c:fa:e8:97:4d:9f:9a:9d:
                    55:6a:a6:fb:41:34:16:13:18:d0:f5:a1:b2:00:cf:16:
                    ac:ba:5d:e0:82:f0:14:50:18:ce:0d:32:c3:9f:19:ea:
                    89:6f:4e:04:b8:31:25:ad:85:3c:c7:70:2a:bd:54:be:
                    ad:b6:8b:0a:69:b5:ee:75:a3:56:1a:95:52:2b:88:50:
                    d4:53:ce:e0:bb:06:aa:2b:f6:82:46:7e:5e:61:71:83:
                    c9:a3:98:10:be:6e:b5:68:90:25:07:37:29:71:15:fa:
                    f9:49:d3:91:44:77:ec:c4:f1:e9:bf:bf:12:d5:56:cc:
                    b5:d3:65:11:28:12:64:9d:cf:98:e1:92:c9:16:d7:6e:
                    ab:04:42:92:89:a0:18:32:86:3c:21:16:08:80:23:0c:
                    cb:f7:d9:e9:0c:f9:c9:fe:0a:16:6d:0f:57:ec:4e:9f:
                    58:69:d7:b5:73:87:86:d3:46:89:20:3f:9e:f8:3e:a6:
                    d6:3b:68:3f:d6:86:fe:f9:6f:11:a1:34:13:58:02:63:
                    58:54:6e:3d:a9:63:93:17:cd:ac:52:a1:05:4b:1e:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:41:94:78:5c:bc:d6:2a:15:49:50:f7:8f:bf:86:79:
        b3:3a:15:dc:2b:98:36:44:37:f4:33:3f:01:e5:8d:69:
        43:19:b9:3a:c8:1f:c0:b9:32:8f:78:df:9e:79:c5:8d:
        09:a0:e1:01:53:d9:ef:18:27:5f:b4:d7:c6:4c:43:e9:
        64:bb:67:44:5d:7d:07:c6:95:fe:5a:24:aa:ec:59:74:
        e3:49:d5:11:f5:19:c2:8c:7b:ea:af:7d:84:fb:8b:e6:
        e4:48:75:f1:6e:ea:ca:d8:c8:a8:cc:e2:e8:76:be:f4:
        34:f7:7d:ad:d8:c3:2f:54:dc:21:a9:f0:3c:eb:06:e3:
        59:11:1d:79:5a:34:fe:8d:b2:4c:4a:06:fa:7f:a0:0e:
        b1:50:08:d0:89:e4:15:8e:fb:c7:b3:12:33:96:f3:f0:
        40:a8:29:83:67:c5:41:4c:2f:6b:9f:0b:01:30:ec:d2:
        a1:58:1d:21:b7:78:e8:12:db:0e:85:dd:9d:03:d4:8c:
        19:2a:f0:31:bb:83:ce:87:2c:89:5b:22:db:d3:b9:51:
        f9:71:b5:56:41:ac:3e:1f:e1:2d:ce:25:c8:68:9f:32:
        a2:97:c4:bd:45:64:1f:2f:00:eb:67:f2:c1:51:c5:f2:
        52:43:78:2e:ab:b4:79:1b:0c:23:a0:4c:55:4b:ab:f4
    Fingerprint (SHA-256):
        41:9C:33:C0:86:56:CD:71:02:AB:D4:B3:2A:32:41:E0:7C:D7:A0:B9:AC:AF:DC:9F:1A:45:09:A1:6B:A3:62:08
    Fingerprint (SHA1):
        97:F1:5A:18:D8:CA:A0:94:F8:E7:BF:DD:9A:16:53:DC:21:F0:9A:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6919: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6920: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6921: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6922: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6923: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6924: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121280 (0x1e67d540)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:03 2017
            Not After : Tue May 10 12:14:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:0c:7b:97:63:38:c7:81:c3:d0:aa:ff:72:f8:2e:ef:
                    0f:9f:28:5e:71:86:5c:07:e1:99:c0:3d:55:1a:05:94:
                    88:f8:b2:2d:44:88:08:4e:3c:fa:e8:97:4d:9f:9a:9d:
                    55:6a:a6:fb:41:34:16:13:18:d0:f5:a1:b2:00:cf:16:
                    ac:ba:5d:e0:82:f0:14:50:18:ce:0d:32:c3:9f:19:ea:
                    89:6f:4e:04:b8:31:25:ad:85:3c:c7:70:2a:bd:54:be:
                    ad:b6:8b:0a:69:b5:ee:75:a3:56:1a:95:52:2b:88:50:
                    d4:53:ce:e0:bb:06:aa:2b:f6:82:46:7e:5e:61:71:83:
                    c9:a3:98:10:be:6e:b5:68:90:25:07:37:29:71:15:fa:
                    f9:49:d3:91:44:77:ec:c4:f1:e9:bf:bf:12:d5:56:cc:
                    b5:d3:65:11:28:12:64:9d:cf:98:e1:92:c9:16:d7:6e:
                    ab:04:42:92:89:a0:18:32:86:3c:21:16:08:80:23:0c:
                    cb:f7:d9:e9:0c:f9:c9:fe:0a:16:6d:0f:57:ec:4e:9f:
                    58:69:d7:b5:73:87:86:d3:46:89:20:3f:9e:f8:3e:a6:
                    d6:3b:68:3f:d6:86:fe:f9:6f:11:a1:34:13:58:02:63:
                    58:54:6e:3d:a9:63:93:17:cd:ac:52:a1:05:4b:1e:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:41:94:78:5c:bc:d6:2a:15:49:50:f7:8f:bf:86:79:
        b3:3a:15:dc:2b:98:36:44:37:f4:33:3f:01:e5:8d:69:
        43:19:b9:3a:c8:1f:c0:b9:32:8f:78:df:9e:79:c5:8d:
        09:a0:e1:01:53:d9:ef:18:27:5f:b4:d7:c6:4c:43:e9:
        64:bb:67:44:5d:7d:07:c6:95:fe:5a:24:aa:ec:59:74:
        e3:49:d5:11:f5:19:c2:8c:7b:ea:af:7d:84:fb:8b:e6:
        e4:48:75:f1:6e:ea:ca:d8:c8:a8:cc:e2:e8:76:be:f4:
        34:f7:7d:ad:d8:c3:2f:54:dc:21:a9:f0:3c:eb:06:e3:
        59:11:1d:79:5a:34:fe:8d:b2:4c:4a:06:fa:7f:a0:0e:
        b1:50:08:d0:89:e4:15:8e:fb:c7:b3:12:33:96:f3:f0:
        40:a8:29:83:67:c5:41:4c:2f:6b:9f:0b:01:30:ec:d2:
        a1:58:1d:21:b7:78:e8:12:db:0e:85:dd:9d:03:d4:8c:
        19:2a:f0:31:bb:83:ce:87:2c:89:5b:22:db:d3:b9:51:
        f9:71:b5:56:41:ac:3e:1f:e1:2d:ce:25:c8:68:9f:32:
        a2:97:c4:bd:45:64:1f:2f:00:eb:67:f2:c1:51:c5:f2:
        52:43:78:2e:ab:b4:79:1b:0c:23:a0:4c:55:4b:ab:f4
    Fingerprint (SHA-256):
        41:9C:33:C0:86:56:CD:71:02:AB:D4:B3:2A:32:41:E0:7C:D7:A0:B9:AC:AF:DC:9F:1A:45:09:A1:6B:A3:62:08
    Fingerprint (SHA1):
        97:F1:5A:18:D8:CA:A0:94:F8:E7:BF:DD:9A:16:53:DC:21:F0:9A:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6925: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121280 (0x1e67d540)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:14:03 2017
            Not After : Tue May 10 12:14:03 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:0c:7b:97:63:38:c7:81:c3:d0:aa:ff:72:f8:2e:ef:
                    0f:9f:28:5e:71:86:5c:07:e1:99:c0:3d:55:1a:05:94:
                    88:f8:b2:2d:44:88:08:4e:3c:fa:e8:97:4d:9f:9a:9d:
                    55:6a:a6:fb:41:34:16:13:18:d0:f5:a1:b2:00:cf:16:
                    ac:ba:5d:e0:82:f0:14:50:18:ce:0d:32:c3:9f:19:ea:
                    89:6f:4e:04:b8:31:25:ad:85:3c:c7:70:2a:bd:54:be:
                    ad:b6:8b:0a:69:b5:ee:75:a3:56:1a:95:52:2b:88:50:
                    d4:53:ce:e0:bb:06:aa:2b:f6:82:46:7e:5e:61:71:83:
                    c9:a3:98:10:be:6e:b5:68:90:25:07:37:29:71:15:fa:
                    f9:49:d3:91:44:77:ec:c4:f1:e9:bf:bf:12:d5:56:cc:
                    b5:d3:65:11:28:12:64:9d:cf:98:e1:92:c9:16:d7:6e:
                    ab:04:42:92:89:a0:18:32:86:3c:21:16:08:80:23:0c:
                    cb:f7:d9:e9:0c:f9:c9:fe:0a:16:6d:0f:57:ec:4e:9f:
                    58:69:d7:b5:73:87:86:d3:46:89:20:3f:9e:f8:3e:a6:
                    d6:3b:68:3f:d6:86:fe:f9:6f:11:a1:34:13:58:02:63:
                    58:54:6e:3d:a9:63:93:17:cd:ac:52:a1:05:4b:1e:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:41:94:78:5c:bc:d6:2a:15:49:50:f7:8f:bf:86:79:
        b3:3a:15:dc:2b:98:36:44:37:f4:33:3f:01:e5:8d:69:
        43:19:b9:3a:c8:1f:c0:b9:32:8f:78:df:9e:79:c5:8d:
        09:a0:e1:01:53:d9:ef:18:27:5f:b4:d7:c6:4c:43:e9:
        64:bb:67:44:5d:7d:07:c6:95:fe:5a:24:aa:ec:59:74:
        e3:49:d5:11:f5:19:c2:8c:7b:ea:af:7d:84:fb:8b:e6:
        e4:48:75:f1:6e:ea:ca:d8:c8:a8:cc:e2:e8:76:be:f4:
        34:f7:7d:ad:d8:c3:2f:54:dc:21:a9:f0:3c:eb:06:e3:
        59:11:1d:79:5a:34:fe:8d:b2:4c:4a:06:fa:7f:a0:0e:
        b1:50:08:d0:89:e4:15:8e:fb:c7:b3:12:33:96:f3:f0:
        40:a8:29:83:67:c5:41:4c:2f:6b:9f:0b:01:30:ec:d2:
        a1:58:1d:21:b7:78:e8:12:db:0e:85:dd:9d:03:d4:8c:
        19:2a:f0:31:bb:83:ce:87:2c:89:5b:22:db:d3:b9:51:
        f9:71:b5:56:41:ac:3e:1f:e1:2d:ce:25:c8:68:9f:32:
        a2:97:c4:bd:45:64:1f:2f:00:eb:67:f2:c1:51:c5:f2:
        52:43:78:2e:ab:b4:79:1b:0c:23:a0:4c:55:4b:ab:f4
    Fingerprint (SHA-256):
        41:9C:33:C0:86:56:CD:71:02:AB:D4:B3:2A:32:41:E0:7C:D7:A0:B9:AC:AF:DC:9F:1A:45:09:A1:6B:A3:62:08
    Fingerprint (SHA1):
        97:F1:5A:18:D8:CA:A0:94:F8:E7:BF:DD:9A:16:53:DC:21:F0:9A:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6926: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6927: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6928: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6929: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6930: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6931: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121279 (0x1e67d53f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:02 2017
            Not After : Tue May 10 12:14:02 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7d:f4:61:67:66:28:f2:fa:fc:7d:66:6f:8a:dc:c1:
                    05:c2:d2:60:89:07:86:8c:04:9c:12:75:51:5d:70:d0:
                    36:14:82:40:db:ae:2a:3d:6e:67:50:ed:9e:07:85:a7:
                    58:4c:c9:ac:99:57:a0:ec:b8:5d:e0:70:bd:31:c4:a0:
                    8f:a7:69:83:a4:26:ba:db:86:92:b2:d0:34:89:2b:a8:
                    68:d9:f6:b4:16:0e:5a:18:df:2a:44:50:19:f9:76:76:
                    b5:4d:a4:b3:a7:a8:4f:0c:3e:25:c6:2d:c0:92:15:0a:
                    40:e6:9d:f0:ff:ad:5c:6f:95:f0:e2:84:db:d6:15:b7:
                    0f:fb:3b:2b:dc:fb:09:71:6a:b8:e3:2b:c2:20:07:bd:
                    0e:47:f1:d4:27:b4:23:93:40:72:50:69:5f:4e:96:52:
                    89:ce:1a:b6:70:13:cc:d0:7d:5e:64:3b:67:95:26:ee:
                    8d:70:7a:4e:46:dc:02:f3:5f:c3:16:32:24:77:53:fb:
                    c2:ee:4a:fe:b7:a4:fc:b9:9c:51:51:e8:82:42:93:f1:
                    16:d2:ae:c7:b2:ac:10:b1:57:9c:38:50:dd:aa:63:24:
                    5d:1d:9a:7f:6a:3a:48:64:46:9d:94:32:6e:90:31:d4:
                    41:b8:53:ea:50:03:fb:f4:bd:ef:85:28:27:d5:fd:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:0e:a2:9a:0b:b5:00:fd:fa:52:ce:00:0c:53:96:1c:
        d4:ad:2b:a9:0f:31:15:46:6f:b0:5f:d3:02:84:79:f9:
        2e:83:d6:81:75:e5:72:cf:3a:08:33:42:38:d3:42:32:
        e3:98:00:d6:fe:82:65:f3:b1:db:e2:58:79:b8:77:9e:
        0d:92:67:37:0d:13:ce:3c:aa:97:9d:1d:56:d0:e8:93:
        18:12:d7:75:b6:3a:29:59:9c:19:dd:67:8f:5a:34:4b:
        95:bc:d8:42:d9:a7:74:3d:3e:99:8e:bd:43:db:2d:a2:
        69:77:a6:69:40:ff:29:43:04:e5:96:b5:f6:f3:57:88:
        ea:4e:18:13:26:34:5f:0f:9c:b2:4c:42:82:8d:2b:a8:
        34:c5:44:7f:ec:b1:2a:91:83:d6:83:0a:e1:38:9f:d1:
        07:ac:50:20:06:d9:99:1c:48:85:38:7e:b8:f9:99:4c:
        d1:bb:35:10:9b:f1:58:35:17:55:6b:54:00:00:f8:58:
        27:9a:dd:22:63:3a:b6:e4:38:65:6a:57:0a:34:be:a2:
        a6:17:d8:d5:03:0d:2a:08:d1:55:88:9e:0b:f7:79:43:
        ee:89:20:4f:94:e9:7b:e3:b1:68:5e:72:7e:63:b0:58:
        2b:f2:8f:52:fc:63:e3:74:f7:71:3f:87:a5:32:2d:21
    Fingerprint (SHA-256):
        51:18:BB:FB:BC:09:7B:FC:F4:A4:C7:57:26:B6:F1:02:B8:FC:63:2C:9E:D2:14:E9:BF:85:48:BB:59:E0:41:D2
    Fingerprint (SHA1):
        64:41:37:14:0F:6B:CB:A8:06:A7:64:91:6F:4A:90:E6:D5:E5:42:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6932: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121279 (0x1e67d53f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:14:02 2017
            Not After : Tue May 10 12:14:02 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:7d:f4:61:67:66:28:f2:fa:fc:7d:66:6f:8a:dc:c1:
                    05:c2:d2:60:89:07:86:8c:04:9c:12:75:51:5d:70:d0:
                    36:14:82:40:db:ae:2a:3d:6e:67:50:ed:9e:07:85:a7:
                    58:4c:c9:ac:99:57:a0:ec:b8:5d:e0:70:bd:31:c4:a0:
                    8f:a7:69:83:a4:26:ba:db:86:92:b2:d0:34:89:2b:a8:
                    68:d9:f6:b4:16:0e:5a:18:df:2a:44:50:19:f9:76:76:
                    b5:4d:a4:b3:a7:a8:4f:0c:3e:25:c6:2d:c0:92:15:0a:
                    40:e6:9d:f0:ff:ad:5c:6f:95:f0:e2:84:db:d6:15:b7:
                    0f:fb:3b:2b:dc:fb:09:71:6a:b8:e3:2b:c2:20:07:bd:
                    0e:47:f1:d4:27:b4:23:93:40:72:50:69:5f:4e:96:52:
                    89:ce:1a:b6:70:13:cc:d0:7d:5e:64:3b:67:95:26:ee:
                    8d:70:7a:4e:46:dc:02:f3:5f:c3:16:32:24:77:53:fb:
                    c2:ee:4a:fe:b7:a4:fc:b9:9c:51:51:e8:82:42:93:f1:
                    16:d2:ae:c7:b2:ac:10:b1:57:9c:38:50:dd:aa:63:24:
                    5d:1d:9a:7f:6a:3a:48:64:46:9d:94:32:6e:90:31:d4:
                    41:b8:53:ea:50:03:fb:f4:bd:ef:85:28:27:d5:fd:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:0e:a2:9a:0b:b5:00:fd:fa:52:ce:00:0c:53:96:1c:
        d4:ad:2b:a9:0f:31:15:46:6f:b0:5f:d3:02:84:79:f9:
        2e:83:d6:81:75:e5:72:cf:3a:08:33:42:38:d3:42:32:
        e3:98:00:d6:fe:82:65:f3:b1:db:e2:58:79:b8:77:9e:
        0d:92:67:37:0d:13:ce:3c:aa:97:9d:1d:56:d0:e8:93:
        18:12:d7:75:b6:3a:29:59:9c:19:dd:67:8f:5a:34:4b:
        95:bc:d8:42:d9:a7:74:3d:3e:99:8e:bd:43:db:2d:a2:
        69:77:a6:69:40:ff:29:43:04:e5:96:b5:f6:f3:57:88:
        ea:4e:18:13:26:34:5f:0f:9c:b2:4c:42:82:8d:2b:a8:
        34:c5:44:7f:ec:b1:2a:91:83:d6:83:0a:e1:38:9f:d1:
        07:ac:50:20:06:d9:99:1c:48:85:38:7e:b8:f9:99:4c:
        d1:bb:35:10:9b:f1:58:35:17:55:6b:54:00:00:f8:58:
        27:9a:dd:22:63:3a:b6:e4:38:65:6a:57:0a:34:be:a2:
        a6:17:d8:d5:03:0d:2a:08:d1:55:88:9e:0b:f7:79:43:
        ee:89:20:4f:94:e9:7b:e3:b1:68:5e:72:7e:63:b0:58:
        2b:f2:8f:52:fc:63:e3:74:f7:71:3f:87:a5:32:2d:21
    Fingerprint (SHA-256):
        51:18:BB:FB:BC:09:7B:FC:F4:A4:C7:57:26:B6:F1:02:B8:FC:63:2C:9E:D2:14:E9:BF:85:48:BB:59:E0:41:D2
    Fingerprint (SHA1):
        64:41:37:14:0F:6B:CB:A8:06:A7:64:91:6F:4A:90:E6:D5:E5:42:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6933: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6934: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121284 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6935: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6936: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6937: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121285 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6938: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6939: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6940: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121286 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6941: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6942: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6943: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121287 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6944: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6945: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6946: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121288 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6947: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6948: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6949: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121289 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6950: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6951: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6952: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121290 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6953: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6954: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6955: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121291 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6956: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6957: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6958: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121292 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6959: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6960: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6961: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6962: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510121293 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6963: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6964: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510121294 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6965: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6966: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510121295 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6967: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6968: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6969: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6970: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6971: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510121296 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6972: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6973: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510121297 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6974: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6975: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510121298 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6976: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6977: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6978: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6979: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6980: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510121299 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6981: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6982: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510121300 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6983: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6984: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510121301 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6985: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6986: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6987: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6988: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6989: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510121302 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6990: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6991: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510121303 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6992: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6993: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510121304 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6994: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6995: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6996: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6997: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6998: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510121305   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6999: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7000: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7001: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7002: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121306   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7003: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7004: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121284 (0x1e67d544)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:07 2017
            Not After : Tue May 10 12:14:07 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:22:4f:89:e6:e5:06:81:37:b5:3f:24:18:8f:80:84:
                    39:5c:6b:77:a0:d0:40:5c:d8:40:58:dc:59:76:aa:f5:
                    65:99:bb:73:bc:0b:ce:ad:cf:7d:f1:f8:b5:cd:2d:1a:
                    be:41:d2:be:25:f4:14:85:f2:33:46:3d:e8:6c:93:eb:
                    5d:81:f0:7d:33:ab:1d:b6:bc:f9:7c:1c:b8:10:2e:f8:
                    41:fc:ec:a8:da:71:66:ff:cc:8c:73:3a:a2:35:b3:3a:
                    3e:02:13:89:a3:5b:74:d6:9b:d4:e6:9f:cc:b7:88:44:
                    53:ca:cf:3f:bd:db:98:5e:21:8e:2a:36:21:ed:55:d9:
                    72:ba:08:5a:71:1a:aa:c8:10:36:12:b1:52:02:b8:86:
                    da:e8:92:b4:c5:79:35:9b:df:c0:e5:70:70:9e:61:41:
                    62:18:32:07:5f:97:4b:aa:44:d8:a6:91:a3:40:f8:9a:
                    4c:d7:6e:89:f4:12:40:be:93:3b:a7:d9:c5:40:97:e6:
                    9e:91:24:ca:b5:39:42:bf:2e:d1:d4:51:48:c0:d2:8b:
                    53:41:49:9f:69:ae:1e:30:79:1e:23:c0:d0:fc:ec:23:
                    c0:6d:ee:02:b2:ac:76:1e:84:c0:e2:4e:36:37:15:18:
                    9f:c0:36:e0:f5:6e:1c:03:76:db:ed:4b:b6:b1:56:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:38:31:e0:77:c7:54:87:01:b0:c6:e2:4f:85:79:d8:
        3f:73:ee:e5:91:12:bb:af:68:1e:4c:72:70:66:85:48:
        67:af:74:30:37:da:34:81:47:d0:1e:7d:fc:2c:f2:b7:
        2f:a7:5e:15:b6:f4:0b:6c:40:46:ae:0a:bf:d1:ed:6a:
        fc:2f:02:f9:df:b5:ef:e2:f1:c2:75:9f:99:7c:ee:a9:
        19:96:8b:82:ff:02:30:82:86:39:f1:f0:e3:67:dc:47:
        42:7b:0f:46:eb:bf:ec:cc:47:af:fc:bb:77:50:84:b6:
        a4:b3:36:5c:3f:25:d0:93:bd:19:3e:5a:2d:de:0f:b2:
        cb:86:4d:d4:44:4c:4a:43:0e:b5:1f:0e:aa:9b:3a:93:
        5e:55:ef:ec:ac:fa:96:ca:e8:ff:8e:1f:4b:46:e8:e8:
        8d:bb:48:ef:f4:7e:38:eb:6c:ec:53:65:c3:ac:88:7d:
        5c:da:45:8b:58:15:13:e4:79:ac:3e:dd:1a:e0:7e:0c:
        6b:81:1c:28:46:cb:ed:41:41:ab:52:22:62:5d:66:fa:
        c2:a5:8b:88:cf:6a:88:f3:2a:4c:a2:1b:5a:33:43:0d:
        2c:16:e1:75:2b:f6:e9:81:e6:c0:38:f1:14:34:a2:4a:
        5f:a8:37:f5:da:29:fe:46:22:0b:3e:5e:7a:b2:7f:b8
    Fingerprint (SHA-256):
        43:79:5B:88:D5:C8:E8:5B:23:F9:F1:6F:F0:56:44:76:4B:35:14:6F:6F:0E:82:93:02:70:F2:32:7A:36:35:17
    Fingerprint (SHA1):
        8F:0A:75:74:6A:DB:05:DB:EB:EC:D4:7C:6B:B0:67:A9:36:43:4A:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7005: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121285 (0x1e67d545)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:14:07 2017
            Not After : Tue May 10 12:14:07 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f1:cd:76:80:62:20:ed:aa:ea:99:93:56:38:f4:97:6f:
                    87:bd:6a:f4:8d:e6:d0:97:0c:f4:2e:15:c5:07:a4:ac:
                    0c:6b:d6:2c:fa:47:5c:35:0e:c2:59:16:ac:3c:9d:af:
                    ec:af:a4:76:26:39:cf:bb:a5:03:f7:d0:7b:9c:ef:1d:
                    df:e9:82:c7:cf:36:21:29:69:6b:61:05:19:9e:88:7c:
                    3a:58:52:31:cb:21:27:6a:33:e8:4a:01:1e:56:42:33:
                    26:b9:a7:15:01:23:32:9c:88:de:ae:78:a1:cc:17:c1:
                    cb:32:b5:0c:1d:ba:9c:f5:4f:af:3e:6c:00:e1:e6:3e:
                    05:7a:95:b0:eb:a5:aa:fa:6e:73:a4:ed:83:6b:ea:7e:
                    8f:82:96:40:75:a6:31:f1:94:3c:00:65:a3:d9:91:d9:
                    44:11:86:06:b9:d8:dd:40:f9:1e:90:71:14:09:ad:96:
                    3b:99:3a:b8:c4:c0:8d:51:5a:cd:07:63:c3:da:cf:a6:
                    eb:15:cd:c0:21:46:88:ff:e1:19:99:94:b1:ce:de:25:
                    93:16:c6:40:47:20:11:fb:50:10:af:13:4a:c0:f9:27:
                    be:c0:f8:83:fa:3c:16:e4:4b:ce:80:ac:99:59:44:53:
                    94:fc:8c:52:59:fa:d8:1b:83:70:1c:1c:e9:3e:68:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d9:23:ab:00:e9:af:5a:0e:3a:a4:c3:11:e4:20:dd:30:
        3e:31:4f:24:92:24:f7:1f:04:49:dd:dd:b0:25:67:b2:
        ab:31:ea:2a:fd:56:db:4f:24:87:28:ee:e2:58:76:0c:
        d5:d9:6c:84:b7:06:a7:7d:ce:3b:f2:23:19:66:5d:79:
        a4:0e:d4:54:91:df:9b:33:73:85:11:af:3f:85:c7:4c:
        db:e7:3e:a9:10:91:5d:03:fb:47:c2:a9:88:4e:11:be:
        be:b7:98:54:9b:92:1f:70:68:f7:b9:45:93:d6:95:84:
        6f:cf:2f:65:14:06:e3:16:39:98:77:f7:41:7f:00:26:
        f1:53:d0:70:19:6b:a4:6f:9f:df:ef:8b:50:1e:fa:b2:
        1e:39:e0:2c:23:90:54:48:1a:bd:3f:6b:37:b6:a1:d2:
        e1:d1:83:dd:1a:7b:ba:75:f4:8c:be:24:d9:51:53:a8:
        66:71:59:dc:8e:b7:d2:f7:f6:08:32:67:02:20:3c:af:
        ec:d2:18:17:04:d3:87:91:ad:f0:a7:43:ba:b1:ab:6c:
        a2:10:85:d0:07:aa:0d:6c:01:e5:78:19:4e:98:f8:cf:
        51:66:14:17:f5:6e:8f:48:0e:e4:81:ce:21:6c:8c:ba:
        c8:28:12:e0:44:57:52:53:72:bd:60:7e:17:6e:1b:f4
    Fingerprint (SHA-256):
        F5:5D:2F:39:0B:55:F7:DE:58:FA:72:DB:F5:A3:82:E7:09:58:73:DE:2A:04:1C:A4:B8:52:86:88:1B:4C:12:E0
    Fingerprint (SHA1):
        76:D3:14:09:3B:0F:FB:C9:54:1C:93:F8:F2:84:73:C7:86:78:C6:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7006: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121286 (0x1e67d546)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:14:08 2017
            Not After : Tue May 10 12:14:08 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:a0:c0:a4:91:9f:47:d8:96:de:5b:6d:cc:45:57:9e:
                    74:c2:ba:b9:8e:1d:be:c4:cf:74:3a:f3:d5:ad:3a:76:
                    45:71:2e:d2:bd:ba:6a:6b:4f:c8:cf:d2:19:62:55:f3:
                    e2:88:55:50:6f:c2:ea:1f:3a:1a:55:87:c9:89:db:12:
                    ab:db:f8:fd:b2:9c:94:75:57:2e:50:9c:c8:ca:6d:d1:
                    44:c9:a6:01:69:43:de:54:31:66:b4:dc:8f:f0:fd:58:
                    56:5e:c8:fa:07:a8:ac:d3:05:74:3c:b7:d1:95:35:84:
                    04:2d:b5:a2:c6:10:dc:6d:a0:c4:8b:e7:c4:6f:7d:88:
                    00:6c:40:08:1c:97:74:24:0d:4f:29:b1:d5:83:05:08:
                    10:34:27:d2:6b:82:91:ac:ac:fe:bf:58:59:ae:16:23:
                    fe:93:1a:4f:d8:de:a5:95:ad:63:5d:bf:78:79:79:97:
                    1c:a8:14:44:f8:bf:ba:9f:b6:6a:f0:c0:a4:91:59:cb:
                    1b:97:e5:7d:aa:51:20:fc:cf:88:83:95:67:a5:6c:b4:
                    73:b0:4e:8b:00:d8:88:b3:a2:e0:e3:31:e2:3b:4d:44:
                    96:47:a9:3a:66:5e:7e:06:83:00:cf:9c:76:89:6d:ea:
                    55:5b:3f:88:cf:7f:10:82:80:4f:1a:80:d4:8d:8b:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:1b:0a:00:b7:a7:97:61:46:f8:6a:19:13:29:73:25:
        9a:4d:1f:8e:3c:7b:07:02:e5:e0:94:22:90:1a:5e:ec:
        df:57:d9:0d:15:b9:db:73:09:50:cd:74:ac:ab:c8:cf:
        e1:23:71:e3:53:5f:10:6b:a3:6c:8b:57:ad:62:ae:5d:
        75:a4:23:9f:22:e3:61:2f:10:83:b7:5f:c5:55:a6:39:
        b8:c4:9f:5f:03:e8:05:20:51:7d:dc:66:b9:29:f5:e0:
        80:34:5a:3b:fb:22:7f:9b:26:de:85:1c:5b:cb:a4:5c:
        b8:2d:32:c6:66:b3:4e:ea:6a:9d:fc:6e:ec:9e:e7:bf:
        24:55:83:14:c7:13:95:0c:c9:58:e6:1a:ff:fe:02:2a:
        73:2f:49:10:5f:f0:b0:7d:7e:b8:08:f9:59:26:e9:ed:
        e1:b0:94:cf:8c:4e:d1:1c:08:e3:89:d5:6d:c7:aa:41:
        30:6a:5f:ee:4d:c5:b8:a2:ab:b5:b2:fa:ed:c3:8e:08:
        db:d6:bf:55:f1:69:91:9f:27:46:f7:be:40:8d:ba:95:
        b2:bd:14:72:e1:3d:d4:e2:69:da:cf:c3:e3:5d:84:52:
        3b:b4:5a:c8:1f:e0:ad:1a:c6:9c:c9:cf:c4:52:a3:2b:
        9a:2b:0a:60:cf:9b:b7:78:0e:1c:41:14:95:99:37:96
    Fingerprint (SHA-256):
        C4:AD:64:8C:55:7F:F0:DF:7B:5E:73:D5:5E:C0:3E:C4:E4:05:0B:4D:D3:8D:5F:12:D5:A1:68:12:FC:B0:0E:B6
    Fingerprint (SHA1):
        B1:01:D5:24:4E:7A:C0:3E:9C:9E:2A:6A:0D:37:A7:20:EF:E0:B7:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #7007: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121287 (0x1e67d547)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:14:08 2017
            Not After : Tue May 10 12:14:08 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:95:73:b8:f2:88:55:e4:8b:93:ed:49:d1:03:5d:91:
                    2b:d8:bd:4b:bc:a9:04:12:0c:11:7b:21:1c:99:83:ac:
                    5f:10:d2:27:86:b8:9b:c4:ab:31:44:d8:94:d4:d1:32:
                    3d:39:b2:b7:24:3a:3d:20:99:c4:d1:b3:49:ee:58:d3:
                    25:2f:74:9d:54:9b:df:e5:b5:53:8d:7f:89:1f:4b:b7:
                    a9:2e:4c:b6:61:37:9c:8e:ff:4a:db:24:90:c8:69:42:
                    07:26:6e:17:2c:c3:05:33:38:07:3d:0b:04:3c:bb:f9:
                    ee:f2:16:56:69:8a:6d:1a:9b:4f:21:3f:e2:2c:6a:52:
                    5c:7c:38:8b:2c:77:c7:5c:d8:b8:8b:04:4b:e0:c3:2e:
                    3c:47:78:40:2a:8a:34:ac:87:06:58:e5:66:24:1d:e4:
                    f1:64:3f:9e:67:57:46:c6:29:65:b2:17:a0:d3:75:5a:
                    49:f8:05:e3:05:92:61:41:85:38:38:99:17:55:56:2b:
                    7e:ea:d4:56:40:7e:50:df:04:8f:87:06:8f:4b:df:05:
                    ec:07:f9:36:3e:b9:4d:1e:50:bc:18:05:89:7b:fc:cb:
                    a2:2f:f7:0f:98:21:d3:7d:cf:d7:23:53:07:6b:45:d4:
                    ef:22:be:f7:7c:39:5f:22:12:95:99:88:33:f0:8a:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:14:a3:77:1a:d0:b9:0e:91:b6:d6:ff:2f:5f:bc:b7:
        d6:da:e4:8e:52:df:f3:36:9a:6f:47:17:94:9e:e9:25:
        21:46:fd:9a:f3:4e:db:a4:d0:c7:23:0d:26:69:db:ef:
        e4:70:65:cb:1d:fa:4c:30:0a:60:90:18:77:ba:68:14:
        29:9c:6e:b5:bf:ef:28:3e:d3:ad:e3:70:8e:61:0c:6d:
        d6:23:e4:e8:1c:4d:2a:a9:39:3e:dc:26:a2:83:eb:a3:
        36:89:f5:1f:d8:23:e2:8c:89:85:a1:ce:ff:08:4e:22:
        c4:c8:69:39:fa:6a:ab:bf:c8:3d:26:49:81:21:37:af:
        24:a8:f0:5f:74:08:6f:ee:eb:4d:39:e0:de:c4:1d:86:
        7d:d8:59:fe:3a:96:03:d6:d5:ef:fd:15:7b:a8:57:de:
        ce:e2:7b:9f:04:6d:3d:71:f2:87:7c:5a:9d:75:32:e2:
        c8:e8:5f:bc:38:3e:04:9b:15:70:d0:ac:72:02:f5:d8:
        d9:b8:2c:5f:e5:12:6b:06:d7:a0:47:ef:36:7f:f1:43:
        bc:d7:4b:d7:94:66:30:16:aa:ff:e9:07:95:e2:68:82:
        83:61:e0:42:88:02:3a:e9:af:02:39:e5:3b:c3:de:6d:
        2e:51:36:ee:5a:bf:61:52:95:b6:4b:54:69:d2:12:16
    Fingerprint (SHA-256):
        66:05:D2:ED:D6:3B:3B:5F:E6:FC:1E:D4:30:AA:6D:48:E2:D2:D3:BA:B1:94:F2:58:6E:85:80:27:D1:68:12:94
    Fingerprint (SHA1):
        24:0E:58:FC:C3:AF:0E:F4:0C:D1:6E:54:CA:9F:51:31:97:AF:BC:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7008: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121288 (0x1e67d548)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:14:09 2017
            Not After : Tue May 10 12:14:09 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:91:97:e9:49:1a:37:d9:a4:4c:36:2b:1a:c2:87:4c:
                    cf:1b:04:dd:cc:a8:7a:1f:41:33:69:48:89:d1:38:35:
                    ff:c5:66:c2:76:3d:1d:14:dd:f2:e5:53:50:af:34:81:
                    8c:8a:df:ee:ed:d5:0b:72:6d:82:ae:56:5e:b6:11:db:
                    0a:92:d1:f8:ce:b3:d6:91:1c:e4:12:52:41:e1:86:c4:
                    5d:62:06:b2:12:f7:09:d0:5a:76:bc:85:40:f3:76:52:
                    78:cb:62:ff:bf:88:5f:82:dd:11:5a:d3:cf:cd:ec:68:
                    6d:b4:47:e1:94:f0:5f:55:4e:c6:d8:2c:b1:6b:32:38:
                    7b:33:c1:35:a8:72:6a:05:37:33:bb:dc:90:6b:db:c3:
                    7a:fd:24:df:58:50:eb:00:05:ca:04:e3:7e:19:af:f4:
                    e2:42:1f:50:53:c9:47:3e:e9:f7:3e:a6:5b:9b:59:98:
                    e3:d3:37:a2:65:e8:26:c8:63:95:a2:e7:3a:9c:80:92:
                    30:80:7d:f9:84:18:87:56:b8:55:80:1e:2f:cb:fe:44:
                    71:f5:5e:26:69:34:af:54:b1:00:e6:44:35:3e:92:92:
                    39:87:22:cd:e6:f6:67:d6:3f:6c:94:0d:bd:6e:14:b9:
                    a8:62:54:e6:e7:1f:c2:2c:a6:43:27:80:bc:e8:1f:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:6c:c6:62:3c:52:d1:64:b9:bd:a1:1b:cd:b6:0e:8f:
        d9:22:3e:81:e6:79:27:27:95:be:43:69:d7:e3:71:16:
        b5:f1:50:02:f3:81:13:60:ae:03:30:77:e9:b9:cc:28:
        1e:7f:28:c4:ce:12:57:a7:91:7a:c8:05:d6:ea:a3:c4:
        3b:dc:c8:1e:be:07:02:1f:8e:67:cb:52:f3:7c:91:50:
        45:a3:f5:7f:0b:0e:cc:5d:9a:f3:10:c1:9f:ce:aa:f3:
        ed:fa:fa:51:e2:74:79:e4:5f:b6:f0:7e:29:d6:5e:9a:
        54:6f:ce:67:5f:8c:e0:bd:ac:98:fc:5b:ec:32:d1:ea:
        03:37:30:7b:08:01:2c:f9:c6:ce:07:b0:03:83:ce:1a:
        dd:43:af:d2:96:f3:86:54:d4:9c:c4:bf:87:b8:b0:86:
        00:2d:aa:31:13:64:31:0f:67:f8:05:05:4f:ec:63:d7:
        dd:4c:88:c3:71:1b:d9:cf:5b:b8:36:ad:e5:69:2e:93:
        0a:92:19:c3:7d:5c:9a:53:9f:70:67:0c:c9:57:eb:97:
        63:df:2a:0d:3f:40:9f:a5:5a:91:e9:41:59:cd:c0:72:
        ea:64:b1:c3:c9:6e:df:2f:32:a9:16:ea:bf:bf:a4:38:
        09:3a:aa:da:e1:f5:e8:40:21:70:88:1d:ca:5f:6c:fd
    Fingerprint (SHA-256):
        C5:55:9C:59:44:30:5B:1F:7D:FD:5F:6B:A0:72:49:2C:67:95:B2:E5:2F:06:67:94:00:BC:C9:82:9D:B9:6C:40
    Fingerprint (SHA1):
        35:46:F2:BF:DB:88:F7:C2:36:FB:8A:4A:95:03:B6:5F:0F:69:20:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7009: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121289 (0x1e67d549)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:14:11 2017
            Not After : Tue May 10 12:14:11 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:cf:60:ca:a4:4d:c4:8a:83:24:a7:43:7c:6d:69:8b:
                    9e:f3:60:ae:af:13:cf:c7:48:89:ce:d0:d1:14:c4:3b:
                    86:bd:ca:fe:4c:d5:c6:ea:51:69:96:bd:ac:3c:c7:1f:
                    9c:5d:d8:c1:32:7a:be:2e:e3:82:4c:11:e8:32:b9:b3:
                    b0:64:c0:dd:6d:c3:51:25:3c:ad:ee:52:89:1f:79:36:
                    2b:cc:e7:31:80:08:70:07:97:0e:9a:8c:37:40:77:b5:
                    f5:5e:e2:99:e9:35:6f:52:b2:13:55:f4:e1:f4:e4:47:
                    6d:85:bf:8f:59:7f:a8:1b:a7:e5:27:dd:cd:8e:8a:1a:
                    2e:25:1f:af:61:8a:ed:89:56:8d:ee:88:25:0d:b3:b4:
                    a9:85:b7:c1:4a:a0:d9:93:9f:cf:37:06:1c:a6:14:32:
                    df:46:93:a6:a6:8c:1a:98:cf:4f:fc:65:9a:6a:6c:f7:
                    72:0f:ac:87:55:0f:0a:e1:7d:a0:fe:ae:f0:72:fa:00:
                    29:a9:3a:36:f3:90:4a:de:bb:91:ce:f6:79:32:5c:9a:
                    3e:9b:8a:6a:24:b8:5f:2e:4d:0e:46:87:16:cf:43:c8:
                    ea:2d:f9:70:74:7a:ba:14:7e:c1:7c:44:26:32:c8:38:
                    82:b3:d3:f7:92:09:61:01:b0:04:a9:8c:43:52:63:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        93:00:59:99:44:99:42:1a:59:8b:0e:c4:44:b7:c4:37:
        c3:90:67:c7:d5:e7:c3:10:5b:f4:11:45:c7:fb:26:75:
        2c:61:f1:2f:47:4e:cd:da:ed:a7:67:58:76:59:e6:50:
        c9:ee:c6:7c:f1:ad:f1:3d:94:02:7a:60:a1:bb:23:57:
        0d:6c:39:e2:80:6d:aa:35:bc:48:64:08:1d:7d:c8:1d:
        33:ef:d1:36:36:d1:0a:dc:d8:bc:bf:70:d8:5c:de:8e:
        c4:6a:d0:f7:f9:68:1b:80:ca:83:b5:9f:3a:c8:84:92:
        01:1a:a3:93:66:bb:75:18:54:38:81:fa:76:95:bb:0a:
        d8:71:0e:4d:a8:b3:14:7c:f1:59:a1:5f:60:58:f9:48:
        71:51:ae:dc:00:05:37:b6:97:a8:c7:0b:78:07:f0:b7:
        2f:a2:69:21:43:ca:6e:f4:a1:a1:10:5f:e7:f7:b7:23:
        6a:30:45:a3:2d:58:75:f5:3b:7d:59:03:a4:9b:29:96:
        7c:d4:ea:06:50:6f:11:62:be:db:bb:9a:da:af:ed:7d:
        9d:fe:a7:cf:50:f4:f8:f2:94:37:b3:9e:5a:c7:d7:71:
        c0:d5:35:dd:22:02:55:b8:b5:c2:33:f3:a4:53:cc:b7:
        da:93:2c:98:51:7d:c5:c8:6f:20:cd:19:dd:1b:fb:56
    Fingerprint (SHA-256):
        48:8D:E5:04:5D:23:DE:A9:FA:FC:7A:3A:BB:5B:5B:BB:59:19:9B:FF:24:54:54:F1:83:3C:B7:16:8B:D5:56:6A
    Fingerprint (SHA1):
        C7:5E:8E:AF:4D:62:44:E0:88:85:38:85:CB:55:1A:48:F5:ED:21:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #7010: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121290 (0x1e67d54a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:14:11 2017
            Not After : Tue May 10 12:14:11 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:d1:1e:7a:6d:cb:10:e1:ce:84:2c:b7:64:77:50:d0:
                    9d:f8:d5:57:64:af:95:f2:79:06:b9:2f:12:63:95:49:
                    28:35:00:8c:53:f1:5f:f7:f0:52:36:a9:60:13:4c:c3:
                    8b:21:6c:e9:3f:42:3e:cb:6d:a3:04:bc:0b:09:2b:60:
                    51:d8:f5:ea:ec:0d:be:83:1d:5f:ea:10:c0:eb:3b:49:
                    01:47:8c:f2:dc:2a:35:54:a7:bc:d5:9b:de:c3:dc:a8:
                    ad:47:95:04:4c:b2:35:3e:e6:7c:6c:b1:de:33:71:98:
                    03:e8:4d:ec:45:11:fc:b9:5f:3f:14:c7:a6:56:5b:69:
                    fc:d4:10:e1:51:b6:5e:3b:df:32:21:6b:3d:85:3e:bf:
                    07:14:7a:20:22:cf:eb:1b:89:04:4c:1c:80:55:07:fb:
                    ea:09:9a:13:ed:00:dc:ea:61:4b:84:96:a5:65:0c:83:
                    05:b4:83:a3:9c:7d:31:78:a4:c5:39:ae:e4:10:65:e7:
                    1b:5e:92:93:5a:97:16:b2:d6:cf:e9:55:13:4d:8a:43:
                    63:cb:a0:d5:32:91:71:62:2d:80:27:fb:68:23:eb:2f:
                    6c:34:a4:52:54:a4:05:e2:c5:16:63:fa:60:88:89:a9:
                    ff:c4:fa:33:6d:dc:4d:e7:6d:c2:0b:98:ea:36:12:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:b6:88:76:46:62:89:96:5c:b9:95:13:b3:eb:c8:48:
        0a:3d:d2:6f:27:ce:38:7a:39:ae:ce:cd:7a:c9:7d:18:
        1d:d6:2a:63:f5:ad:f0:34:c4:79:06:60:c2:5d:fc:66:
        0d:15:d9:95:e8:29:bf:43:18:d1:3e:62:4b:4d:2e:81:
        87:45:7e:d3:e5:5d:a1:77:4a:5b:37:96:82:af:05:18:
        9b:d8:9a:89:2d:d8:5c:bc:ec:3a:67:98:17:e9:07:40:
        62:59:db:9a:8d:4a:a8:50:56:ba:ea:14:6c:2f:c6:61:
        66:69:aa:e4:c4:e6:58:94:39:d7:d4:ed:8e:c3:85:ce:
        35:a3:b4:40:61:e4:86:80:e4:77:82:19:49:bc:1c:89:
        fe:db:bf:ea:81:13:7b:36:63:a6:43:73:ee:57:38:27:
        ab:f3:b9:30:79:22:71:a0:13:ae:17:c0:da:17:4d:d2:
        01:47:1f:9c:50:72:12:c7:51:1c:a5:2a:0d:7f:a5:d6:
        9e:d9:9f:b6:06:b1:eb:2c:db:16:47:6c:6b:56:96:e9:
        92:e5:2a:7b:e2:68:1e:3d:fa:86:f9:6a:56:fb:ae:f4:
        a2:9e:f9:84:b5:58:2c:bb:18:bd:42:7f:42:5d:56:f2:
        f5:70:b2:32:26:db:47:37:17:12:79:8a:4e:98:44:aa
    Fingerprint (SHA-256):
        59:34:CE:84:5B:64:C8:32:7F:1B:5B:52:26:33:E5:F9:BE:83:4A:A9:0D:5D:62:AE:C8:16:65:B0:1C:FF:13:C5
    Fingerprint (SHA1):
        5E:4E:E9:CE:DA:2F:8C:C6:95:B6:98:52:DD:82:05:64:5D:0B:EA:4B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7011: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121291 (0x1e67d54b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:14:13 2017
            Not After : Tue May 10 12:14:13 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:80:fc:4a:75:f7:7d:73:b0:db:dd:d4:a2:16:36:d6:
                    09:3c:26:6e:f0:d4:52:e9:21:c4:39:47:01:01:a9:b4:
                    28:9e:9c:35:4e:ad:01:a2:6a:b9:b4:a0:de:32:13:81:
                    fa:32:bf:c7:3c:57:a0:a0:13:45:c0:f4:2f:59:de:7e:
                    2c:b3:0f:2c:c9:b8:a2:25:f9:ed:5f:1d:be:4d:b9:b6:
                    44:ce:33:0b:d6:00:a7:c4:d9:2e:9b:d4:2a:b9:bb:8a:
                    85:98:d5:c4:35:fb:ca:1d:8a:99:11:6f:7b:35:a1:4e:
                    77:cb:0d:3e:ae:18:e0:38:a4:5d:07:86:42:3d:d8:92:
                    1f:8d:31:02:1e:22:d7:e2:1c:a2:ef:22:dc:29:3f:50:
                    36:1f:77:0b:6d:52:29:7e:82:ad:5a:eb:f3:bf:e8:c7:
                    70:27:06:4d:ab:25:6f:70:c8:36:ad:22:a9:9b:59:af:
                    8e:10:62:e9:40:8e:4e:a5:5e:a2:0b:2e:3a:0a:3d:7d:
                    33:ee:71:33:ed:68:c1:0e:ca:9f:ca:ba:c0:57:9a:1e:
                    19:ab:b4:14:ef:4a:e8:fb:0d:e6:4e:4c:d4:5a:f9:86:
                    04:6c:7b:a7:a0:43:d3:f5:49:b8:ef:ef:fc:b7:90:d9:
                    32:e6:b5:1b:b6:22:c9:65:d5:c6:18:61:8d:77:f2:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:2c:95:49:d5:94:71:0e:9e:c0:21:5d:fb:fb:94:d8:
        e4:2e:39:b2:c8:b3:c0:19:1c:7a:15:ee:d2:e3:5d:1b:
        44:3d:a0:0d:a0:3a:52:f1:0d:85:bf:d5:af:94:20:e6:
        e1:76:0c:d8:83:0d:f1:07:31:8c:ea:0f:0b:d0:3f:ec:
        75:5b:71:60:24:18:16:7b:14:62:3d:13:96:68:84:2e:
        44:aa:1c:85:47:d6:b6:08:33:08:5b:8b:ff:86:2e:db:
        9b:33:c4:2b:f3:96:af:cc:d9:00:91:6b:bc:ea:de:1d:
        b2:71:67:b8:da:ab:12:e0:c8:d8:e1:0b:aa:d7:0e:42:
        d0:d0:08:d1:c8:2a:08:82:f4:24:63:ce:f6:28:ea:54:
        a5:f3:bf:d0:66:e8:72:41:11:01:4d:2f:33:1a:15:e1:
        7c:49:9d:69:8a:81:f6:95:30:6f:ab:04:0f:02:47:f8:
        71:f4:84:01:20:7a:37:82:69:48:7e:54:3b:0d:22:0c:
        6a:73:47:09:30:fd:92:18:68:e3:d2:6b:62:29:81:8e:
        01:c1:d0:eb:0c:9d:04:a4:a4:e1:8d:cd:39:55:3c:30:
        38:21:bd:d9:29:51:2d:12:96:34:24:7f:f6:a4:2e:b0:
        9b:42:62:af:f0:46:fe:4c:1a:76:e5:70:e3:83:a2:29
    Fingerprint (SHA-256):
        5B:61:30:7A:F4:75:EE:73:71:B8:32:9E:79:A9:1B:52:76:9C:C3:F7:E8:B1:4B:C0:17:65:EB:FD:08:FC:20:46
    Fingerprint (SHA1):
        0B:A4:94:6F:31:4D:99:DF:A1:22:2C:46:E9:CE:7F:3D:BF:AB:F6:A8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7012: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121292 (0x1e67d54c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:14:13 2017
            Not After : Tue May 10 12:14:13 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:4d:9f:be:e8:25:1d:02:d8:4c:19:80:8e:54:d1:fa:
                    b1:5e:d3:67:34:54:27:de:8d:71:a5:19:e4:dc:f2:24:
                    d2:eb:69:0f:9f:7e:59:63:1c:03:da:0b:b9:19:f5:fe:
                    bd:11:7b:4a:ca:60:9e:a0:27:33:8a:a1:b9:b5:39:a3:
                    b7:7b:96:ee:eb:54:fa:91:55:64:12:ac:ff:f1:fc:fd:
                    e4:2c:0b:d9:b2:a2:78:e2:ee:a5:ae:da:34:be:e0:c8:
                    b1:76:d3:09:6f:3f:fc:55:56:bc:a0:23:ec:16:75:9a:
                    0f:31:89:55:a2:c2:de:f7:32:df:7f:05:09:70:d1:26:
                    8b:e9:6b:97:20:59:19:95:df:ed:6f:cc:0a:59:c3:1a:
                    18:6a:1e:a3:97:70:5d:0e:71:bc:70:6f:e6:2a:8c:4a:
                    15:39:08:4c:2a:4a:35:f5:6a:6f:73:a7:32:4d:92:d2:
                    57:03:1a:8c:13:cd:26:4d:83:5a:2e:e3:5c:b4:62:1e:
                    0f:3e:03:44:ef:27:02:1e:28:c7:6d:e0:4a:df:a0:03:
                    ad:99:58:ac:d3:4e:83:78:5b:0f:d2:ff:45:1d:a7:2f:
                    80:3a:36:8a:2d:88:52:ab:1b:c7:09:1d:d1:52:45:ab:
                    29:49:73:35:a5:d7:9a:92:fd:6b:c5:69:76:07:72:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:d8:e2:7a:0d:ad:c4:38:9f:be:90:d9:37:bb:99:6e:
        0a:9f:2a:c9:f7:76:8a:b8:b2:74:9f:9a:e0:c1:e5:ae:
        fc:a5:2d:c4:7b:ec:c9:9f:de:5f:5b:2b:93:95:3b:a2:
        4d:63:96:0c:5f:d7:b9:3a:62:46:e4:e3:d4:d3:8b:cb:
        38:f3:14:32:d5:fb:e7:09:92:bb:0a:af:5d:c5:b2:42:
        52:80:4a:25:91:cc:11:01:34:d9:45:c9:ed:f9:bd:00:
        0b:10:23:98:fb:0b:92:ee:ec:e1:32:71:4f:e2:c4:1a:
        5b:b6:d4:cc:99:56:f6:c8:99:29:58:56:3d:e3:99:b1:
        cc:15:6b:52:d2:07:7b:5f:4b:9c:a0:86:dd:e0:d5:b0:
        6f:7d:fa:db:78:b2:24:a9:18:1e:45:57:7a:c8:9b:8c:
        eb:ec:6c:3c:6a:95:8a:1b:54:c3:d6:0b:46:93:97:7a:
        9d:92:36:4e:43:2f:a9:a3:41:e3:d8:f3:68:ac:a5:9e:
        b5:c3:1b:d2:c6:6b:cd:df:a7:e1:9e:8a:97:67:1f:fc:
        9a:f6:e0:9a:0f:97:31:da:1f:94:da:e3:c7:7e:4e:48:
        77:13:eb:ba:a1:d0:19:34:96:2f:da:15:ee:53:c2:93:
        a7:04:c8:72:b0:86:ab:aa:4f:1d:cc:55:a8:f3:5c:d4
    Fingerprint (SHA-256):
        33:D5:B9:E1:5E:71:FC:E6:ED:1C:57:BD:A0:FC:25:4E:64:38:B3:AF:F9:19:1F:C1:E8:DE:EC:52:1D:50:D1:44
    Fingerprint (SHA1):
        16:83:E6:5B:55:C8:E8:83:E9:CC:82:4D:BB:4E:88:7B:91:B8:28:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #7013: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7014: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121307 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7015: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7016: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7017: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7018: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121308   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7019: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7020: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7021: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7022: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121309   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7023: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7024: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7025: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7026: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121310   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7027: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7028: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7029: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121307 (0x1e67d55b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:19 2017
            Not After : Tue May 10 12:14:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:f3:45:a6:2f:a9:bb:be:1d:ec:63:ad:e6:64:37:0b:
                    8a:6a:28:4f:db:ce:87:f2:48:5b:fe:8c:43:c7:34:8e:
                    4e:dc:ce:16:7d:1e:d7:96:60:ee:e6:fd:39:7d:bb:3b:
                    4f:bc:e5:bd:8e:fc:9f:16:dc:b7:ea:e0:10:52:5b:a9:
                    af:be:f1:56:62:77:3e:d4:fe:63:48:42:4e:f4:b9:41:
                    d8:bc:a0:3f:fc:17:7f:87:e6:0d:79:80:2f:a0:f6:41:
                    0e:0f:e6:4f:be:d9:07:24:51:9a:f2:27:0f:87:d1:0f:
                    df:a6:0e:91:20:3e:50:58:dd:87:4f:c9:93:3c:ad:99:
                    8c:ba:9b:2d:c2:9f:39:da:2d:0d:6d:0e:b8:4c:8b:31:
                    23:74:a6:9a:25:fb:09:f4:cc:0a:84:3d:e2:3e:ca:5e:
                    3e:14:81:20:c1:de:8a:af:ca:b4:56:4a:f2:14:52:cd:
                    59:5e:2b:a1:ed:47:f9:b1:e6:6a:29:19:71:f7:df:d8:
                    a4:71:d6:d2:a9:05:64:d7:05:95:5d:ec:26:21:09:35:
                    5e:59:37:72:90:5b:27:9b:8d:36:52:23:d1:47:05:18:
                    d8:62:8f:78:cf:3d:f1:25:ce:e9:7b:31:ba:6f:07:eb:
                    7a:27:e6:e7:f3:75:e0:fa:fd:45:14:db:58:d2:cd:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:07:d4:c3:0b:ee:d3:b4:26:44:8f:47:dd:ac:95:0a:
        dd:31:c1:63:0d:50:be:1a:86:da:17:8d:c6:b6:50:83:
        25:6b:a7:f0:94:e5:b6:b9:73:bf:45:bb:6f:07:bc:2e:
        df:26:88:35:6a:04:a7:f3:66:de:74:d6:b8:9f:a1:3d:
        46:84:e4:21:d8:72:dc:2c:55:83:28:8c:c5:6e:56:98:
        b2:c0:a6:da:b9:56:74:ba:f1:b2:5c:8a:51:b1:01:24:
        6d:e4:fd:df:9a:85:87:78:a4:51:6b:d0:8b:97:84:17:
        3f:a9:3f:fd:aa:8f:04:49:7d:68:d8:38:6b:3b:d5:49:
        1a:4f:39:04:07:40:3f:97:12:f2:9e:4d:9b:b5:d9:c6:
        95:71:58:9f:18:fa:be:bb:fa:e8:f5:87:50:cc:ab:3b:
        de:56:5b:53:69:3e:01:7f:d5:3c:83:d7:94:8d:03:ea:
        86:29:c9:44:05:f4:ce:41:9c:d9:7f:42:a1:ca:95:e1:
        b4:45:e1:6a:cf:49:b4:95:de:3c:2b:dd:03:1c:b0:d0:
        3e:a3:4f:a2:e2:41:0f:22:31:62:ec:40:ad:41:8a:d4:
        ce:a4:03:28:bf:81:46:90:f4:b7:ec:6e:c4:04:d4:69:
        4a:1d:7a:19:0d:ec:57:c0:f3:64:d4:f7:7f:67:78:63
    Fingerprint (SHA-256):
        23:B1:1C:81:A0:53:59:37:51:23:96:0B:4E:02:96:E5:5E:11:B6:7F:E4:7F:36:49:28:50:2C:04:B6:97:D8:A0
    Fingerprint (SHA1):
        9A:25:6B:C8:14:1A:F9:C5:62:51:96:3F:98:25:7B:D3:B6:F1:3C:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7030: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7031: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121308 (0x1e67d55c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:20 2017
            Not After : Tue May 10 12:14:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:75:26:ad:ca:8a:d9:3d:ae:37:3a:0e:62:5b:ab:5f:
                    65:13:2e:ca:a5:6d:31:a6:13:5d:46:ba:5f:f8:93:9b:
                    94:f7:14:6f:79:9f:36:97:2b:71:a8:e8:da:56:96:a8:
                    c9:82:30:1c:71:23:79:22:00:ca:0c:83:1f:53:3b:61:
                    8e:d5:39:46:88:26:03:11:7d:91:10:72:c4:4f:09:5a:
                    d6:be:3f:43:57:0c:0e:ac:b6:86:dc:d1:89:9e:86:51:
                    cc:72:a0:fa:60:42:a0:a0:9a:4d:b6:91:9b:01:36:da:
                    07:60:d5:e0:26:22:d7:54:6b:8a:f5:e5:1f:21:be:ff:
                    40:b7:0a:73:4b:29:3d:db:29:2d:17:3c:ce:e0:47:bb:
                    83:88:67:73:b4:f4:6a:bd:e0:b1:5c:8e:bf:2c:c5:73:
                    07:e2:c7:89:b3:e3:53:fc:09:60:f8:4c:f8:38:2d:e2:
                    e1:77:e2:8b:7f:80:5e:74:71:49:dd:e3:7c:94:63:d0:
                    a6:9a:b3:98:6c:e6:24:a1:a8:4f:03:18:ae:1a:64:e1:
                    24:ac:c8:4d:01:ea:5a:87:a0:f4:80:f9:0f:58:41:38:
                    cc:45:e0:b4:7b:a2:2f:48:18:35:c2:b6:f2:02:80:09:
                    fa:89:2d:a4:56:1b:b5:d8:09:ff:73:89:e6:3e:a2:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:2f:ad:29:73:f4:b5:9a:67:1d:99:0e:07:bd:ee:c4:
        5d:e3:98:b4:ce:1f:02:19:8e:9b:a0:d1:3f:fc:b1:06:
        b2:ac:03:67:d0:49:17:e2:ae:0d:f2:20:86:a6:c0:17:
        97:0b:31:56:5e:c4:4d:e3:f3:20:c8:f2:ff:cc:4a:49:
        3a:e3:d4:f7:67:5f:bf:da:d7:f5:c8:f6:b9:53:5f:f3:
        03:44:4a:42:c4:ef:41:18:f0:76:43:ac:89:6b:18:27:
        c9:c4:9e:a1:6b:80:d6:75:69:fb:34:17:10:4d:18:d7:
        31:89:29:fb:77:9a:5c:8c:ad:f2:ee:f8:d1:0f:72:98:
        8d:ff:39:61:1c:ce:59:69:50:2b:9c:df:60:5c:0f:5f:
        a9:a6:60:9c:7c:e7:67:40:49:4f:6d:f1:e7:a6:dd:0f:
        3c:b7:e3:27:13:78:1d:21:17:d0:54:9b:76:58:a4:1e:
        3c:cc:c2:47:80:1e:a6:f1:ec:95:b0:36:f2:5d:55:c8:
        76:64:16:46:b5:ef:6d:4f:48:26:6b:d0:71:25:12:b4:
        f8:39:99:d6:3e:90:ac:13:d6:3f:df:ef:48:ba:6f:eb:
        18:4e:30:ab:2c:57:d7:51:8d:44:ca:02:a2:52:a5:dd:
        16:88:e4:13:e1:1f:58:9a:1b:23:7e:7f:42:2e:fe:d1
    Fingerprint (SHA-256):
        AE:40:75:1A:14:50:64:90:1E:1A:DA:31:22:85:74:C5:5C:1F:41:09:10:EA:96:54:09:2F:58:5D:3E:80:E4:BA
    Fingerprint (SHA1):
        9B:0B:D8:9E:44:B2:B2:63:45:CD:DF:B5:B7:0E:14:CC:F0:4C:76:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7032: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7033: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121309 (0x1e67d55d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:21 2017
            Not After : Tue May 10 12:14:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:67:93:71:58:b5:81:8f:19:ae:b3:95:62:47:96:86:
                    7a:3b:86:7f:d9:e4:be:4b:15:a0:80:16:c2:20:e7:59:
                    5e:97:f5:25:36:ac:fb:f1:7c:84:61:a9:a7:05:82:d7:
                    c1:6f:79:80:fe:05:29:53:86:28:3b:94:d3:1b:9d:e7:
                    3a:38:b2:70:71:f2:d0:dd:18:b7:69:16:20:be:d8:6c:
                    39:3d:3f:47:f9:0f:d9:c9:bf:21:15:4c:08:ce:cc:74:
                    46:3a:b2:1b:44:ed:67:d9:67:f3:30:0f:0e:c0:c0:43:
                    7c:50:b6:fa:f0:da:ef:68:a6:e8:20:52:29:16:b8:ad:
                    a3:f1:a3:72:d0:6f:fc:3a:f0:19:56:c1:28:ae:f0:75:
                    70:08:4b:39:b4:73:a4:6a:96:84:9d:25:64:23:e4:78:
                    20:05:51:db:ad:20:4f:49:29:33:d7:48:b8:1b:e8:2e:
                    a0:a4:f1:3c:50:bf:b6:19:37:c3:10:58:95:cf:fa:ef:
                    72:f9:0f:c7:81:43:4f:f0:a6:e1:80:f0:40:87:35:b3:
                    99:aa:35:a8:23:05:60:2e:7f:91:d0:24:a9:df:e2:66:
                    98:3b:0d:b2:ea:22:f1:53:8b:98:5c:d0:71:2c:3e:c5:
                    b8:24:a5:fb:3a:4b:90:2c:d5:e0:43:84:5d:54:7e:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:39:a3:79:95:52:1b:c4:ef:c0:76:e2:1d:b7:65:12:
        40:ac:56:61:f9:62:d7:7e:8f:ef:35:b9:db:c0:2c:ef:
        fd:13:eb:1d:54:18:42:21:44:28:60:14:c0:de:04:2c:
        3d:61:c6:d6:b6:ee:eb:0c:67:0b:c6:06:2a:2d:d5:b7:
        33:b4:de:3e:29:b4:6d:db:17:7d:6e:03:39:2a:3e:cc:
        ac:8d:82:99:fb:93:f0:11:e9:34:49:d6:2f:d1:19:26:
        6b:4b:d9:ce:c0:cd:46:41:dd:e6:48:7f:bc:86:08:45:
        39:3f:6d:a9:cd:43:f1:7b:19:a9:ff:0e:b6:8d:a5:a7:
        47:06:c0:93:af:3d:e8:23:96:4a:64:9e:66:01:35:3e:
        e7:c5:f0:61:2e:41:7c:03:4f:8d:54:a4:fa:de:a8:33:
        1b:06:31:0c:46:d7:04:57:43:88:3e:1d:14:e7:46:ca:
        f1:6c:41:dd:71:f4:5d:98:8d:08:46:52:8e:7a:87:e8:
        4e:8b:a5:43:38:a8:e2:6c:a0:bb:53:c8:d4:c1:69:a8:
        05:8c:f3:e8:c6:a3:14:fb:a0:df:ff:8f:a3:47:4e:46:
        c1:5e:71:3b:32:58:c9:34:38:2a:59:f7:ed:3c:ca:66:
        a2:f2:06:b2:0a:2e:5e:68:29:72:52:29:03:4b:e7:6b
    Fingerprint (SHA-256):
        D1:0F:15:E1:48:3D:F9:E4:E7:84:63:C6:98:AB:FC:FF:70:64:4B:E2:B0:59:DD:CB:EC:40:9C:4F:F8:F2:2F:86
    Fingerprint (SHA1):
        54:75:08:95:0D:65:F8:C5:A9:95:AD:22:E8:9E:4F:DD:F3:04:BD:CA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7034: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7035: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7036: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7037: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7038: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121307 (0x1e67d55b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:19 2017
            Not After : Tue May 10 12:14:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:f3:45:a6:2f:a9:bb:be:1d:ec:63:ad:e6:64:37:0b:
                    8a:6a:28:4f:db:ce:87:f2:48:5b:fe:8c:43:c7:34:8e:
                    4e:dc:ce:16:7d:1e:d7:96:60:ee:e6:fd:39:7d:bb:3b:
                    4f:bc:e5:bd:8e:fc:9f:16:dc:b7:ea:e0:10:52:5b:a9:
                    af:be:f1:56:62:77:3e:d4:fe:63:48:42:4e:f4:b9:41:
                    d8:bc:a0:3f:fc:17:7f:87:e6:0d:79:80:2f:a0:f6:41:
                    0e:0f:e6:4f:be:d9:07:24:51:9a:f2:27:0f:87:d1:0f:
                    df:a6:0e:91:20:3e:50:58:dd:87:4f:c9:93:3c:ad:99:
                    8c:ba:9b:2d:c2:9f:39:da:2d:0d:6d:0e:b8:4c:8b:31:
                    23:74:a6:9a:25:fb:09:f4:cc:0a:84:3d:e2:3e:ca:5e:
                    3e:14:81:20:c1:de:8a:af:ca:b4:56:4a:f2:14:52:cd:
                    59:5e:2b:a1:ed:47:f9:b1:e6:6a:29:19:71:f7:df:d8:
                    a4:71:d6:d2:a9:05:64:d7:05:95:5d:ec:26:21:09:35:
                    5e:59:37:72:90:5b:27:9b:8d:36:52:23:d1:47:05:18:
                    d8:62:8f:78:cf:3d:f1:25:ce:e9:7b:31:ba:6f:07:eb:
                    7a:27:e6:e7:f3:75:e0:fa:fd:45:14:db:58:d2:cd:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:07:d4:c3:0b:ee:d3:b4:26:44:8f:47:dd:ac:95:0a:
        dd:31:c1:63:0d:50:be:1a:86:da:17:8d:c6:b6:50:83:
        25:6b:a7:f0:94:e5:b6:b9:73:bf:45:bb:6f:07:bc:2e:
        df:26:88:35:6a:04:a7:f3:66:de:74:d6:b8:9f:a1:3d:
        46:84:e4:21:d8:72:dc:2c:55:83:28:8c:c5:6e:56:98:
        b2:c0:a6:da:b9:56:74:ba:f1:b2:5c:8a:51:b1:01:24:
        6d:e4:fd:df:9a:85:87:78:a4:51:6b:d0:8b:97:84:17:
        3f:a9:3f:fd:aa:8f:04:49:7d:68:d8:38:6b:3b:d5:49:
        1a:4f:39:04:07:40:3f:97:12:f2:9e:4d:9b:b5:d9:c6:
        95:71:58:9f:18:fa:be:bb:fa:e8:f5:87:50:cc:ab:3b:
        de:56:5b:53:69:3e:01:7f:d5:3c:83:d7:94:8d:03:ea:
        86:29:c9:44:05:f4:ce:41:9c:d9:7f:42:a1:ca:95:e1:
        b4:45:e1:6a:cf:49:b4:95:de:3c:2b:dd:03:1c:b0:d0:
        3e:a3:4f:a2:e2:41:0f:22:31:62:ec:40:ad:41:8a:d4:
        ce:a4:03:28:bf:81:46:90:f4:b7:ec:6e:c4:04:d4:69:
        4a:1d:7a:19:0d:ec:57:c0:f3:64:d4:f7:7f:67:78:63
    Fingerprint (SHA-256):
        23:B1:1C:81:A0:53:59:37:51:23:96:0B:4E:02:96:E5:5E:11:B6:7F:E4:7F:36:49:28:50:2C:04:B6:97:D8:A0
    Fingerprint (SHA1):
        9A:25:6B:C8:14:1A:F9:C5:62:51:96:3F:98:25:7B:D3:B6:F1:3C:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7039: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7040: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121308 (0x1e67d55c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:20 2017
            Not After : Tue May 10 12:14:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:75:26:ad:ca:8a:d9:3d:ae:37:3a:0e:62:5b:ab:5f:
                    65:13:2e:ca:a5:6d:31:a6:13:5d:46:ba:5f:f8:93:9b:
                    94:f7:14:6f:79:9f:36:97:2b:71:a8:e8:da:56:96:a8:
                    c9:82:30:1c:71:23:79:22:00:ca:0c:83:1f:53:3b:61:
                    8e:d5:39:46:88:26:03:11:7d:91:10:72:c4:4f:09:5a:
                    d6:be:3f:43:57:0c:0e:ac:b6:86:dc:d1:89:9e:86:51:
                    cc:72:a0:fa:60:42:a0:a0:9a:4d:b6:91:9b:01:36:da:
                    07:60:d5:e0:26:22:d7:54:6b:8a:f5:e5:1f:21:be:ff:
                    40:b7:0a:73:4b:29:3d:db:29:2d:17:3c:ce:e0:47:bb:
                    83:88:67:73:b4:f4:6a:bd:e0:b1:5c:8e:bf:2c:c5:73:
                    07:e2:c7:89:b3:e3:53:fc:09:60:f8:4c:f8:38:2d:e2:
                    e1:77:e2:8b:7f:80:5e:74:71:49:dd:e3:7c:94:63:d0:
                    a6:9a:b3:98:6c:e6:24:a1:a8:4f:03:18:ae:1a:64:e1:
                    24:ac:c8:4d:01:ea:5a:87:a0:f4:80:f9:0f:58:41:38:
                    cc:45:e0:b4:7b:a2:2f:48:18:35:c2:b6:f2:02:80:09:
                    fa:89:2d:a4:56:1b:b5:d8:09:ff:73:89:e6:3e:a2:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:2f:ad:29:73:f4:b5:9a:67:1d:99:0e:07:bd:ee:c4:
        5d:e3:98:b4:ce:1f:02:19:8e:9b:a0:d1:3f:fc:b1:06:
        b2:ac:03:67:d0:49:17:e2:ae:0d:f2:20:86:a6:c0:17:
        97:0b:31:56:5e:c4:4d:e3:f3:20:c8:f2:ff:cc:4a:49:
        3a:e3:d4:f7:67:5f:bf:da:d7:f5:c8:f6:b9:53:5f:f3:
        03:44:4a:42:c4:ef:41:18:f0:76:43:ac:89:6b:18:27:
        c9:c4:9e:a1:6b:80:d6:75:69:fb:34:17:10:4d:18:d7:
        31:89:29:fb:77:9a:5c:8c:ad:f2:ee:f8:d1:0f:72:98:
        8d:ff:39:61:1c:ce:59:69:50:2b:9c:df:60:5c:0f:5f:
        a9:a6:60:9c:7c:e7:67:40:49:4f:6d:f1:e7:a6:dd:0f:
        3c:b7:e3:27:13:78:1d:21:17:d0:54:9b:76:58:a4:1e:
        3c:cc:c2:47:80:1e:a6:f1:ec:95:b0:36:f2:5d:55:c8:
        76:64:16:46:b5:ef:6d:4f:48:26:6b:d0:71:25:12:b4:
        f8:39:99:d6:3e:90:ac:13:d6:3f:df:ef:48:ba:6f:eb:
        18:4e:30:ab:2c:57:d7:51:8d:44:ca:02:a2:52:a5:dd:
        16:88:e4:13:e1:1f:58:9a:1b:23:7e:7f:42:2e:fe:d1
    Fingerprint (SHA-256):
        AE:40:75:1A:14:50:64:90:1E:1A:DA:31:22:85:74:C5:5C:1F:41:09:10:EA:96:54:09:2F:58:5D:3E:80:E4:BA
    Fingerprint (SHA1):
        9B:0B:D8:9E:44:B2:B2:63:45:CD:DF:B5:B7:0E:14:CC:F0:4C:76:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7041: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7042: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121309 (0x1e67d55d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:21 2017
            Not After : Tue May 10 12:14:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:67:93:71:58:b5:81:8f:19:ae:b3:95:62:47:96:86:
                    7a:3b:86:7f:d9:e4:be:4b:15:a0:80:16:c2:20:e7:59:
                    5e:97:f5:25:36:ac:fb:f1:7c:84:61:a9:a7:05:82:d7:
                    c1:6f:79:80:fe:05:29:53:86:28:3b:94:d3:1b:9d:e7:
                    3a:38:b2:70:71:f2:d0:dd:18:b7:69:16:20:be:d8:6c:
                    39:3d:3f:47:f9:0f:d9:c9:bf:21:15:4c:08:ce:cc:74:
                    46:3a:b2:1b:44:ed:67:d9:67:f3:30:0f:0e:c0:c0:43:
                    7c:50:b6:fa:f0:da:ef:68:a6:e8:20:52:29:16:b8:ad:
                    a3:f1:a3:72:d0:6f:fc:3a:f0:19:56:c1:28:ae:f0:75:
                    70:08:4b:39:b4:73:a4:6a:96:84:9d:25:64:23:e4:78:
                    20:05:51:db:ad:20:4f:49:29:33:d7:48:b8:1b:e8:2e:
                    a0:a4:f1:3c:50:bf:b6:19:37:c3:10:58:95:cf:fa:ef:
                    72:f9:0f:c7:81:43:4f:f0:a6:e1:80:f0:40:87:35:b3:
                    99:aa:35:a8:23:05:60:2e:7f:91:d0:24:a9:df:e2:66:
                    98:3b:0d:b2:ea:22:f1:53:8b:98:5c:d0:71:2c:3e:c5:
                    b8:24:a5:fb:3a:4b:90:2c:d5:e0:43:84:5d:54:7e:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:39:a3:79:95:52:1b:c4:ef:c0:76:e2:1d:b7:65:12:
        40:ac:56:61:f9:62:d7:7e:8f:ef:35:b9:db:c0:2c:ef:
        fd:13:eb:1d:54:18:42:21:44:28:60:14:c0:de:04:2c:
        3d:61:c6:d6:b6:ee:eb:0c:67:0b:c6:06:2a:2d:d5:b7:
        33:b4:de:3e:29:b4:6d:db:17:7d:6e:03:39:2a:3e:cc:
        ac:8d:82:99:fb:93:f0:11:e9:34:49:d6:2f:d1:19:26:
        6b:4b:d9:ce:c0:cd:46:41:dd:e6:48:7f:bc:86:08:45:
        39:3f:6d:a9:cd:43:f1:7b:19:a9:ff:0e:b6:8d:a5:a7:
        47:06:c0:93:af:3d:e8:23:96:4a:64:9e:66:01:35:3e:
        e7:c5:f0:61:2e:41:7c:03:4f:8d:54:a4:fa:de:a8:33:
        1b:06:31:0c:46:d7:04:57:43:88:3e:1d:14:e7:46:ca:
        f1:6c:41:dd:71:f4:5d:98:8d:08:46:52:8e:7a:87:e8:
        4e:8b:a5:43:38:a8:e2:6c:a0:bb:53:c8:d4:c1:69:a8:
        05:8c:f3:e8:c6:a3:14:fb:a0:df:ff:8f:a3:47:4e:46:
        c1:5e:71:3b:32:58:c9:34:38:2a:59:f7:ed:3c:ca:66:
        a2:f2:06:b2:0a:2e:5e:68:29:72:52:29:03:4b:e7:6b
    Fingerprint (SHA-256):
        D1:0F:15:E1:48:3D:F9:E4:E7:84:63:C6:98:AB:FC:FF:70:64:4B:E2:B0:59:DD:CB:EC:40:9C:4F:F8:F2:2F:86
    Fingerprint (SHA1):
        54:75:08:95:0D:65:F8:C5:A9:95:AD:22:E8:9E:4F:DD:F3:04:BD:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7043: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7044: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7045: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121311 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7046: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7047: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7048: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7049: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121312   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7050: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7051: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7052: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7053: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121313   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7054: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7055: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7056: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7057: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121314   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7058: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7059: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7060: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7061: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121315   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7062: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7063: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7064: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121311 (0x1e67d55f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:d8:7d:c4:50:e5:39:4d:a0:00:91:10:5d:68:e4:
                    f3:c8:29:c8:a6:36:6c:32:16:9a:15:c7:14:48:5e:50:
                    5f:20:ba:87:0a:6b:00:2d:c0:9f:30:a7:0e:a0:c5:01:
                    33:e7:1c:3f:5b:36:ae:ba:2c:40:2a:d9:8f:6a:12:99:
                    9d:97:1a:2c:ae:94:af:da:fa:d4:d3:e2:42:21:57:63:
                    fb:3e:4d:8a:73:c0:16:81:82:8a:96:ed:40:c1:e2:2d:
                    66:36:dd:68:7a:5b:7d:99:f6:66:ce:05:e9:e7:45:11:
                    e1:3d:b4:dd:33:e5:21:ec:12:1b:7b:02:3f:b8:29:2b:
                    52:6b:2d:30:f2:72:a0:5d:43:c8:b8:6e:96:bd:87:b2:
                    0d:a4:ed:d3:72:d1:ea:7f:a7:b3:b7:64:58:48:37:97:
                    2f:c2:4c:59:14:a5:25:5c:e3:d5:a3:62:f1:2b:5a:9e:
                    84:eb:1a:30:3a:bf:b9:10:5e:d5:21:ca:bb:09:7b:bc:
                    6b:2c:92:a2:de:cd:83:59:29:c6:f5:ca:66:08:d8:1f:
                    6f:b8:7d:8e:77:08:18:61:8e:cd:8b:d4:47:cc:9b:51:
                    9a:35:85:3f:e7:33:ce:34:20:ba:05:34:c4:ce:4a:13:
                    6c:6a:0a:9d:78:60:c1:d5:df:5d:09:cc:59:f0:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:0b:a1:19:bf:61:d2:85:96:4a:29:10:25:3d:86:dc:
        5e:9e:02:94:55:bd:bd:bd:ce:6e:07:32:8d:64:f8:a8:
        2d:97:d2:03:0e:70:dc:9d:23:9b:24:9e:44:5b:60:ec:
        8b:d8:ab:7a:78:31:3a:34:92:c0:1d:b5:f1:f2:47:ae:
        40:f1:4c:99:17:b9:a3:ff:83:48:b5:a7:5c:0b:cf:43:
        87:32:92:c3:14:83:62:c3:d9:90:bd:4c:49:b3:8c:09:
        41:2e:9e:fe:63:45:37:06:02:c9:d5:fd:05:d0:f3:92:
        73:52:ee:d0:31:14:4b:b6:bf:87:07:6e:7a:fc:66:27:
        7b:e4:4e:66:43:59:4a:ce:41:f8:96:83:49:d0:ee:a3:
        60:ca:70:ed:46:e1:bc:f1:36:f0:48:e4:df:0d:67:89:
        e1:29:d8:78:96:3f:7c:3c:74:8f:10:bf:c7:76:8d:d3:
        f1:0c:a5:68:ed:b3:22:37:65:ca:d1:f4:19:e3:04:72:
        61:0b:25:0b:52:7b:23:25:36:2a:78:aa:ec:37:94:36:
        7f:c1:06:31:8c:9a:8e:f2:81:42:d7:c4:80:99:1d:1b:
        07:e8:72:bb:bb:e6:11:1a:d8:22:6c:80:f9:4a:b8:d2:
        b6:73:42:8e:68:8d:28:24:8f:82:f7:eb:d1:bc:e2:db
    Fingerprint (SHA-256):
        81:73:DE:1C:1C:87:6E:41:9D:1F:93:DE:3E:7C:AD:F8:76:48:6E:4C:99:CC:26:B5:F6:7B:96:82:5A:C6:43:43
    Fingerprint (SHA1):
        F3:C2:BC:44:67:B9:56:A4:C3:D1:6A:36:8B:BC:10:C1:DE:F0:56:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7065: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7066: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121312 (0x1e67d560)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:85:82:67:70:6b:f2:a8:41:cb:ef:ed:7f:7c:fc:a9:
                    25:e5:68:44:f7:b3:b2:e9:49:a5:3b:34:8b:1a:49:15:
                    4d:2f:01:56:ab:1a:89:cd:01:9e:0e:f1:6a:fa:f3:78:
                    c1:66:83:e3:14:07:26:71:15:c5:18:13:a8:6c:b3:2a:
                    40:9a:c7:b6:bc:ed:f3:13:35:d2:17:b6:2c:bf:4d:63:
                    aa:b8:ab:ce:df:eb:2c:6c:4f:f1:e4:4e:dc:4e:03:58:
                    a0:53:58:7a:ca:50:be:14:62:5c:46:7d:6e:51:bf:a1:
                    52:5a:d2:03:ca:3c:51:fa:c1:31:cb:08:38:72:6a:c1:
                    d5:f5:5e:88:2c:32:7f:33:67:b5:31:c1:4b:24:6e:62:
                    4c:6a:2d:4d:e2:a5:8e:ba:12:14:a3:73:54:0f:8b:49:
                    1c:70:70:51:b8:5b:8e:b9:4b:e8:e0:44:7b:ac:e8:16:
                    c9:20:2f:4e:9d:16:73:da:aa:52:e7:bf:79:8d:27:4c:
                    17:ba:80:a6:b1:f2:db:49:a1:94:b2:2e:c3:ab:4c:6d:
                    3f:55:9e:4d:3f:a6:c1:3b:54:e1:06:95:14:4e:4d:d5:
                    66:a1:13:87:21:33:45:e6:6b:de:b3:4e:ef:4a:87:a3:
                    d9:67:ff:48:44:0e:f1:b3:98:0f:f1:16:d1:88:04:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:e7:aa:ee:e1:9f:06:4a:db:84:ca:b3:9a:03:7e:44:
        5c:ff:fd:dd:c9:e2:18:b4:58:8c:fb:51:84:f9:3e:2e:
        ed:66:ce:f2:2b:8a:3f:75:e0:c4:86:0b:74:3c:44:d1:
        f3:ab:02:b9:99:e8:6c:15:f9:8e:c0:14:04:b3:49:fd:
        99:7c:2b:60:a6:0a:d5:cc:a8:ce:fd:3c:1a:63:7d:5a:
        4b:51:e8:1d:ff:14:fb:24:b1:63:69:7e:ac:c2:3d:07:
        c7:f1:5d:e0:fa:1a:08:ba:64:9b:25:f7:5f:d3:c6:ff:
        9d:89:5d:bc:de:dd:87:62:bb:4d:be:e1:d8:22:78:f0:
        3b:38:eb:c7:6f:8f:f4:e3:72:23:5f:68:17:22:59:c5:
        a3:37:a1:70:bc:fa:7f:eb:25:de:c5:a0:14:1d:c4:2b:
        40:37:7f:b0:97:b3:28:cd:69:f9:eb:c0:d9:cc:9a:c8:
        c8:3c:59:3c:80:69:14:1e:b7:79:a6:63:fb:b5:f8:92:
        3a:c3:f6:ee:43:77:87:ce:df:c1:36:7b:4f:92:bd:62:
        21:80:59:f6:e4:33:27:98:81:5b:8b:f6:7f:90:96:f5:
        09:c3:1b:82:60:d4:54:38:2c:ec:0a:f0:b2:a2:fd:4c:
        64:06:67:23:af:e6:cd:34:44:ae:6a:a3:27:00:14:2f
    Fingerprint (SHA-256):
        FD:A6:7E:47:B5:E7:7B:A8:6A:BD:9E:82:1B:CD:12:C5:49:AC:24:A0:9E:80:B1:95:15:2E:AC:F6:E3:1F:67:A1
    Fingerprint (SHA1):
        75:C4:8D:EE:0F:AF:6E:44:4B:71:7B:CF:6B:11:92:6F:8B:74:A9:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7067: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7068: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121313 (0x1e67d561)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:24 2017
            Not After : Tue May 10 12:14:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:f8:cd:0c:93:9e:6f:73:86:79:02:fc:64:96:41:25:
                    6d:e2:d9:43:c9:8a:20:b6:dc:ac:d9:9e:54:03:39:1f:
                    4c:d3:50:30:51:f0:ca:28:7f:6e:a3:d3:ed:5f:ec:e2:
                    52:c0:4c:26:d7:06:e6:18:db:51:d5:46:07:36:ad:7a:
                    bb:78:62:03:30:83:c4:79:05:ea:92:06:28:45:44:7f:
                    96:e7:cf:f4:fe:3b:fe:17:0e:f4:dd:08:13:b0:cf:ba:
                    db:20:a0:6a:26:a5:ba:e9:ae:22:69:ce:45:43:7d:55:
                    e2:96:13:02:b3:59:f1:1a:9f:c1:6b:4c:bb:46:9f:6c:
                    fe:3a:15:83:b1:39:d2:db:c2:86:36:51:92:54:ee:24:
                    42:d2:eb:18:c1:44:7d:5c:33:6a:df:ca:d7:c3:6d:c8:
                    38:64:ab:e8:41:f0:0b:4b:26:59:57:75:23:ec:d4:1a:
                    e1:54:71:43:33:67:07:fa:ed:22:3b:b6:4f:4c:ef:d6:
                    8e:73:eb:04:54:85:a6:1f:62:3a:1f:e0:b6:6a:93:3a:
                    2f:15:fa:06:f3:31:23:e6:88:41:a9:fd:b6:ca:19:ee:
                    27:d7:51:89:a0:f0:27:fd:53:06:cc:8a:58:02:97:36:
                    fc:53:c5:69:30:53:29:70:f2:a1:f4:ca:1e:ea:33:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:54:21:42:e5:f1:1c:29:68:eb:66:b3:76:e4:04:45:
        c5:74:13:ca:15:bb:93:08:eb:ac:26:5c:53:cf:19:9b:
        21:1f:ad:e3:88:b2:fe:29:0d:48:76:3b:2a:56:69:5c:
        ae:2e:de:ce:a9:ac:42:34:f5:6a:fc:7e:a6:66:aa:57:
        0a:61:8f:2d:fb:8f:e1:72:3a:bb:07:f4:35:89:e2:35:
        07:e7:70:5e:69:e6:4a:8c:3d:e1:05:e8:21:93:91:83:
        a9:25:8a:51:cd:9a:24:d1:39:bf:0d:12:4d:4d:ba:f8:
        8e:e5:1c:a7:9a:64:2e:5b:63:52:6b:d4:0d:0a:2a:38:
        36:60:56:a7:7c:ae:0e:c2:e2:70:04:47:7e:9f:91:79:
        7b:80:48:23:04:dd:ed:c7:9f:07:a4:26:ce:ab:8f:b8:
        25:4c:9b:00:e1:e0:ed:81:02:21:70:80:e8:c5:93:1a:
        ad:e1:68:f2:39:73:f7:e8:ac:1b:17:32:33:49:eb:58:
        da:d3:2d:87:02:94:8d:72:43:0f:cd:35:94:66:b7:53:
        71:1d:63:47:79:4b:c1:60:ca:46:94:ff:f8:1a:b1:ec:
        ae:44:34:25:17:dc:1f:f5:1d:1a:87:3a:3b:15:2c:25:
        a9:4f:94:4b:f8:8d:f3:88:e7:0d:53:08:b3:30:3f:c4
    Fingerprint (SHA-256):
        41:C3:F6:20:EA:BE:FD:11:1D:90:7B:37:1B:69:68:9E:47:98:98:3E:7D:D1:CC:CD:D2:23:BF:B2:79:57:A9:49
    Fingerprint (SHA1):
        9D:50:84:F4:36:DA:8D:81:E0:63:52:FE:23:40:EF:8C:82:9D:3D:EE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7069: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7070: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7071: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7072: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7073: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121311 (0x1e67d55f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:d8:7d:c4:50:e5:39:4d:a0:00:91:10:5d:68:e4:
                    f3:c8:29:c8:a6:36:6c:32:16:9a:15:c7:14:48:5e:50:
                    5f:20:ba:87:0a:6b:00:2d:c0:9f:30:a7:0e:a0:c5:01:
                    33:e7:1c:3f:5b:36:ae:ba:2c:40:2a:d9:8f:6a:12:99:
                    9d:97:1a:2c:ae:94:af:da:fa:d4:d3:e2:42:21:57:63:
                    fb:3e:4d:8a:73:c0:16:81:82:8a:96:ed:40:c1:e2:2d:
                    66:36:dd:68:7a:5b:7d:99:f6:66:ce:05:e9:e7:45:11:
                    e1:3d:b4:dd:33:e5:21:ec:12:1b:7b:02:3f:b8:29:2b:
                    52:6b:2d:30:f2:72:a0:5d:43:c8:b8:6e:96:bd:87:b2:
                    0d:a4:ed:d3:72:d1:ea:7f:a7:b3:b7:64:58:48:37:97:
                    2f:c2:4c:59:14:a5:25:5c:e3:d5:a3:62:f1:2b:5a:9e:
                    84:eb:1a:30:3a:bf:b9:10:5e:d5:21:ca:bb:09:7b:bc:
                    6b:2c:92:a2:de:cd:83:59:29:c6:f5:ca:66:08:d8:1f:
                    6f:b8:7d:8e:77:08:18:61:8e:cd:8b:d4:47:cc:9b:51:
                    9a:35:85:3f:e7:33:ce:34:20:ba:05:34:c4:ce:4a:13:
                    6c:6a:0a:9d:78:60:c1:d5:df:5d:09:cc:59:f0:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:0b:a1:19:bf:61:d2:85:96:4a:29:10:25:3d:86:dc:
        5e:9e:02:94:55:bd:bd:bd:ce:6e:07:32:8d:64:f8:a8:
        2d:97:d2:03:0e:70:dc:9d:23:9b:24:9e:44:5b:60:ec:
        8b:d8:ab:7a:78:31:3a:34:92:c0:1d:b5:f1:f2:47:ae:
        40:f1:4c:99:17:b9:a3:ff:83:48:b5:a7:5c:0b:cf:43:
        87:32:92:c3:14:83:62:c3:d9:90:bd:4c:49:b3:8c:09:
        41:2e:9e:fe:63:45:37:06:02:c9:d5:fd:05:d0:f3:92:
        73:52:ee:d0:31:14:4b:b6:bf:87:07:6e:7a:fc:66:27:
        7b:e4:4e:66:43:59:4a:ce:41:f8:96:83:49:d0:ee:a3:
        60:ca:70:ed:46:e1:bc:f1:36:f0:48:e4:df:0d:67:89:
        e1:29:d8:78:96:3f:7c:3c:74:8f:10:bf:c7:76:8d:d3:
        f1:0c:a5:68:ed:b3:22:37:65:ca:d1:f4:19:e3:04:72:
        61:0b:25:0b:52:7b:23:25:36:2a:78:aa:ec:37:94:36:
        7f:c1:06:31:8c:9a:8e:f2:81:42:d7:c4:80:99:1d:1b:
        07:e8:72:bb:bb:e6:11:1a:d8:22:6c:80:f9:4a:b8:d2:
        b6:73:42:8e:68:8d:28:24:8f:82:f7:eb:d1:bc:e2:db
    Fingerprint (SHA-256):
        81:73:DE:1C:1C:87:6E:41:9D:1F:93:DE:3E:7C:AD:F8:76:48:6E:4C:99:CC:26:B5:F6:7B:96:82:5A:C6:43:43
    Fingerprint (SHA1):
        F3:C2:BC:44:67:B9:56:A4:C3:D1:6A:36:8B:BC:10:C1:DE:F0:56:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7074: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7075: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121312 (0x1e67d560)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:85:82:67:70:6b:f2:a8:41:cb:ef:ed:7f:7c:fc:a9:
                    25:e5:68:44:f7:b3:b2:e9:49:a5:3b:34:8b:1a:49:15:
                    4d:2f:01:56:ab:1a:89:cd:01:9e:0e:f1:6a:fa:f3:78:
                    c1:66:83:e3:14:07:26:71:15:c5:18:13:a8:6c:b3:2a:
                    40:9a:c7:b6:bc:ed:f3:13:35:d2:17:b6:2c:bf:4d:63:
                    aa:b8:ab:ce:df:eb:2c:6c:4f:f1:e4:4e:dc:4e:03:58:
                    a0:53:58:7a:ca:50:be:14:62:5c:46:7d:6e:51:bf:a1:
                    52:5a:d2:03:ca:3c:51:fa:c1:31:cb:08:38:72:6a:c1:
                    d5:f5:5e:88:2c:32:7f:33:67:b5:31:c1:4b:24:6e:62:
                    4c:6a:2d:4d:e2:a5:8e:ba:12:14:a3:73:54:0f:8b:49:
                    1c:70:70:51:b8:5b:8e:b9:4b:e8:e0:44:7b:ac:e8:16:
                    c9:20:2f:4e:9d:16:73:da:aa:52:e7:bf:79:8d:27:4c:
                    17:ba:80:a6:b1:f2:db:49:a1:94:b2:2e:c3:ab:4c:6d:
                    3f:55:9e:4d:3f:a6:c1:3b:54:e1:06:95:14:4e:4d:d5:
                    66:a1:13:87:21:33:45:e6:6b:de:b3:4e:ef:4a:87:a3:
                    d9:67:ff:48:44:0e:f1:b3:98:0f:f1:16:d1:88:04:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:e7:aa:ee:e1:9f:06:4a:db:84:ca:b3:9a:03:7e:44:
        5c:ff:fd:dd:c9:e2:18:b4:58:8c:fb:51:84:f9:3e:2e:
        ed:66:ce:f2:2b:8a:3f:75:e0:c4:86:0b:74:3c:44:d1:
        f3:ab:02:b9:99:e8:6c:15:f9:8e:c0:14:04:b3:49:fd:
        99:7c:2b:60:a6:0a:d5:cc:a8:ce:fd:3c:1a:63:7d:5a:
        4b:51:e8:1d:ff:14:fb:24:b1:63:69:7e:ac:c2:3d:07:
        c7:f1:5d:e0:fa:1a:08:ba:64:9b:25:f7:5f:d3:c6:ff:
        9d:89:5d:bc:de:dd:87:62:bb:4d:be:e1:d8:22:78:f0:
        3b:38:eb:c7:6f:8f:f4:e3:72:23:5f:68:17:22:59:c5:
        a3:37:a1:70:bc:fa:7f:eb:25:de:c5:a0:14:1d:c4:2b:
        40:37:7f:b0:97:b3:28:cd:69:f9:eb:c0:d9:cc:9a:c8:
        c8:3c:59:3c:80:69:14:1e:b7:79:a6:63:fb:b5:f8:92:
        3a:c3:f6:ee:43:77:87:ce:df:c1:36:7b:4f:92:bd:62:
        21:80:59:f6:e4:33:27:98:81:5b:8b:f6:7f:90:96:f5:
        09:c3:1b:82:60:d4:54:38:2c:ec:0a:f0:b2:a2:fd:4c:
        64:06:67:23:af:e6:cd:34:44:ae:6a:a3:27:00:14:2f
    Fingerprint (SHA-256):
        FD:A6:7E:47:B5:E7:7B:A8:6A:BD:9E:82:1B:CD:12:C5:49:AC:24:A0:9E:80:B1:95:15:2E:AC:F6:E3:1F:67:A1
    Fingerprint (SHA1):
        75:C4:8D:EE:0F:AF:6E:44:4B:71:7B:CF:6B:11:92:6F:8B:74:A9:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7076: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7077: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121313 (0x1e67d561)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:24 2017
            Not After : Tue May 10 12:14:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:f8:cd:0c:93:9e:6f:73:86:79:02:fc:64:96:41:25:
                    6d:e2:d9:43:c9:8a:20:b6:dc:ac:d9:9e:54:03:39:1f:
                    4c:d3:50:30:51:f0:ca:28:7f:6e:a3:d3:ed:5f:ec:e2:
                    52:c0:4c:26:d7:06:e6:18:db:51:d5:46:07:36:ad:7a:
                    bb:78:62:03:30:83:c4:79:05:ea:92:06:28:45:44:7f:
                    96:e7:cf:f4:fe:3b:fe:17:0e:f4:dd:08:13:b0:cf:ba:
                    db:20:a0:6a:26:a5:ba:e9:ae:22:69:ce:45:43:7d:55:
                    e2:96:13:02:b3:59:f1:1a:9f:c1:6b:4c:bb:46:9f:6c:
                    fe:3a:15:83:b1:39:d2:db:c2:86:36:51:92:54:ee:24:
                    42:d2:eb:18:c1:44:7d:5c:33:6a:df:ca:d7:c3:6d:c8:
                    38:64:ab:e8:41:f0:0b:4b:26:59:57:75:23:ec:d4:1a:
                    e1:54:71:43:33:67:07:fa:ed:22:3b:b6:4f:4c:ef:d6:
                    8e:73:eb:04:54:85:a6:1f:62:3a:1f:e0:b6:6a:93:3a:
                    2f:15:fa:06:f3:31:23:e6:88:41:a9:fd:b6:ca:19:ee:
                    27:d7:51:89:a0:f0:27:fd:53:06:cc:8a:58:02:97:36:
                    fc:53:c5:69:30:53:29:70:f2:a1:f4:ca:1e:ea:33:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:54:21:42:e5:f1:1c:29:68:eb:66:b3:76:e4:04:45:
        c5:74:13:ca:15:bb:93:08:eb:ac:26:5c:53:cf:19:9b:
        21:1f:ad:e3:88:b2:fe:29:0d:48:76:3b:2a:56:69:5c:
        ae:2e:de:ce:a9:ac:42:34:f5:6a:fc:7e:a6:66:aa:57:
        0a:61:8f:2d:fb:8f:e1:72:3a:bb:07:f4:35:89:e2:35:
        07:e7:70:5e:69:e6:4a:8c:3d:e1:05:e8:21:93:91:83:
        a9:25:8a:51:cd:9a:24:d1:39:bf:0d:12:4d:4d:ba:f8:
        8e:e5:1c:a7:9a:64:2e:5b:63:52:6b:d4:0d:0a:2a:38:
        36:60:56:a7:7c:ae:0e:c2:e2:70:04:47:7e:9f:91:79:
        7b:80:48:23:04:dd:ed:c7:9f:07:a4:26:ce:ab:8f:b8:
        25:4c:9b:00:e1:e0:ed:81:02:21:70:80:e8:c5:93:1a:
        ad:e1:68:f2:39:73:f7:e8:ac:1b:17:32:33:49:eb:58:
        da:d3:2d:87:02:94:8d:72:43:0f:cd:35:94:66:b7:53:
        71:1d:63:47:79:4b:c1:60:ca:46:94:ff:f8:1a:b1:ec:
        ae:44:34:25:17:dc:1f:f5:1d:1a:87:3a:3b:15:2c:25:
        a9:4f:94:4b:f8:8d:f3:88:e7:0d:53:08:b3:30:3f:c4
    Fingerprint (SHA-256):
        41:C3:F6:20:EA:BE:FD:11:1D:90:7B:37:1B:69:68:9E:47:98:98:3E:7D:D1:CC:CD:D2:23:BF:B2:79:57:A9:49
    Fingerprint (SHA1):
        9D:50:84:F4:36:DA:8D:81:E0:63:52:FE:23:40:EF:8C:82:9D:3D:EE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7078: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7079: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121311 (0x1e67d55f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:d8:7d:c4:50:e5:39:4d:a0:00:91:10:5d:68:e4:
                    f3:c8:29:c8:a6:36:6c:32:16:9a:15:c7:14:48:5e:50:
                    5f:20:ba:87:0a:6b:00:2d:c0:9f:30:a7:0e:a0:c5:01:
                    33:e7:1c:3f:5b:36:ae:ba:2c:40:2a:d9:8f:6a:12:99:
                    9d:97:1a:2c:ae:94:af:da:fa:d4:d3:e2:42:21:57:63:
                    fb:3e:4d:8a:73:c0:16:81:82:8a:96:ed:40:c1:e2:2d:
                    66:36:dd:68:7a:5b:7d:99:f6:66:ce:05:e9:e7:45:11:
                    e1:3d:b4:dd:33:e5:21:ec:12:1b:7b:02:3f:b8:29:2b:
                    52:6b:2d:30:f2:72:a0:5d:43:c8:b8:6e:96:bd:87:b2:
                    0d:a4:ed:d3:72:d1:ea:7f:a7:b3:b7:64:58:48:37:97:
                    2f:c2:4c:59:14:a5:25:5c:e3:d5:a3:62:f1:2b:5a:9e:
                    84:eb:1a:30:3a:bf:b9:10:5e:d5:21:ca:bb:09:7b:bc:
                    6b:2c:92:a2:de:cd:83:59:29:c6:f5:ca:66:08:d8:1f:
                    6f:b8:7d:8e:77:08:18:61:8e:cd:8b:d4:47:cc:9b:51:
                    9a:35:85:3f:e7:33:ce:34:20:ba:05:34:c4:ce:4a:13:
                    6c:6a:0a:9d:78:60:c1:d5:df:5d:09:cc:59:f0:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:0b:a1:19:bf:61:d2:85:96:4a:29:10:25:3d:86:dc:
        5e:9e:02:94:55:bd:bd:bd:ce:6e:07:32:8d:64:f8:a8:
        2d:97:d2:03:0e:70:dc:9d:23:9b:24:9e:44:5b:60:ec:
        8b:d8:ab:7a:78:31:3a:34:92:c0:1d:b5:f1:f2:47:ae:
        40:f1:4c:99:17:b9:a3:ff:83:48:b5:a7:5c:0b:cf:43:
        87:32:92:c3:14:83:62:c3:d9:90:bd:4c:49:b3:8c:09:
        41:2e:9e:fe:63:45:37:06:02:c9:d5:fd:05:d0:f3:92:
        73:52:ee:d0:31:14:4b:b6:bf:87:07:6e:7a:fc:66:27:
        7b:e4:4e:66:43:59:4a:ce:41:f8:96:83:49:d0:ee:a3:
        60:ca:70:ed:46:e1:bc:f1:36:f0:48:e4:df:0d:67:89:
        e1:29:d8:78:96:3f:7c:3c:74:8f:10:bf:c7:76:8d:d3:
        f1:0c:a5:68:ed:b3:22:37:65:ca:d1:f4:19:e3:04:72:
        61:0b:25:0b:52:7b:23:25:36:2a:78:aa:ec:37:94:36:
        7f:c1:06:31:8c:9a:8e:f2:81:42:d7:c4:80:99:1d:1b:
        07:e8:72:bb:bb:e6:11:1a:d8:22:6c:80:f9:4a:b8:d2:
        b6:73:42:8e:68:8d:28:24:8f:82:f7:eb:d1:bc:e2:db
    Fingerprint (SHA-256):
        81:73:DE:1C:1C:87:6E:41:9D:1F:93:DE:3E:7C:AD:F8:76:48:6E:4C:99:CC:26:B5:F6:7B:96:82:5A:C6:43:43
    Fingerprint (SHA1):
        F3:C2:BC:44:67:B9:56:A4:C3:D1:6A:36:8B:BC:10:C1:DE:F0:56:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7080: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121311 (0x1e67d55f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:d8:7d:c4:50:e5:39:4d:a0:00:91:10:5d:68:e4:
                    f3:c8:29:c8:a6:36:6c:32:16:9a:15:c7:14:48:5e:50:
                    5f:20:ba:87:0a:6b:00:2d:c0:9f:30:a7:0e:a0:c5:01:
                    33:e7:1c:3f:5b:36:ae:ba:2c:40:2a:d9:8f:6a:12:99:
                    9d:97:1a:2c:ae:94:af:da:fa:d4:d3:e2:42:21:57:63:
                    fb:3e:4d:8a:73:c0:16:81:82:8a:96:ed:40:c1:e2:2d:
                    66:36:dd:68:7a:5b:7d:99:f6:66:ce:05:e9:e7:45:11:
                    e1:3d:b4:dd:33:e5:21:ec:12:1b:7b:02:3f:b8:29:2b:
                    52:6b:2d:30:f2:72:a0:5d:43:c8:b8:6e:96:bd:87:b2:
                    0d:a4:ed:d3:72:d1:ea:7f:a7:b3:b7:64:58:48:37:97:
                    2f:c2:4c:59:14:a5:25:5c:e3:d5:a3:62:f1:2b:5a:9e:
                    84:eb:1a:30:3a:bf:b9:10:5e:d5:21:ca:bb:09:7b:bc:
                    6b:2c:92:a2:de:cd:83:59:29:c6:f5:ca:66:08:d8:1f:
                    6f:b8:7d:8e:77:08:18:61:8e:cd:8b:d4:47:cc:9b:51:
                    9a:35:85:3f:e7:33:ce:34:20:ba:05:34:c4:ce:4a:13:
                    6c:6a:0a:9d:78:60:c1:d5:df:5d:09:cc:59:f0:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:0b:a1:19:bf:61:d2:85:96:4a:29:10:25:3d:86:dc:
        5e:9e:02:94:55:bd:bd:bd:ce:6e:07:32:8d:64:f8:a8:
        2d:97:d2:03:0e:70:dc:9d:23:9b:24:9e:44:5b:60:ec:
        8b:d8:ab:7a:78:31:3a:34:92:c0:1d:b5:f1:f2:47:ae:
        40:f1:4c:99:17:b9:a3:ff:83:48:b5:a7:5c:0b:cf:43:
        87:32:92:c3:14:83:62:c3:d9:90:bd:4c:49:b3:8c:09:
        41:2e:9e:fe:63:45:37:06:02:c9:d5:fd:05:d0:f3:92:
        73:52:ee:d0:31:14:4b:b6:bf:87:07:6e:7a:fc:66:27:
        7b:e4:4e:66:43:59:4a:ce:41:f8:96:83:49:d0:ee:a3:
        60:ca:70:ed:46:e1:bc:f1:36:f0:48:e4:df:0d:67:89:
        e1:29:d8:78:96:3f:7c:3c:74:8f:10:bf:c7:76:8d:d3:
        f1:0c:a5:68:ed:b3:22:37:65:ca:d1:f4:19:e3:04:72:
        61:0b:25:0b:52:7b:23:25:36:2a:78:aa:ec:37:94:36:
        7f:c1:06:31:8c:9a:8e:f2:81:42:d7:c4:80:99:1d:1b:
        07:e8:72:bb:bb:e6:11:1a:d8:22:6c:80:f9:4a:b8:d2:
        b6:73:42:8e:68:8d:28:24:8f:82:f7:eb:d1:bc:e2:db
    Fingerprint (SHA-256):
        81:73:DE:1C:1C:87:6E:41:9D:1F:93:DE:3E:7C:AD:F8:76:48:6E:4C:99:CC:26:B5:F6:7B:96:82:5A:C6:43:43
    Fingerprint (SHA1):
        F3:C2:BC:44:67:B9:56:A4:C3:D1:6A:36:8B:BC:10:C1:DE:F0:56:18
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7081: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121312 (0x1e67d560)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:85:82:67:70:6b:f2:a8:41:cb:ef:ed:7f:7c:fc:a9:
                    25:e5:68:44:f7:b3:b2:e9:49:a5:3b:34:8b:1a:49:15:
                    4d:2f:01:56:ab:1a:89:cd:01:9e:0e:f1:6a:fa:f3:78:
                    c1:66:83:e3:14:07:26:71:15:c5:18:13:a8:6c:b3:2a:
                    40:9a:c7:b6:bc:ed:f3:13:35:d2:17:b6:2c:bf:4d:63:
                    aa:b8:ab:ce:df:eb:2c:6c:4f:f1:e4:4e:dc:4e:03:58:
                    a0:53:58:7a:ca:50:be:14:62:5c:46:7d:6e:51:bf:a1:
                    52:5a:d2:03:ca:3c:51:fa:c1:31:cb:08:38:72:6a:c1:
                    d5:f5:5e:88:2c:32:7f:33:67:b5:31:c1:4b:24:6e:62:
                    4c:6a:2d:4d:e2:a5:8e:ba:12:14:a3:73:54:0f:8b:49:
                    1c:70:70:51:b8:5b:8e:b9:4b:e8:e0:44:7b:ac:e8:16:
                    c9:20:2f:4e:9d:16:73:da:aa:52:e7:bf:79:8d:27:4c:
                    17:ba:80:a6:b1:f2:db:49:a1:94:b2:2e:c3:ab:4c:6d:
                    3f:55:9e:4d:3f:a6:c1:3b:54:e1:06:95:14:4e:4d:d5:
                    66:a1:13:87:21:33:45:e6:6b:de:b3:4e:ef:4a:87:a3:
                    d9:67:ff:48:44:0e:f1:b3:98:0f:f1:16:d1:88:04:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:e7:aa:ee:e1:9f:06:4a:db:84:ca:b3:9a:03:7e:44:
        5c:ff:fd:dd:c9:e2:18:b4:58:8c:fb:51:84:f9:3e:2e:
        ed:66:ce:f2:2b:8a:3f:75:e0:c4:86:0b:74:3c:44:d1:
        f3:ab:02:b9:99:e8:6c:15:f9:8e:c0:14:04:b3:49:fd:
        99:7c:2b:60:a6:0a:d5:cc:a8:ce:fd:3c:1a:63:7d:5a:
        4b:51:e8:1d:ff:14:fb:24:b1:63:69:7e:ac:c2:3d:07:
        c7:f1:5d:e0:fa:1a:08:ba:64:9b:25:f7:5f:d3:c6:ff:
        9d:89:5d:bc:de:dd:87:62:bb:4d:be:e1:d8:22:78:f0:
        3b:38:eb:c7:6f:8f:f4:e3:72:23:5f:68:17:22:59:c5:
        a3:37:a1:70:bc:fa:7f:eb:25:de:c5:a0:14:1d:c4:2b:
        40:37:7f:b0:97:b3:28:cd:69:f9:eb:c0:d9:cc:9a:c8:
        c8:3c:59:3c:80:69:14:1e:b7:79:a6:63:fb:b5:f8:92:
        3a:c3:f6:ee:43:77:87:ce:df:c1:36:7b:4f:92:bd:62:
        21:80:59:f6:e4:33:27:98:81:5b:8b:f6:7f:90:96:f5:
        09:c3:1b:82:60:d4:54:38:2c:ec:0a:f0:b2:a2:fd:4c:
        64:06:67:23:af:e6:cd:34:44:ae:6a:a3:27:00:14:2f
    Fingerprint (SHA-256):
        FD:A6:7E:47:B5:E7:7B:A8:6A:BD:9E:82:1B:CD:12:C5:49:AC:24:A0:9E:80:B1:95:15:2E:AC:F6:E3:1F:67:A1
    Fingerprint (SHA1):
        75:C4:8D:EE:0F:AF:6E:44:4B:71:7B:CF:6B:11:92:6F:8B:74:A9:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7082: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121312 (0x1e67d560)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:14:23 2017
            Not After : Tue May 10 12:14:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ee:85:82:67:70:6b:f2:a8:41:cb:ef:ed:7f:7c:fc:a9:
                    25:e5:68:44:f7:b3:b2:e9:49:a5:3b:34:8b:1a:49:15:
                    4d:2f:01:56:ab:1a:89:cd:01:9e:0e:f1:6a:fa:f3:78:
                    c1:66:83:e3:14:07:26:71:15:c5:18:13:a8:6c:b3:2a:
                    40:9a:c7:b6:bc:ed:f3:13:35:d2:17:b6:2c:bf:4d:63:
                    aa:b8:ab:ce:df:eb:2c:6c:4f:f1:e4:4e:dc:4e:03:58:
                    a0:53:58:7a:ca:50:be:14:62:5c:46:7d:6e:51:bf:a1:
                    52:5a:d2:03:ca:3c:51:fa:c1:31:cb:08:38:72:6a:c1:
                    d5:f5:5e:88:2c:32:7f:33:67:b5:31:c1:4b:24:6e:62:
                    4c:6a:2d:4d:e2:a5:8e:ba:12:14:a3:73:54:0f:8b:49:
                    1c:70:70:51:b8:5b:8e:b9:4b:e8:e0:44:7b:ac:e8:16:
                    c9:20:2f:4e:9d:16:73:da:aa:52:e7:bf:79:8d:27:4c:
                    17:ba:80:a6:b1:f2:db:49:a1:94:b2:2e:c3:ab:4c:6d:
                    3f:55:9e:4d:3f:a6:c1:3b:54:e1:06:95:14:4e:4d:d5:
                    66:a1:13:87:21:33:45:e6:6b:de:b3:4e:ef:4a:87:a3:
                    d9:67:ff:48:44:0e:f1:b3:98:0f:f1:16:d1:88:04:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:e7:aa:ee:e1:9f:06:4a:db:84:ca:b3:9a:03:7e:44:
        5c:ff:fd:dd:c9:e2:18:b4:58:8c:fb:51:84:f9:3e:2e:
        ed:66:ce:f2:2b:8a:3f:75:e0:c4:86:0b:74:3c:44:d1:
        f3:ab:02:b9:99:e8:6c:15:f9:8e:c0:14:04:b3:49:fd:
        99:7c:2b:60:a6:0a:d5:cc:a8:ce:fd:3c:1a:63:7d:5a:
        4b:51:e8:1d:ff:14:fb:24:b1:63:69:7e:ac:c2:3d:07:
        c7:f1:5d:e0:fa:1a:08:ba:64:9b:25:f7:5f:d3:c6:ff:
        9d:89:5d:bc:de:dd:87:62:bb:4d:be:e1:d8:22:78:f0:
        3b:38:eb:c7:6f:8f:f4:e3:72:23:5f:68:17:22:59:c5:
        a3:37:a1:70:bc:fa:7f:eb:25:de:c5:a0:14:1d:c4:2b:
        40:37:7f:b0:97:b3:28:cd:69:f9:eb:c0:d9:cc:9a:c8:
        c8:3c:59:3c:80:69:14:1e:b7:79:a6:63:fb:b5:f8:92:
        3a:c3:f6:ee:43:77:87:ce:df:c1:36:7b:4f:92:bd:62:
        21:80:59:f6:e4:33:27:98:81:5b:8b:f6:7f:90:96:f5:
        09:c3:1b:82:60:d4:54:38:2c:ec:0a:f0:b2:a2:fd:4c:
        64:06:67:23:af:e6:cd:34:44:ae:6a:a3:27:00:14:2f
    Fingerprint (SHA-256):
        FD:A6:7E:47:B5:E7:7B:A8:6A:BD:9E:82:1B:CD:12:C5:49:AC:24:A0:9E:80:B1:95:15:2E:AC:F6:E3:1F:67:A1
    Fingerprint (SHA1):
        75:C4:8D:EE:0F:AF:6E:44:4B:71:7B:CF:6B:11:92:6F:8B:74:A9:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7083: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121313 (0x1e67d561)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:24 2017
            Not After : Tue May 10 12:14:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:f8:cd:0c:93:9e:6f:73:86:79:02:fc:64:96:41:25:
                    6d:e2:d9:43:c9:8a:20:b6:dc:ac:d9:9e:54:03:39:1f:
                    4c:d3:50:30:51:f0:ca:28:7f:6e:a3:d3:ed:5f:ec:e2:
                    52:c0:4c:26:d7:06:e6:18:db:51:d5:46:07:36:ad:7a:
                    bb:78:62:03:30:83:c4:79:05:ea:92:06:28:45:44:7f:
                    96:e7:cf:f4:fe:3b:fe:17:0e:f4:dd:08:13:b0:cf:ba:
                    db:20:a0:6a:26:a5:ba:e9:ae:22:69:ce:45:43:7d:55:
                    e2:96:13:02:b3:59:f1:1a:9f:c1:6b:4c:bb:46:9f:6c:
                    fe:3a:15:83:b1:39:d2:db:c2:86:36:51:92:54:ee:24:
                    42:d2:eb:18:c1:44:7d:5c:33:6a:df:ca:d7:c3:6d:c8:
                    38:64:ab:e8:41:f0:0b:4b:26:59:57:75:23:ec:d4:1a:
                    e1:54:71:43:33:67:07:fa:ed:22:3b:b6:4f:4c:ef:d6:
                    8e:73:eb:04:54:85:a6:1f:62:3a:1f:e0:b6:6a:93:3a:
                    2f:15:fa:06:f3:31:23:e6:88:41:a9:fd:b6:ca:19:ee:
                    27:d7:51:89:a0:f0:27:fd:53:06:cc:8a:58:02:97:36:
                    fc:53:c5:69:30:53:29:70:f2:a1:f4:ca:1e:ea:33:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:54:21:42:e5:f1:1c:29:68:eb:66:b3:76:e4:04:45:
        c5:74:13:ca:15:bb:93:08:eb:ac:26:5c:53:cf:19:9b:
        21:1f:ad:e3:88:b2:fe:29:0d:48:76:3b:2a:56:69:5c:
        ae:2e:de:ce:a9:ac:42:34:f5:6a:fc:7e:a6:66:aa:57:
        0a:61:8f:2d:fb:8f:e1:72:3a:bb:07:f4:35:89:e2:35:
        07:e7:70:5e:69:e6:4a:8c:3d:e1:05:e8:21:93:91:83:
        a9:25:8a:51:cd:9a:24:d1:39:bf:0d:12:4d:4d:ba:f8:
        8e:e5:1c:a7:9a:64:2e:5b:63:52:6b:d4:0d:0a:2a:38:
        36:60:56:a7:7c:ae:0e:c2:e2:70:04:47:7e:9f:91:79:
        7b:80:48:23:04:dd:ed:c7:9f:07:a4:26:ce:ab:8f:b8:
        25:4c:9b:00:e1:e0:ed:81:02:21:70:80:e8:c5:93:1a:
        ad:e1:68:f2:39:73:f7:e8:ac:1b:17:32:33:49:eb:58:
        da:d3:2d:87:02:94:8d:72:43:0f:cd:35:94:66:b7:53:
        71:1d:63:47:79:4b:c1:60:ca:46:94:ff:f8:1a:b1:ec:
        ae:44:34:25:17:dc:1f:f5:1d:1a:87:3a:3b:15:2c:25:
        a9:4f:94:4b:f8:8d:f3:88:e7:0d:53:08:b3:30:3f:c4
    Fingerprint (SHA-256):
        41:C3:F6:20:EA:BE:FD:11:1D:90:7B:37:1B:69:68:9E:47:98:98:3E:7D:D1:CC:CD:D2:23:BF:B2:79:57:A9:49
    Fingerprint (SHA1):
        9D:50:84:F4:36:DA:8D:81:E0:63:52:FE:23:40:EF:8C:82:9D:3D:EE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7084: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121313 (0x1e67d561)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:14:24 2017
            Not After : Tue May 10 12:14:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:f8:cd:0c:93:9e:6f:73:86:79:02:fc:64:96:41:25:
                    6d:e2:d9:43:c9:8a:20:b6:dc:ac:d9:9e:54:03:39:1f:
                    4c:d3:50:30:51:f0:ca:28:7f:6e:a3:d3:ed:5f:ec:e2:
                    52:c0:4c:26:d7:06:e6:18:db:51:d5:46:07:36:ad:7a:
                    bb:78:62:03:30:83:c4:79:05:ea:92:06:28:45:44:7f:
                    96:e7:cf:f4:fe:3b:fe:17:0e:f4:dd:08:13:b0:cf:ba:
                    db:20:a0:6a:26:a5:ba:e9:ae:22:69:ce:45:43:7d:55:
                    e2:96:13:02:b3:59:f1:1a:9f:c1:6b:4c:bb:46:9f:6c:
                    fe:3a:15:83:b1:39:d2:db:c2:86:36:51:92:54:ee:24:
                    42:d2:eb:18:c1:44:7d:5c:33:6a:df:ca:d7:c3:6d:c8:
                    38:64:ab:e8:41:f0:0b:4b:26:59:57:75:23:ec:d4:1a:
                    e1:54:71:43:33:67:07:fa:ed:22:3b:b6:4f:4c:ef:d6:
                    8e:73:eb:04:54:85:a6:1f:62:3a:1f:e0:b6:6a:93:3a:
                    2f:15:fa:06:f3:31:23:e6:88:41:a9:fd:b6:ca:19:ee:
                    27:d7:51:89:a0:f0:27:fd:53:06:cc:8a:58:02:97:36:
                    fc:53:c5:69:30:53:29:70:f2:a1:f4:ca:1e:ea:33:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:54:21:42:e5:f1:1c:29:68:eb:66:b3:76:e4:04:45:
        c5:74:13:ca:15:bb:93:08:eb:ac:26:5c:53:cf:19:9b:
        21:1f:ad:e3:88:b2:fe:29:0d:48:76:3b:2a:56:69:5c:
        ae:2e:de:ce:a9:ac:42:34:f5:6a:fc:7e:a6:66:aa:57:
        0a:61:8f:2d:fb:8f:e1:72:3a:bb:07:f4:35:89:e2:35:
        07:e7:70:5e:69:e6:4a:8c:3d:e1:05:e8:21:93:91:83:
        a9:25:8a:51:cd:9a:24:d1:39:bf:0d:12:4d:4d:ba:f8:
        8e:e5:1c:a7:9a:64:2e:5b:63:52:6b:d4:0d:0a:2a:38:
        36:60:56:a7:7c:ae:0e:c2:e2:70:04:47:7e:9f:91:79:
        7b:80:48:23:04:dd:ed:c7:9f:07:a4:26:ce:ab:8f:b8:
        25:4c:9b:00:e1:e0:ed:81:02:21:70:80:e8:c5:93:1a:
        ad:e1:68:f2:39:73:f7:e8:ac:1b:17:32:33:49:eb:58:
        da:d3:2d:87:02:94:8d:72:43:0f:cd:35:94:66:b7:53:
        71:1d:63:47:79:4b:c1:60:ca:46:94:ff:f8:1a:b1:ec:
        ae:44:34:25:17:dc:1f:f5:1d:1a:87:3a:3b:15:2c:25:
        a9:4f:94:4b:f8:8d:f3:88:e7:0d:53:08:b3:30:3f:c4
    Fingerprint (SHA-256):
        41:C3:F6:20:EA:BE:FD:11:1D:90:7B:37:1B:69:68:9E:47:98:98:3E:7D:D1:CC:CD:D2:23:BF:B2:79:57:A9:49
    Fingerprint (SHA1):
        9D:50:84:F4:36:DA:8D:81:E0:63:52:FE:23:40:EF:8C:82:9D:3D:EE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7085: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7086: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121316 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7087: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7088: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7089: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7090: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121317   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7091: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7092: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7093: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7094: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121318   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7095: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7096: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7097: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7098: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510121319   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7099: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7100: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #7101: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7102: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510121320   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7103: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7104: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #7105: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7106: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510121321   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7107: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7108: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #7109: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7110: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510121322   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7111: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7112: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7113: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #7114: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #7115: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7116: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #7117: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121316 (0x1e67d564)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:28 2017
            Not After : Tue May 10 12:14:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:b2:14:97:9c:01:63:51:b7:2c:48:f8:d4:31:e9:df:
                    ad:0d:6f:44:f1:b7:46:39:76:58:67:50:a2:7d:a9:7a:
                    92:2b:96:e9:70:1a:ac:34:0a:1c:62:2f:b5:dc:3d:e6:
                    ee:48:a3:5a:b0:39:92:99:2e:4a:cb:d7:39:8f:ce:03:
                    f9:97:2e:c6:b4:9a:4b:5b:f7:2c:ab:2f:b9:86:f4:b2:
                    0e:b1:98:de:ec:3b:3e:7d:e9:bd:5e:67:25:85:4c:f7:
                    15:af:da:01:1b:f6:98:aa:b9:a8:6b:e8:b6:f4:ce:45:
                    af:4c:5d:4d:aa:ab:73:d9:58:f9:12:04:9f:e8:8c:44:
                    e7:de:83:a7:4b:b6:8e:9d:31:18:08:af:7f:25:ee:1a:
                    43:58:f9:b6:ce:d8:a5:03:7f:f1:46:0b:05:49:7f:b0:
                    7f:0b:cf:91:b5:64:72:e9:80:0e:af:0d:4d:e9:ac:8a:
                    d3:e3:9e:d0:b0:be:9f:70:c9:07:18:7a:2d:2f:c6:ba:
                    7e:73:23:57:f2:73:fc:e3:fa:24:8f:61:e9:48:06:7d:
                    83:39:4e:34:e9:36:1e:fa:1c:5d:2a:57:82:74:c7:d3:
                    39:1a:f3:68:70:29:0f:bd:66:18:8f:d6:09:81:13:06:
                    c7:85:bb:a9:6e:f2:60:21:0c:7e:5d:08:81:c9:6c:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:3a:90:93:9c:3e:59:db:61:cc:eb:8b:e7:b2:b7:5d:
        bd:66:8d:5d:66:ed:5d:b3:ab:9a:17:00:df:19:b1:df:
        e0:a3:80:cd:4c:a5:d7:4c:72:c7:7c:f8:55:b8:2a:2a:
        1b:df:a1:ef:9b:1d:f1:5c:be:01:14:a2:8a:98:bf:ae:
        32:f3:79:2f:5a:b3:3a:86:dd:3d:e6:b2:89:73:5c:c2:
        49:b5:fd:6c:82:2a:63:53:61:6d:c3:20:13:bd:d8:d2:
        3e:05:60:5b:08:8d:4a:ed:b4:eb:94:c3:b5:f0:f3:ad:
        ec:b8:42:35:2b:10:d3:33:03:bb:b3:65:0e:4d:05:b2:
        6d:45:0c:7a:ba:02:7b:cf:b7:d4:b7:26:0f:24:d0:d5:
        aa:60:9f:fb:28:29:8c:53:d5:26:72:86:ba:71:fd:f6:
        c8:c8:66:a2:b7:d2:3d:fc:55:f1:80:93:ac:d8:34:a1:
        6b:b0:46:e3:12:c4:c3:3a:ca:63:31:a2:7f:bc:a9:99:
        95:4f:fc:ff:52:17:af:ed:f5:e2:84:e6:36:d3:cf:0d:
        f0:d2:c4:ad:1d:39:1e:41:d1:f2:63:53:97:84:28:0b:
        27:16:c1:3c:20:c4:54:2a:63:af:a0:cf:db:99:85:83:
        83:69:6e:3e:4d:2d:94:db:db:ab:fa:5e:16:37:2e:85
    Fingerprint (SHA-256):
        57:B3:53:2D:E6:47:7C:B4:E6:93:C8:E5:8D:B2:C7:7D:86:5D:36:84:0C:F5:72:29:72:9A:40:BE:B2:25:80:4E
    Fingerprint (SHA1):
        D5:77:05:DE:7A:0D:2B:EF:70:16:C3:CB:F4:D6:80:A5:44:68:17:61
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7118: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7119: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7120: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7121: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121316 (0x1e67d564)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:28 2017
            Not After : Tue May 10 12:14:28 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:b2:14:97:9c:01:63:51:b7:2c:48:f8:d4:31:e9:df:
                    ad:0d:6f:44:f1:b7:46:39:76:58:67:50:a2:7d:a9:7a:
                    92:2b:96:e9:70:1a:ac:34:0a:1c:62:2f:b5:dc:3d:e6:
                    ee:48:a3:5a:b0:39:92:99:2e:4a:cb:d7:39:8f:ce:03:
                    f9:97:2e:c6:b4:9a:4b:5b:f7:2c:ab:2f:b9:86:f4:b2:
                    0e:b1:98:de:ec:3b:3e:7d:e9:bd:5e:67:25:85:4c:f7:
                    15:af:da:01:1b:f6:98:aa:b9:a8:6b:e8:b6:f4:ce:45:
                    af:4c:5d:4d:aa:ab:73:d9:58:f9:12:04:9f:e8:8c:44:
                    e7:de:83:a7:4b:b6:8e:9d:31:18:08:af:7f:25:ee:1a:
                    43:58:f9:b6:ce:d8:a5:03:7f:f1:46:0b:05:49:7f:b0:
                    7f:0b:cf:91:b5:64:72:e9:80:0e:af:0d:4d:e9:ac:8a:
                    d3:e3:9e:d0:b0:be:9f:70:c9:07:18:7a:2d:2f:c6:ba:
                    7e:73:23:57:f2:73:fc:e3:fa:24:8f:61:e9:48:06:7d:
                    83:39:4e:34:e9:36:1e:fa:1c:5d:2a:57:82:74:c7:d3:
                    39:1a:f3:68:70:29:0f:bd:66:18:8f:d6:09:81:13:06:
                    c7:85:bb:a9:6e:f2:60:21:0c:7e:5d:08:81:c9:6c:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:3a:90:93:9c:3e:59:db:61:cc:eb:8b:e7:b2:b7:5d:
        bd:66:8d:5d:66:ed:5d:b3:ab:9a:17:00:df:19:b1:df:
        e0:a3:80:cd:4c:a5:d7:4c:72:c7:7c:f8:55:b8:2a:2a:
        1b:df:a1:ef:9b:1d:f1:5c:be:01:14:a2:8a:98:bf:ae:
        32:f3:79:2f:5a:b3:3a:86:dd:3d:e6:b2:89:73:5c:c2:
        49:b5:fd:6c:82:2a:63:53:61:6d:c3:20:13:bd:d8:d2:
        3e:05:60:5b:08:8d:4a:ed:b4:eb:94:c3:b5:f0:f3:ad:
        ec:b8:42:35:2b:10:d3:33:03:bb:b3:65:0e:4d:05:b2:
        6d:45:0c:7a:ba:02:7b:cf:b7:d4:b7:26:0f:24:d0:d5:
        aa:60:9f:fb:28:29:8c:53:d5:26:72:86:ba:71:fd:f6:
        c8:c8:66:a2:b7:d2:3d:fc:55:f1:80:93:ac:d8:34:a1:
        6b:b0:46:e3:12:c4:c3:3a:ca:63:31:a2:7f:bc:a9:99:
        95:4f:fc:ff:52:17:af:ed:f5:e2:84:e6:36:d3:cf:0d:
        f0:d2:c4:ad:1d:39:1e:41:d1:f2:63:53:97:84:28:0b:
        27:16:c1:3c:20:c4:54:2a:63:af:a0:cf:db:99:85:83:
        83:69:6e:3e:4d:2d:94:db:db:ab:fa:5e:16:37:2e:85
    Fingerprint (SHA-256):
        57:B3:53:2D:E6:47:7C:B4:E6:93:C8:E5:8D:B2:C7:7D:86:5D:36:84:0C:F5:72:29:72:9A:40:BE:B2:25:80:4E
    Fingerprint (SHA1):
        D5:77:05:DE:7A:0D:2B:EF:70:16:C3:CB:F4:D6:80:A5:44:68:17:61
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7122: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7123: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7124: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121323 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7125: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7126: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7127: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7128: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121324   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7129: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7130: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #7131: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7132: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510121325   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7133: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7134: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #7135: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7136: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510121326   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7137: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7138: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7139: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7140: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510121327   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7141: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7142: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #7143: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7144: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510121328   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7145: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7146: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7147: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7148: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510121329   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7149: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7150: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7151: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7152: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510121330   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7153: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7154: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7155: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7156: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510121331   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7157: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7158: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7159: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7160: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510121332   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7161: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7162: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7163: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7164: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510121333   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7165: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7166: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7167: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7168: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510121334   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7169: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7170: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7171: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7172: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510121335   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7173: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7174: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7175: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7176: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510121336   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7177: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7178: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7179: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7180: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510121337   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7181: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7182: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7183: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7184: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510121338   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7185: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7186: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7187: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7188: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510121339   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7189: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7190: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7191: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7192: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510121340   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7193: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7194: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7195: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7196: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510121341   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7197: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7198: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7199: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7200: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510121342   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7201: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7202: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7203: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7204: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510121343   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7205: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7206: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7207: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7208: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510121344   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7209: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7210: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7211: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7212: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510121345   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7213: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7214: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7215: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7216: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510121346   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7217: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7218: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7219: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7220: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510121347   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7221: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7222: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7223: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7224: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510121348   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7225: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7226: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7227: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7228: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510121349   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7229: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7230: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7231: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7232: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510121350   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7233: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7234: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7235: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7236: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510121351   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7237: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7238: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7239: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7240: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510121352   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7241: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7242: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7243: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7244: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7245: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7246: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7247: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7248: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7249: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7250: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7251: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7252: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7253: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7254: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7255: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7256: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7257: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7258: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7259: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7260: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7261: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7262: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7263: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7264: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7265: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121323 (0x1e67d56b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:14:36 2017
            Not After : Tue May 10 12:14:36 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:96:19:4e:22:77:b5:d2:43:dc:d2:80:63:6d:96:31:
                    ae:bc:11:9e:dd:88:84:25:42:31:35:c5:a9:4c:4c:6d:
                    04:87:bc:3c:03:96:8c:fb:a2:53:59:13:78:e6:ef:ee:
                    a7:f1:dd:e8:b0:1c:0a:22:85:38:0a:22:e0:6f:61:6e:
                    38:f4:2f:65:dd:06:23:fe:8c:89:ad:fe:4c:c1:13:5a:
                    4d:b7:40:7c:cd:2a:73:ef:a7:3e:23:22:db:6a:d9:57:
                    bb:86:7b:c0:78:d3:30:7d:47:dc:12:0e:f8:04:a0:2f:
                    05:8f:f3:b4:de:84:72:6d:c6:3a:a2:93:b9:67:b9:32:
                    ac:2e:8c:2d:11:02:b8:a6:78:6c:b7:76:64:65:d1:7c:
                    9a:31:ea:04:54:f7:c8:13:83:2f:a4:cb:16:a8:7b:0e:
                    09:25:69:da:51:6c:38:6c:93:a5:52:1c:87:a1:98:ef:
                    27:bb:62:e0:22:5e:a4:ff:44:8f:0e:66:66:0b:76:0f:
                    f7:6c:07:84:e8:da:10:19:9a:ac:38:f3:8c:71:7a:e8:
                    8a:aa:e8:36:0b:22:05:2a:55:33:f1:5a:34:87:3f:2c:
                    c7:d6:04:47:8a:b7:83:40:8f:c4:5d:4e:71:42:f5:c8:
                    b4:4e:7d:d3:3d:dd:67:be:c1:37:76:6e:89:e7:fa:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:06:df:5d:41:b4:57:57:2e:da:93:8d:af:e0:64:09:
        09:7a:91:8a:56:ae:84:a5:b4:64:ac:a0:fd:16:de:84:
        66:e4:aa:cf:ff:c8:1f:f5:2b:8d:35:93:55:a0:79:9d:
        3c:4c:45:60:b4:2b:c4:c1:e7:47:cc:f1:22:2e:38:d1:
        82:9e:e5:45:26:83:61:c3:0b:18:1d:30:17:80:74:25:
        d3:a6:43:7c:6c:55:87:99:47:f0:7c:28:09:45:98:7b:
        a6:f1:b6:c4:27:ce:5b:3f:75:7f:66:e0:9c:f2:4e:ad:
        95:8f:f8:8c:91:d5:89:bb:6a:15:fe:28:1a:b9:68:ad:
        38:5e:17:97:50:84:1a:1f:dd:fd:c5:f6:ca:d7:79:c5:
        1a:25:17:2f:4a:cb:93:ee:a3:0c:67:6a:4c:2c:aa:2c:
        e4:4e:74:d8:5c:4d:d1:27:20:eb:90:f7:58:fd:53:5f:
        1d:2c:1c:bc:60:3d:61:2d:76:0d:5d:d5:40:a3:17:9e:
        47:3b:2f:2c:cc:c3:83:6c:c2:48:13:3c:4f:a5:9a:68:
        33:36:f9:7b:9a:6f:95:2c:42:71:b1:c3:5f:72:91:b7:
        db:72:3f:99:44:97:e6:35:fb:1f:32:1d:d4:e3:05:01:
        e8:e5:1b:ad:14:e4:ce:76:9f:92:ec:19:e9:92:5b:47
    Fingerprint (SHA-256):
        90:D2:E2:BE:A3:1A:05:D9:76:E8:98:8F:D4:96:CA:96:B4:A9:B0:FD:A4:7C:77:3C:6C:89:CB:86:A8:76:18:D8
    Fingerprint (SHA1):
        45:DA:E0:B4:54:5A:BB:D9:BF:80:4B:81:AA:C4:13:6D:1B:F7:3A:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7266: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7267: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7268: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121353 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7269: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7270: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7271: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7272: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510121354   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7273: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7274: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7275: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7276: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510121355   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7277: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7278: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7279: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7280: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510121356   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7281: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7282: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7283: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7284: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510121357   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7285: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7286: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7287: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7288: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510121358   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7289: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7290: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7291: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7292: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510121359   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7293: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7294: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7295: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121353 (0x1e67d589)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:00 2017
            Not After : Tue May 10 12:15:00 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:c1:3e:ca:9d:ca:4a:7d:08:e0:a9:3d:59:00:23:17:
                    21:fc:62:1e:77:5b:15:11:f1:5a:e2:7f:ff:de:b3:c8:
                    dc:e2:a2:b8:df:cf:54:89:12:f4:a8:e3:21:97:81:6b:
                    ed:ab:85:7c:dc:11:ea:a0:f5:2e:78:fd:3f:ad:08:2f:
                    2d:84:e7:88:c8:2d:77:75:40:81:f7:18:00:62:69:2a:
                    27:a9:35:81:0e:6d:c5:a9:67:0b:48:1d:ca:88:86:fc:
                    ce:45:25:ab:98:38:85:21:0e:54:82:34:cc:70:e9:c3:
                    e6:e8:21:85:44:1f:8b:e8:07:8a:4c:49:f8:62:8e:7c:
                    19:42:7d:0d:65:9b:13:5c:19:97:c6:93:98:15:06:d4:
                    f1:11:71:4a:1d:61:6f:11:03:0e:c3:e5:81:b2:6b:c7:
                    7b:45:89:12:52:84:a4:d5:5c:e4:ac:05:e8:03:f0:41:
                    88:25:6e:ff:54:b9:c3:95:c7:44:fc:3c:99:44:3d:ff:
                    c2:44:da:40:86:56:3b:8e:42:af:2a:ae:c2:f4:f5:bb:
                    87:bf:64:58:1d:64:25:14:b0:80:88:9c:8f:df:6c:6f:
                    f7:7e:1f:47:cf:d7:53:1e:15:de:5c:6e:0a:a0:3a:f6:
                    af:2c:09:cc:f0:08:5e:56:a4:a7:6e:f0:79:48:03:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:9e:ed:65:94:ee:c4:37:69:18:85:ac:e1:e2:4a:51:
        cf:ef:38:e3:18:b9:48:51:bb:c8:50:02:03:54:5d:10:
        3d:b8:91:d8:4d:2f:ce:1e:65:59:7f:97:c5:d7:90:c0:
        28:57:9f:89:96:f7:99:a4:b5:df:e4:ff:3a:57:06:50:
        aa:3a:2e:f0:82:17:0c:71:54:48:94:cc:87:48:a8:0a:
        55:88:cf:1a:be:d8:89:bc:07:09:71:52:b7:f9:d3:14:
        42:0d:d2:e4:a3:ef:66:71:ca:e5:19:41:72:21:4f:76:
        5d:44:65:40:0f:2d:fc:54:db:30:78:eb:24:c1:eb:cb:
        9e:83:2c:e4:b8:a2:c3:2d:78:7d:24:a3:2d:88:fa:d8:
        c2:1f:a7:86:e1:96:30:f6:c4:4f:2c:97:4a:5d:f7:56:
        2c:a8:70:25:4e:2e:50:ec:43:cf:70:db:f1:60:7a:fd:
        79:e2:37:0f:df:4d:ba:24:cd:0d:eb:32:93:fd:1b:b1:
        51:f0:2f:c7:b1:44:a9:15:1c:f9:ce:0b:2d:84:62:da:
        5d:c5:9d:9f:72:4d:80:2c:1a:4a:52:a4:5b:6d:83:f0:
        22:a6:fd:54:24:c3:e9:1f:11:b5:19:83:09:1e:94:6d:
        da:cf:9b:ec:41:77:24:57:3c:b1:a0:86:46:42:a3:e0
    Fingerprint (SHA-256):
        BF:91:09:F3:EF:EC:9A:86:03:E9:8F:C1:C3:4B:5A:BD:96:C0:2D:6A:25:48:39:B9:F6:1F:61:6C:F2:B8:49:B1
    Fingerprint (SHA1):
        A4:24:C0:6A:D5:AF:44:A7:3C:53:C6:13:4F:32:18:64:FA:B9:F6:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7296: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7297: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7298: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7299: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121353 (0x1e67d589)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:00 2017
            Not After : Tue May 10 12:15:00 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:c1:3e:ca:9d:ca:4a:7d:08:e0:a9:3d:59:00:23:17:
                    21:fc:62:1e:77:5b:15:11:f1:5a:e2:7f:ff:de:b3:c8:
                    dc:e2:a2:b8:df:cf:54:89:12:f4:a8:e3:21:97:81:6b:
                    ed:ab:85:7c:dc:11:ea:a0:f5:2e:78:fd:3f:ad:08:2f:
                    2d:84:e7:88:c8:2d:77:75:40:81:f7:18:00:62:69:2a:
                    27:a9:35:81:0e:6d:c5:a9:67:0b:48:1d:ca:88:86:fc:
                    ce:45:25:ab:98:38:85:21:0e:54:82:34:cc:70:e9:c3:
                    e6:e8:21:85:44:1f:8b:e8:07:8a:4c:49:f8:62:8e:7c:
                    19:42:7d:0d:65:9b:13:5c:19:97:c6:93:98:15:06:d4:
                    f1:11:71:4a:1d:61:6f:11:03:0e:c3:e5:81:b2:6b:c7:
                    7b:45:89:12:52:84:a4:d5:5c:e4:ac:05:e8:03:f0:41:
                    88:25:6e:ff:54:b9:c3:95:c7:44:fc:3c:99:44:3d:ff:
                    c2:44:da:40:86:56:3b:8e:42:af:2a:ae:c2:f4:f5:bb:
                    87:bf:64:58:1d:64:25:14:b0:80:88:9c:8f:df:6c:6f:
                    f7:7e:1f:47:cf:d7:53:1e:15:de:5c:6e:0a:a0:3a:f6:
                    af:2c:09:cc:f0:08:5e:56:a4:a7:6e:f0:79:48:03:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:9e:ed:65:94:ee:c4:37:69:18:85:ac:e1:e2:4a:51:
        cf:ef:38:e3:18:b9:48:51:bb:c8:50:02:03:54:5d:10:
        3d:b8:91:d8:4d:2f:ce:1e:65:59:7f:97:c5:d7:90:c0:
        28:57:9f:89:96:f7:99:a4:b5:df:e4:ff:3a:57:06:50:
        aa:3a:2e:f0:82:17:0c:71:54:48:94:cc:87:48:a8:0a:
        55:88:cf:1a:be:d8:89:bc:07:09:71:52:b7:f9:d3:14:
        42:0d:d2:e4:a3:ef:66:71:ca:e5:19:41:72:21:4f:76:
        5d:44:65:40:0f:2d:fc:54:db:30:78:eb:24:c1:eb:cb:
        9e:83:2c:e4:b8:a2:c3:2d:78:7d:24:a3:2d:88:fa:d8:
        c2:1f:a7:86:e1:96:30:f6:c4:4f:2c:97:4a:5d:f7:56:
        2c:a8:70:25:4e:2e:50:ec:43:cf:70:db:f1:60:7a:fd:
        79:e2:37:0f:df:4d:ba:24:cd:0d:eb:32:93:fd:1b:b1:
        51:f0:2f:c7:b1:44:a9:15:1c:f9:ce:0b:2d:84:62:da:
        5d:c5:9d:9f:72:4d:80:2c:1a:4a:52:a4:5b:6d:83:f0:
        22:a6:fd:54:24:c3:e9:1f:11:b5:19:83:09:1e:94:6d:
        da:cf:9b:ec:41:77:24:57:3c:b1:a0:86:46:42:a3:e0
    Fingerprint (SHA-256):
        BF:91:09:F3:EF:EC:9A:86:03:E9:8F:C1:C3:4B:5A:BD:96:C0:2D:6A:25:48:39:B9:F6:1F:61:6C:F2:B8:49:B1
    Fingerprint (SHA1):
        A4:24:C0:6A:D5:AF:44:A7:3C:53:C6:13:4F:32:18:64:FA:B9:F6:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7300: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7301: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7302: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7303: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121360 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7304: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7305: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7306: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7307: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121361   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7308: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7309: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7310: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7311: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121362   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7312: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7313: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7314: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7315: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121363   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7316: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7317: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7318: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7319: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7320: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7321: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121360 (0x1e67d590)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:06 2017
            Not After : Tue May 10 12:15:06 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:58:3f:55:24:01:31:df:89:97:f9:3d:9d:71:0a:7c:
                    b7:6b:63:03:39:69:a9:53:6a:aa:55:fa:c6:21:6a:95:
                    eb:3e:9a:e2:a5:67:dd:a9:5b:d0:cc:53:9f:cf:d8:57:
                    97:5f:c7:5d:ae:5c:a8:08:39:aa:f2:2f:18:7f:3a:19:
                    ff:ca:d0:81:e8:db:44:47:5d:1d:97:d9:fc:ce:5b:48:
                    47:5d:9f:00:7c:69:95:f3:b6:b9:79:16:c1:52:1c:63:
                    b3:69:0d:7f:50:73:6f:cc:ce:b8:fd:33:53:0e:29:99:
                    aa:80:d0:fd:5f:12:8f:68:09:35:fb:fa:76:25:92:2c:
                    ee:59:06:13:97:b2:e1:5c:94:87:95:30:62:5c:49:b7:
                    0d:b0:c5:eb:28:b3:22:9e:4d:de:26:65:11:1b:a8:0b:
                    c7:02:b5:54:04:99:75:db:e9:4a:18:dc:04:82:ae:9c:
                    07:76:97:d8:e8:fd:1c:1e:c0:1f:16:a0:67:b3:ef:2e:
                    35:6a:6b:99:42:a6:f9:f2:f5:8b:4a:49:18:4e:01:93:
                    14:88:13:91:72:8f:80:3b:4d:c6:fc:38:b5:f9:80:da:
                    ba:b8:2e:c7:4f:4c:22:68:74:99:17:4b:7f:92:b1:bd:
                    8c:7b:31:46:ae:54:26:f3:78:09:7b:ec:60:fe:e1:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ce:06:1e:18:0c:93:49:9d:e9:64:e9:a9:70:f7:ff:4d:
        15:42:bc:ff:fa:e3:47:fa:39:5a:68:ca:cf:4d:1e:26:
        40:2a:bb:85:48:a7:77:f6:09:e4:04:43:2f:c1:6c:7d:
        ea:b9:8a:69:02:da:9d:55:28:e7:43:e9:81:9b:f0:73:
        b0:83:63:b6:f8:03:1c:8e:81:ac:21:14:de:32:da:ca:
        ff:61:ea:42:8f:d4:46:89:46:da:7c:fc:e1:a9:4e:12:
        bf:f4:d5:9e:e6:3c:ef:8e:b8:db:2e:d9:16:ea:29:36:
        a7:f5:7a:e0:3a:89:ab:b9:9a:6e:07:5f:60:a0:81:80:
        76:10:fb:8b:e7:8f:62:e0:cb:2d:54:98:16:a0:f2:02:
        63:c3:a5:1d:4f:f6:35:0a:72:41:f5:4f:41:c0:9d:17:
        45:b0:78:76:95:c4:30:e1:23:1a:6a:12:4b:ef:8a:99:
        ec:73:5a:c6:2b:e4:d0:24:d6:77:9c:32:a0:67:cd:aa:
        d0:49:8d:a3:44:42:f8:e6:db:37:9d:8d:03:13:c5:73:
        09:5e:e8:de:93:bf:b7:73:a5:aa:c9:56:da:e4:a4:cd:
        80:70:27:c1:c7:29:e8:a8:3d:96:d7:3c:10:59:de:12:
        b4:59:64:26:90:ba:b0:d7:a6:19:a5:81:8a:e5:18:a8
    Fingerprint (SHA-256):
        7F:0E:9A:FF:F9:76:09:A3:4F:AA:AC:6C:1A:B5:D9:37:21:64:6A:3E:99:5D:1A:A1:5E:75:88:15:3E:5C:25:47
    Fingerprint (SHA1):
        7E:A3:2E:F5:6D:32:48:CC:D7:F2:9E:14:B5:B8:DF:1C:D2:DB:D9:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7322: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7323: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7324: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121361 (0x1e67d591)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:07 2017
            Not After : Tue May 10 12:15:07 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:c1:98:61:a3:12:a7:de:a6:c8:87:90:dd:69:0b:fe:
                    6d:da:5d:c6:4d:9e:92:5f:24:8c:6c:36:eb:5c:35:d8:
                    0f:c9:cc:db:e7:8b:a8:ac:73:f5:09:fc:50:3f:6d:ca:
                    2d:5b:50:69:21:44:f2:91:74:11:aa:d4:9b:0e:d3:37:
                    66:ab:3b:3e:3a:7e:b3:77:dd:e9:5a:8f:e1:b8:62:ff:
                    57:0b:b4:af:a6:94:3d:c9:0f:f9:f5:2e:e6:27:cc:e3:
                    5c:43:4a:2f:d9:ea:fe:35:92:fc:b1:f2:f6:40:81:21:
                    c1:f5:3b:9d:81:b6:96:fe:30:8a:9d:2b:b1:7c:7b:9a:
                    4b:42:2a:44:9d:4d:b3:4f:b3:ff:ef:8d:10:45:24:71:
                    7a:5d:6e:60:1f:2a:7b:e0:26:58:b8:ce:51:db:0b:9c:
                    fd:d6:da:fe:e0:f6:ba:ca:45:1f:5b:60:fb:26:5a:8f:
                    12:fc:ff:cd:27:ff:33:15:09:ec:1c:da:14:98:b3:44:
                    cc:40:4a:03:4f:4a:b1:02:92:88:2f:32:a1:23:a1:6b:
                    ba:d3:08:72:46:5d:de:75:d8:c9:ee:0b:b2:38:9e:bc:
                    9a:d1:1c:e7:f8:cc:05:2e:4e:f0:12:b9:e3:d8:88:c1:
                    51:4a:ce:0c:d6:53:52:0a:0b:20:1e:7f:e8:4b:12:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:94:00:0f:aa:5c:e0:a1:b7:e7:14:8d:19:11:7a:b8:
        f2:79:a8:a0:ad:23:a3:82:0c:4c:d0:36:31:f0:ef:61:
        56:86:d8:55:36:48:29:73:c5:78:95:5d:2c:ab:4d:f1:
        2a:f7:13:9f:1a:56:99:ac:45:ad:3f:68:8c:3c:c1:cd:
        ef:d9:44:95:b7:4e:02:06:30:7c:f2:45:26:67:f2:eb:
        92:4f:6b:ea:95:d3:f0:ab:a2:56:f0:9a:f3:f3:27:cd:
        2f:fc:9a:33:96:f4:8f:18:f0:a4:71:17:5c:c5:ea:99:
        4d:f8:e5:f2:b7:3f:f7:49:6c:97:15:84:80:f7:b6:0c:
        24:13:0f:eb:7a:8f:04:40:d4:d9:14:d1:0f:b9:08:2b:
        85:44:2e:12:ae:4f:87:99:30:dc:1d:4e:e9:f5:08:8e:
        b7:b2:04:a5:aa:1c:1f:b2:f9:0e:86:a3:e6:9f:2c:83:
        84:af:6f:4f:eb:44:ee:b4:b8:97:e6:ec:d7:ad:2b:bf:
        5b:7c:4e:08:54:54:d0:e0:5f:f4:10:6a:36:6b:01:7c:
        2a:ab:6e:8e:1d:cf:9e:5f:70:a9:5f:b0:93:20:3a:4e:
        f6:19:96:68:ac:1c:a1:19:19:94:c2:29:fe:ae:be:28:
        35:35:40:7f:e2:f5:a2:6f:40:cc:b0:f3:67:82:3f:2a
    Fingerprint (SHA-256):
        CB:E1:3A:62:B7:29:0D:CC:90:5A:4E:81:6E:16:8E:2C:18:C0:A7:AE:62:63:D5:6C:6F:25:21:EE:7D:8F:ED:50
    Fingerprint (SHA1):
        44:33:40:04:B1:2B:5A:01:D5:79:B1:02:0C:17:E5:F4:87:58:B4:D4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7325: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7326: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121362 (0x1e67d592)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:07 2017
            Not After : Tue May 10 12:15:07 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:41:3f:57:37:65:98:94:9c:99:3a:ee:ef:cb:31:72:
                    cc:5a:8b:0e:83:27:6d:1b:d4:4d:c7:df:5e:a9:bf:c4:
                    d6:d1:0c:ea:0c:52:f3:d4:95:32:57:e1:3a:5e:10:31:
                    55:f0:3d:c2:96:32:9d:b6:14:dd:db:d8:d7:d0:a4:4a:
                    a9:a5:f1:c0:ed:89:4a:9b:b3:8a:ba:73:39:25:5c:2d:
                    2b:23:44:ad:48:7b:01:0d:6d:0a:40:4f:46:09:9a:ea:
                    63:12:c1:a8:a1:ba:5e:40:61:e5:72:6c:9b:ca:db:f1:
                    04:44:23:50:ba:30:eb:2c:54:44:2c:64:0d:6f:d5:6f:
                    e6:e5:cb:e7:7d:03:e7:e5:40:07:60:26:77:38:4c:39:
                    b2:20:81:ec:16:5c:b6:78:50:41:a7:d8:45:2b:a6:7a:
                    8e:63:66:6e:25:74:30:f6:ab:88:16:26:fa:2d:48:bb:
                    2a:24:8b:26:3c:0c:63:ae:23:4d:2b:11:2f:29:0a:cb:
                    39:93:43:69:00:3e:d5:ff:e6:d5:94:4b:bf:ed:54:11:
                    24:6d:8f:c7:ba:5f:e4:e4:d6:12:55:f4:d9:9a:b4:1c:
                    d2:14:55:86:85:0f:7e:42:16:f7:9a:5d:67:b4:c6:c3:
                    fc:fb:10:7b:9e:83:ed:e0:2d:72:98:95:1b:67:0a:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        39:63:c0:91:c3:61:85:4c:6d:c2:25:1c:b8:c6:f8:2b:
        55:a5:34:03:08:96:80:af:38:03:a3:a7:8e:9f:fe:f8:
        aa:18:67:c9:9f:f0:05:73:40:28:49:d7:3a:81:fa:a0:
        52:67:e0:a8:06:54:2f:ee:f4:bf:c3:1f:16:94:27:f4:
        e2:7d:0e:df:55:f0:87:d1:48:9f:55:bb:25:32:37:1a:
        e4:47:8c:68:6a:5c:15:3e:9e:1e:fa:69:3a:f9:ad:64:
        d4:83:86:df:b2:10:39:15:a1:6d:49:b4:1b:3a:e7:c4:
        9a:8b:5c:85:4d:c3:f6:d3:2a:ee:0a:23:1f:ec:2e:45:
        4d:e3:a1:2b:2d:ac:c5:18:8c:66:f8:72:c7:81:a5:ff:
        cc:43:f4:f7:dc:1a:6c:ec:b9:04:84:00:48:36:99:e8:
        5e:f0:4d:7c:11:25:b0:cd:15:55:f2:5a:5a:7a:40:34:
        f4:74:7d:d1:1b:00:06:74:17:fa:dc:57:df:a5:f1:ad:
        0b:60:57:f6:05:cb:8c:b8:ee:e1:14:80:93:b2:92:41:
        52:d7:dd:d0:44:ba:28:00:a0:15:6c:1d:e5:12:40:98:
        90:1d:25:ac:09:f3:2b:4c:d0:59:40:58:51:78:c3:ad:
        19:61:02:b1:47:a1:67:57:58:9a:c1:9b:c8:97:fd:3d
    Fingerprint (SHA-256):
        CA:E7:10:D6:74:2A:60:14:88:C4:BA:E2:B9:73:5A:D5:C9:FC:B3:98:40:46:13:88:E7:27:20:74:12:46:62:3A
    Fingerprint (SHA1):
        63:A6:36:F5:83:18:B0:BC:EC:7D:12:E6:E3:35:99:45:51:D7:4F:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7327: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7328: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121364 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7329: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7330: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7331: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7332: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121365   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7333: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7334: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7335: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7336: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121366   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7337: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7338: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7339: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7340: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510121367   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7341: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7342: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7343: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7344: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510121368   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7345: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7346: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7347: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7348: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7349: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7350: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7351: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121364 (0x1e67d594)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:10 2017
            Not After : Tue May 10 12:15:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:9a:db:8a:ae:32:85:08:31:2a:91:5a:30:63:f9:92:
                    6c:32:4a:1f:f0:42:de:a1:39:11:88:f5:e9:b1:c6:22:
                    e0:c4:f0:ea:ad:9f:37:7e:f3:59:ab:4b:75:9e:6d:1b:
                    2c:de:98:ca:b8:f8:b4:f2:ee:d1:f0:ac:6a:10:46:bc:
                    e2:c8:3a:3b:8f:27:d0:b6:7c:3c:aa:f5:dc:a6:ab:2e:
                    63:82:7d:d6:86:07:03:6f:43:00:15:0e:84:9d:ec:31:
                    63:33:3a:36:9a:02:c9:68:51:f8:a5:0f:8e:32:73:88:
                    e8:b3:7a:19:f0:5d:37:f3:ff:75:e6:88:4b:6d:7a:06:
                    f3:b6:49:b2:03:58:85:8e:5c:24:39:00:04:49:66:51:
                    44:e5:d2:e4:20:18:e9:a3:8f:9d:d1:ac:0c:55:6f:53:
                    75:cd:e8:c8:c4:7f:01:4f:e6:7c:7b:ba:1c:34:b1:4f:
                    15:48:07:2f:e0:e0:2a:7f:2a:85:a5:4d:41:b9:df:e8:
                    5a:4e:0f:ab:ca:8f:02:a1:c3:2d:e5:3e:bf:23:99:8c:
                    9e:af:2a:a3:d5:35:63:3d:7e:33:3a:f1:e0:1e:ff:8f:
                    cd:91:47:75:0c:ae:b4:c5:6d:89:d4:a9:48:ea:de:ca:
                    d0:49:92:33:49:dd:0a:08:c7:f6:ae:1d:8c:40:e9:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:12:c3:b7:f8:0a:12:74:f2:8b:cf:57:ef:61:a4:9c:
        c0:d7:ba:62:68:ff:54:a2:ed:90:87:21:d8:11:fa:73:
        5a:dc:58:ab:84:81:d4:e9:03:d9:53:b9:1b:eb:9a:9b:
        88:81:0e:4a:bc:1b:19:53:2f:69:6a:05:b3:cf:93:c9:
        bb:d3:73:a1:c1:5c:cb:c2:8b:09:6c:fd:0c:36:56:ca:
        97:7a:8c:0a:d7:bb:34:04:de:11:35:45:53:08:76:00:
        83:2c:c1:5b:ca:63:c5:9e:36:7a:e6:40:97:ba:35:7f:
        3c:20:e1:21:8a:65:e5:fe:c6:c3:5a:c9:55:c9:b4:88:
        bd:ee:2f:6e:b1:70:4f:0e:3a:e7:5f:ac:a5:da:9c:22:
        d3:de:0f:03:a5:2e:25:c7:56:1c:32:5f:8b:8f:10:ae:
        34:6c:3c:32:bf:81:aa:0d:18:ae:c5:87:5d:eb:de:31:
        5e:c0:77:5f:26:cc:1c:59:52:5a:8f:f8:80:92:b3:6d:
        f9:6b:97:ef:0b:5a:23:93:56:b6:4e:4d:66:95:e4:81:
        da:e3:1b:57:e4:4c:e4:fe:7d:bb:26:6b:82:1d:74:15:
        4e:d1:2e:59:5d:57:0e:0a:01:db:95:11:08:3b:cf:64:
        3d:d8:1c:b7:16:79:1d:f5:20:8c:ce:8d:76:2e:f3:4f
    Fingerprint (SHA-256):
        4F:51:12:90:4B:C6:ED:C3:99:93:5D:30:C3:AC:30:65:DD:75:CB:E4:64:B8:29:DE:BF:73:5A:30:AE:C0:FE:D1
    Fingerprint (SHA1):
        31:4E:A3:DC:FA:78:FE:82:A9:37:D2:D9:DB:1D:9A:B0:81:D0:83:03
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7352: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7353: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121365 (0x1e67d595)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:11 2017
            Not After : Tue May 10 12:15:11 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:e3:ab:ca:1a:e8:45:33:ef:7e:f3:7a:f0:90:fe:f1:
                    39:aa:e1:de:7c:de:83:46:a9:5d:8c:99:a5:a5:d2:f1:
                    cb:fb:5e:32:16:5d:5b:59:94:e7:2e:5a:d1:14:42:79:
                    54:bd:ff:47:88:14:54:36:63:08:72:94:23:8d:6d:b0:
                    63:f0:89:ee:cc:ed:5e:2d:12:30:dd:55:c8:c5:99:6a:
                    4f:f1:90:55:55:95:73:78:2e:3d:92:7c:19:3c:bd:b1:
                    2f:c3:ee:91:ee:4a:53:61:18:96:05:e8:b2:94:ec:22:
                    77:1f:22:f1:cf:87:92:93:58:46:47:04:4c:f4:23:8b:
                    88:c3:11:f4:57:3b:36:b6:3e:b1:db:6c:a4:aa:65:73:
                    81:e0:84:64:6c:9e:5d:72:5b:7b:55:90:22:49:f2:55:
                    df:bd:2f:d3:56:1c:5d:c9:9a:7a:b4:7a:fe:ac:a0:b2:
                    37:e3:12:c7:26:39:c6:db:be:ce:69:70:61:af:e9:2f:
                    0e:e3:b8:e2:79:b2:1d:0d:c1:c2:42:a8:59:92:e2:cb:
                    3c:81:52:79:9d:10:0e:51:83:9b:40:a7:4c:ec:9a:bc:
                    e5:10:f0:47:05:74:ab:aa:3d:ad:8f:7c:78:8f:63:c7:
                    2d:33:83:0f:7c:57:c0:a8:7b:51:b0:b3:b4:b5:af:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:07:79:af:09:b0:f9:32:da:32:3f:52:d3:4d:c7:7f:
        8e:e4:13:9d:0b:92:a6:38:96:73:30:10:f8:78:0f:9d:
        ef:20:02:66:15:94:1f:06:1f:10:b1:bf:64:f4:3b:5e:
        c7:9d:5a:a6:53:c0:c5:75:f8:3e:e3:85:d8:cf:e0:14:
        b3:5d:0b:1a:b7:05:cc:93:93:5c:eb:83:b8:12:d5:fc:
        55:82:09:7b:98:99:9e:7c:1b:46:cd:eb:77:13:38:27:
        d0:e1:82:27:d5:02:72:a0:95:29:8a:52:73:bb:ff:29:
        0c:29:05:e4:fc:38:f8:99:49:1b:f1:c9:45:44:ba:fe:
        15:3d:5b:23:90:c1:22:86:4a:12:95:8c:80:7c:af:c6:
        cb:3f:8b:1a:3b:40:e8:ac:b1:8f:2c:e9:cf:57:72:ad:
        86:ac:f9:dc:51:41:95:a7:95:b0:93:c6:86:54:41:40:
        53:a3:fd:dd:45:62:61:0a:d0:34:98:0d:ba:21:86:0e:
        c2:09:79:54:71:53:6e:4e:31:17:0f:e8:7e:ab:ab:a2:
        49:a6:16:0b:ad:99:7d:51:89:4f:c8:b7:f4:09:78:56:
        52:04:d8:c6:db:4a:11:2b:8d:9c:d1:8c:53:62:86:e9:
        97:82:28:79:8b:46:b3:82:f7:a4:58:e3:6c:60:5d:dd
    Fingerprint (SHA-256):
        D3:8A:B3:18:38:57:EB:64:26:1C:44:6C:7E:16:B3:A2:0F:44:C4:E4:BD:DB:3B:86:12:13:88:4A:D0:E7:45:72
    Fingerprint (SHA1):
        B5:9F:C8:70:78:28:48:E3:BF:F0:8A:16:2D:5F:25:49:68:C6:BD:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7354: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7355: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7356: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121366 (0x1e67d596)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:15:12 2017
            Not After : Tue May 10 12:15:12 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:b0:e6:aa:a6:61:db:0d:1e:42:31:36:1f:87:41:53:
                    05:a6:cb:a6:d6:db:f7:33:77:bc:d2:42:8e:2d:0f:68:
                    14:11:eb:fd:4f:07:c9:51:59:71:0e:e3:11:03:47:83:
                    ed:60:15:cb:89:17:bc:65:db:c8:2c:34:19:dc:6e:29:
                    fa:41:38:1b:c0:31:47:9a:5f:5f:51:b4:b2:5f:e1:3d:
                    11:d6:29:d5:3f:d8:c7:e1:9d:af:bf:49:b3:cf:b4:aa:
                    8d:06:50:d8:f5:4d:72:5b:9c:a7:66:f3:61:95:95:90:
                    06:16:0c:68:04:33:35:ab:07:75:0a:03:95:7e:cb:90:
                    02:dc:4b:c9:d2:da:6a:16:d9:1c:80:1c:db:b0:5b:b6:
                    a8:94:11:e7:4c:87:40:be:69:a3:06:06:a3:7f:ab:f7:
                    d8:48:c3:b3:da:63:18:e3:79:4a:b0:d3:c3:b1:4d:e5:
                    37:db:dc:6a:09:c7:3d:8f:a0:31:5a:8d:7f:57:65:66:
                    09:9e:aa:f6:10:79:7d:97:bd:18:3c:bb:9f:3f:05:0a:
                    af:a2:b1:f0:f9:27:29:58:82:e4:d3:18:f7:9b:da:5a:
                    cb:72:3c:58:20:f9:e4:4b:9e:06:9c:ea:dd:a3:ce:8f:
                    b6:55:41:67:b6:15:ef:8a:bb:e6:e9:2a:84:78:ef:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:77:0d:43:aa:4d:ee:29:84:88:c5:f5:82:c2:cf:dd:
        61:eb:74:47:a0:01:94:3a:b3:76:70:7b:b1:b2:90:ca:
        b6:5e:6e:e4:ba:08:7b:a6:16:8d:64:50:ec:fd:df:6d:
        6b:40:16:93:5d:dd:ca:04:c4:d2:e7:bd:74:e7:40:2a:
        dd:08:3d:b5:56:5e:9d:db:c3:79:88:03:c7:8c:51:69:
        d5:b7:a8:f2:1b:a5:cc:6c:34:37:3e:3b:0c:f9:78:69:
        8d:ba:99:41:c7:cb:3e:7e:42:9e:05:3c:36:1c:75:36:
        65:9e:2e:fe:1d:58:35:32:79:59:7c:d6:49:31:49:30:
        64:c3:0b:14:b7:de:43:e1:af:f9:98:9d:d5:2a:9e:37:
        28:32:eb:f1:0e:d6:f0:be:29:2c:89:fd:d5:43:c7:c4:
        87:77:7a:a2:ae:66:69:48:cf:79:5f:9e:c5:e9:e8:9e:
        71:c7:61:f4:ea:f8:c3:53:a8:2e:f5:33:9f:34:bc:19:
        7f:00:1f:94:ef:8d:b8:f1:39:51:f7:82:32:52:8b:fb:
        48:c7:b5:c8:4a:6c:0d:8d:f4:61:08:6f:de:fb:0d:70:
        4e:cc:de:6f:e7:b0:00:59:5d:79:7d:aa:f9:fc:cd:d1:
        92:27:87:31:07:bf:ef:83:74:4c:16:37:91:1f:c0:3d
    Fingerprint (SHA-256):
        7B:5D:EA:62:55:52:7A:E1:ED:55:3E:D6:74:40:59:61:52:10:47:5C:77:8C:5F:9E:6B:00:8A:43:10:53:31:55
    Fingerprint (SHA1):
        A9:0D:AD:F3:A7:95:E9:56:F6:D7:7E:70:BE:B3:88:B3:D2:6D:11:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7357: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7358: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121369 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7359: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7360: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7361: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7362: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121370   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7363: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7364: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7365: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7366: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121371   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA1Root-510121148.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7367: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7368: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7369: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7370: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510121372   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7371: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7372: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7373: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121369 (0x1e67d599)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:14 2017
            Not After : Tue May 10 12:15:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:94:96:12:e9:f3:2d:1a:b0:04:2a:6f:94:08:e2:a0:
                    12:16:da:f9:c9:f2:24:62:45:48:98:6e:fd:fa:6c:49:
                    f0:33:92:cf:be:fd:cd:c1:d3:05:0c:69:2f:44:82:91:
                    d5:13:02:73:bc:c0:34:2b:8e:98:ef:7e:e5:57:9c:9e:
                    7e:d9:92:cb:ac:66:f1:9f:8f:22:1a:45:2d:86:a2:8b:
                    34:98:d8:9c:e5:de:9a:cd:5b:ae:29:4d:eb:e2:6b:cf:
                    c9:a0:31:ac:33:27:be:35:a0:a4:c3:db:98:19:b2:84:
                    82:a8:82:7c:4e:8b:91:ae:76:08:fd:c6:a8:2f:5f:dc:
                    30:94:bf:cd:40:26:ac:ee:e4:08:60:35:31:e9:bd:03:
                    1b:92:0a:52:70:09:bb:c5:db:1a:6d:5a:d2:3b:e2:cc:
                    c5:d1:ad:3a:17:68:d5:af:3a:00:c5:ff:e6:fe:6f:79:
                    37:08:aa:6c:ba:a5:73:01:88:9d:ef:c4:11:22:77:ed:
                    d6:43:1a:8c:7d:ad:ff:43:72:5e:1e:87:7e:2d:c9:aa:
                    34:91:33:a6:be:63:9d:8a:76:35:73:2a:aa:30:a5:88:
                    a3:b8:1b:b4:ab:07:19:1f:8d:19:0c:83:10:f9:04:38:
                    ed:34:5a:13:75:cd:75:9b:ed:46:c4:03:fc:e7:3f:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:cc:39:ca:eb:29:7b:b7:d3:06:56:2f:c4:e0:d9:cf:
        42:b3:82:35:66:31:7d:4f:5b:a3:d4:07:b5:92:7d:1b:
        f3:8f:53:b9:55:03:83:92:8b:14:35:89:ab:e5:92:86:
        7f:16:e3:75:ac:3b:80:62:9e:1f:c8:90:87:45:0f:54:
        0e:79:50:fc:28:d7:e7:c0:6a:9b:2d:b5:58:e5:95:e6:
        98:c4:ec:2c:ff:48:b9:37:db:5f:da:68:16:cd:2c:d9:
        65:bf:54:63:86:b5:6f:19:8f:05:e8:fd:09:f8:d0:b5:
        0c:35:f5:01:31:a9:ee:cf:c9:72:8c:0e:f2:8f:5c:83:
        32:17:e6:ed:5f:85:29:1c:53:a5:9c:5e:26:f9:cc:f7:
        a5:3b:29:2a:57:3f:7c:86:f4:c7:4b:d2:8f:50:0e:2e:
        39:10:79:f4:f5:fe:27:35:74:e1:d4:16:00:d8:c1:06:
        59:fd:bc:2a:e8:2f:1a:be:eb:69:7c:14:7f:c2:ef:f5:
        69:5d:1e:19:08:e8:c5:b8:35:83:04:36:40:1c:6b:78:
        35:81:22:47:63:ea:ac:01:84:1a:e4:e7:fd:be:8b:6a:
        24:62:c3:cb:2c:39:d4:0f:90:7b:14:7a:83:76:f4:7d:
        8e:8b:29:83:0f:ea:c5:48:3c:57:39:09:c8:70:ae:c0
    Fingerprint (SHA-256):
        A6:8D:35:E9:5A:29:91:58:08:9E:71:A2:C4:88:A0:DB:4F:3B:BB:F4:42:33:9D:67:12:E4:D0:57:B4:2E:16:DF
    Fingerprint (SHA1):
        D7:4D:1B:CE:8D:78:9F:0A:AE:DE:F6:6B:9B:A1:9A:6A:B2:E8:95:19
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7374: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7375: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121373 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7376: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7377: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7378: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121374 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7379: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7380: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7381: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7382: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121375 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7383: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7384: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121376 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7385: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7386: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7387: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7388: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7389: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121377   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510121149.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7390: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7391: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7392: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7393: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121378   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7394: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7395: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7396: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7397: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121374 (0x1e67d59e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:19 2017
            Not After : Tue May 10 12:15:19 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:6d:9d:27:a8:d8:25:56:24:af:bc:79:fb:0b:8e:c4:
                    85:05:ed:a6:65:44:bb:df:1c:bf:fd:21:c8:0b:95:ce:
                    f6:49:9c:64:90:61:fd:3f:26:8e:5d:dc:cc:ac:fa:d8:
                    b5:eb:d4:dc:e7:76:52:14:8c:06:94:9a:26:61:72:73:
                    75:0b:66:86:36:e3:75:86:82:03:7a:ee:e4:6a:bc:12:
                    8f:08:29:27:60:e3:1b:c0:91:cd:a2:c9:05:3a:9c:69:
                    95:dd:e7:cb:fa:ee:fa:b6:fa:b1:f1:e1:c9:b5:5f:38:
                    bb:55:83:44:29:39:f5:51:0b:9c:a2:67:78:40:9f:03:
                    ce:48:bc:68:62:17:a7:5b:6e:96:67:f9:29:c4:94:df:
                    1b:6f:1f:ee:a5:fb:65:fc:fc:12:7f:9a:a6:14:57:14:
                    7c:b1:1e:f5:18:50:5c:17:c8:80:69:7b:ba:c4:a6:67:
                    ce:93:c6:33:70:aa:65:3f:47:d9:86:b8:a5:06:4f:8b:
                    36:68:b3:44:84:80:52:02:49:c4:5c:f0:b7:b8:92:36:
                    9f:95:53:2a:bb:90:4c:5d:a4:3e:21:8e:97:97:89:b2:
                    98:17:99:1b:ba:4f:58:57:79:77:01:64:6c:1a:b0:cb:
                    88:68:93:e4:62:cd:f6:ea:09:99:b9:60:30:83:19:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:20:30:ea:3f:86:c5:d3:a3:1f:c1:27:2f:4d:59:25:
        8e:47:d3:bd:7e:6e:ef:9d:5e:4e:d2:67:e7:b1:10:b2:
        72:26:78:f0:80:ba:31:da:64:c3:d4:8b:6f:26:3a:88:
        1d:da:62:fd:36:5b:d8:ec:99:8f:28:a8:1e:13:a3:09:
        74:39:e0:f9:0b:d3:e0:05:f6:86:92:89:71:ab:20:b4:
        1f:bb:14:90:95:cc:65:b2:f7:f7:2c:af:89:58:ea:9f:
        03:e7:07:a9:ac:8a:32:e5:ac:41:50:4f:4c:d5:49:ec:
        c4:26:f7:89:5d:bf:09:d8:c1:c6:9e:3c:c7:d3:2e:e6:
        76:d6:40:91:0b:18:e1:d4:c8:5c:c6:d0:b5:5c:78:cf:
        ea:01:74:06:ae:ac:d6:c3:cc:83:fb:ed:02:ff:1e:38:
        3a:9d:8b:6b:18:45:cc:d2:0c:41:ce:4e:d5:05:f4:5b:
        c5:35:52:ee:d8:8a:0a:7d:f6:7a:a9:4c:4c:3c:31:3c:
        03:15:2f:12:92:3e:25:db:55:fb:1b:c2:7e:b8:85:02:
        2b:eb:e8:ef:2d:07:33:8b:f5:a6:a6:44:f7:51:41:3b:
        02:c4:5d:13:f1:7c:77:bc:a4:16:e3:80:99:c4:81:c7:
        9d:89:ed:bd:a4:1d:e5:4c:5d:0d:3a:b5:46:dc:b1:7f
    Fingerprint (SHA-256):
        C7:82:FC:B6:76:0F:E9:C6:AC:25:FE:B0:E5:D7:7F:7B:18:39:11:93:ED:5E:A7:12:61:E9:D2:02:62:0F:60:4D
    Fingerprint (SHA1):
        FA:C3:37:1C:97:5A:EA:42:52:04:E9:91:00:E4:43:C6:9F:6E:D4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7398: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121374 (0x1e67d59e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:19 2017
            Not After : Tue May 10 12:15:19 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:6d:9d:27:a8:d8:25:56:24:af:bc:79:fb:0b:8e:c4:
                    85:05:ed:a6:65:44:bb:df:1c:bf:fd:21:c8:0b:95:ce:
                    f6:49:9c:64:90:61:fd:3f:26:8e:5d:dc:cc:ac:fa:d8:
                    b5:eb:d4:dc:e7:76:52:14:8c:06:94:9a:26:61:72:73:
                    75:0b:66:86:36:e3:75:86:82:03:7a:ee:e4:6a:bc:12:
                    8f:08:29:27:60:e3:1b:c0:91:cd:a2:c9:05:3a:9c:69:
                    95:dd:e7:cb:fa:ee:fa:b6:fa:b1:f1:e1:c9:b5:5f:38:
                    bb:55:83:44:29:39:f5:51:0b:9c:a2:67:78:40:9f:03:
                    ce:48:bc:68:62:17:a7:5b:6e:96:67:f9:29:c4:94:df:
                    1b:6f:1f:ee:a5:fb:65:fc:fc:12:7f:9a:a6:14:57:14:
                    7c:b1:1e:f5:18:50:5c:17:c8:80:69:7b:ba:c4:a6:67:
                    ce:93:c6:33:70:aa:65:3f:47:d9:86:b8:a5:06:4f:8b:
                    36:68:b3:44:84:80:52:02:49:c4:5c:f0:b7:b8:92:36:
                    9f:95:53:2a:bb:90:4c:5d:a4:3e:21:8e:97:97:89:b2:
                    98:17:99:1b:ba:4f:58:57:79:77:01:64:6c:1a:b0:cb:
                    88:68:93:e4:62:cd:f6:ea:09:99:b9:60:30:83:19:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        80:20:30:ea:3f:86:c5:d3:a3:1f:c1:27:2f:4d:59:25:
        8e:47:d3:bd:7e:6e:ef:9d:5e:4e:d2:67:e7:b1:10:b2:
        72:26:78:f0:80:ba:31:da:64:c3:d4:8b:6f:26:3a:88:
        1d:da:62:fd:36:5b:d8:ec:99:8f:28:a8:1e:13:a3:09:
        74:39:e0:f9:0b:d3:e0:05:f6:86:92:89:71:ab:20:b4:
        1f:bb:14:90:95:cc:65:b2:f7:f7:2c:af:89:58:ea:9f:
        03:e7:07:a9:ac:8a:32:e5:ac:41:50:4f:4c:d5:49:ec:
        c4:26:f7:89:5d:bf:09:d8:c1:c6:9e:3c:c7:d3:2e:e6:
        76:d6:40:91:0b:18:e1:d4:c8:5c:c6:d0:b5:5c:78:cf:
        ea:01:74:06:ae:ac:d6:c3:cc:83:fb:ed:02:ff:1e:38:
        3a:9d:8b:6b:18:45:cc:d2:0c:41:ce:4e:d5:05:f4:5b:
        c5:35:52:ee:d8:8a:0a:7d:f6:7a:a9:4c:4c:3c:31:3c:
        03:15:2f:12:92:3e:25:db:55:fb:1b:c2:7e:b8:85:02:
        2b:eb:e8:ef:2d:07:33:8b:f5:a6:a6:44:f7:51:41:3b:
        02:c4:5d:13:f1:7c:77:bc:a4:16:e3:80:99:c4:81:c7:
        9d:89:ed:bd:a4:1d:e5:4c:5d:0d:3a:b5:46:dc:b1:7f
    Fingerprint (SHA-256):
        C7:82:FC:B6:76:0F:E9:C6:AC:25:FE:B0:E5:D7:7F:7B:18:39:11:93:ED:5E:A7:12:61:E9:D2:02:62:0F:60:4D
    Fingerprint (SHA1):
        FA:C3:37:1C:97:5A:EA:42:52:04:E9:91:00:E4:43:C6:9F:6E:D4:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7399: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7400: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121379 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7401: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7402: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7403: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121380 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7404: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7405: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7406: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7407: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510121381 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7408: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7409: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510121382 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7410: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7411: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7412: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7413: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7414: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121383   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510121150.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7415: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7416: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7417: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7418: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121384   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7419: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7420: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7421: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7422: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121385   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-BridgeNavy-510121151.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7423: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7424: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7425: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7426: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121386   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7427: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7428: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7429: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7430: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121380 (0x1e67d5a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:23 2017
            Not After : Tue May 10 12:15:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:ef:6c:2b:f3:0d:46:2d:e4:30:fe:0b:37:c7:48:98:
                    06:5e:30:e7:d1:e4:91:4c:40:80:ec:a6:b7:7e:79:20:
                    2d:fa:c3:f4:f8:59:79:78:e4:87:db:c5:3c:c0:be:85:
                    ef:ae:bd:7d:7d:d8:7c:9c:83:f5:0f:29:7c:6d:c3:24:
                    b5:fd:90:50:0d:aa:22:09:03:98:d4:b7:c0:76:2f:17:
                    b5:66:f0:97:0c:f1:68:2d:fa:e4:ec:41:7e:90:8e:b9:
                    5e:b2:d0:ac:2f:08:32:10:78:f7:d2:80:70:b5:95:71:
                    d5:db:fd:b2:27:05:86:e2:8b:12:01:45:4d:50:89:d5:
                    54:02:7a:d3:ed:85:cf:63:d1:69:ff:f1:2b:d4:de:6f:
                    27:ce:4a:48:3a:6a:f1:47:25:2d:fe:2d:ef:f8:a9:91:
                    d8:ed:3b:cb:3c:b3:cb:b1:d6:fc:82:e2:63:3d:e3:9c:
                    33:1a:75:bb:5d:03:89:bb:79:0e:50:4c:a4:5c:a7:92:
                    cf:d7:fb:6c:ce:ca:f4:c4:17:51:2c:b9:91:b6:e0:e4:
                    c3:ea:24:be:da:ec:b7:22:e1:0f:64:68:f1:21:d7:f7:
                    4f:33:ad:24:d8:bb:e8:61:99:19:f8:fe:ed:6d:b3:fd:
                    46:c0:76:d3:0f:84:3d:44:6c:a9:b0:2f:3a:1c:1d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:de:eb:16:a6:e5:38:b8:90:31:bd:33:6a:73:25:05:
        c9:90:db:1d:b2:71:d0:47:a3:9f:41:f7:fb:f9:81:73:
        56:b6:55:d7:62:24:b2:32:9a:36:1c:f5:b9:00:a0:1e:
        e0:ae:85:c6:0f:cf:5f:d4:3a:b1:92:43:3f:2b:48:ec:
        2d:ec:0f:f1:ad:13:0a:65:41:8b:c4:88:e1:08:49:46:
        ce:49:ef:10:6b:8a:be:2c:41:25:79:b6:9b:a2:48:82:
        60:38:14:fa:86:c6:ee:83:00:9a:9e:60:e5:72:cd:9f:
        ea:78:17:fc:ec:be:77:d1:71:b3:e1:cd:88:7b:43:b7:
        b5:eb:98:f4:70:9a:bc:fd:3f:c1:68:98:76:12:cd:20:
        b7:d2:19:2b:47:df:15:81:b3:c3:e0:4d:7e:a7:27:c4:
        ef:83:fc:36:c6:97:b1:ec:5b:af:f5:97:32:e1:69:36:
        e3:1f:e7:50:c8:d2:f0:50:a4:ad:b5:79:5f:fb:ca:87:
        6c:dd:d4:aa:bd:6a:8e:91:51:15:bb:bf:d0:03:35:62:
        6e:e7:8e:f6:02:2e:e0:1f:22:51:ee:f9:bd:40:17:e9:
        59:85:0a:d7:1d:26:c4:2d:c5:e0:f1:08:a9:12:47:e7:
        d9:d7:a5:3e:f7:9e:b6:32:be:4d:73:1e:0f:b3:87:dd
    Fingerprint (SHA-256):
        00:2A:4D:8F:6D:5D:90:F3:2E:F3:80:C8:AA:1D:B2:28:D7:FA:8F:04:18:E3:A3:0D:A5:E2:4A:73:20:C0:74:1B
    Fingerprint (SHA1):
        48:5D:67:4D:38:CF:FF:E3:98:C5:AD:F2:B1:2D:B7:55:24:40:52:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7431: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121380 (0x1e67d5a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:23 2017
            Not After : Tue May 10 12:15:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:ef:6c:2b:f3:0d:46:2d:e4:30:fe:0b:37:c7:48:98:
                    06:5e:30:e7:d1:e4:91:4c:40:80:ec:a6:b7:7e:79:20:
                    2d:fa:c3:f4:f8:59:79:78:e4:87:db:c5:3c:c0:be:85:
                    ef:ae:bd:7d:7d:d8:7c:9c:83:f5:0f:29:7c:6d:c3:24:
                    b5:fd:90:50:0d:aa:22:09:03:98:d4:b7:c0:76:2f:17:
                    b5:66:f0:97:0c:f1:68:2d:fa:e4:ec:41:7e:90:8e:b9:
                    5e:b2:d0:ac:2f:08:32:10:78:f7:d2:80:70:b5:95:71:
                    d5:db:fd:b2:27:05:86:e2:8b:12:01:45:4d:50:89:d5:
                    54:02:7a:d3:ed:85:cf:63:d1:69:ff:f1:2b:d4:de:6f:
                    27:ce:4a:48:3a:6a:f1:47:25:2d:fe:2d:ef:f8:a9:91:
                    d8:ed:3b:cb:3c:b3:cb:b1:d6:fc:82:e2:63:3d:e3:9c:
                    33:1a:75:bb:5d:03:89:bb:79:0e:50:4c:a4:5c:a7:92:
                    cf:d7:fb:6c:ce:ca:f4:c4:17:51:2c:b9:91:b6:e0:e4:
                    c3:ea:24:be:da:ec:b7:22:e1:0f:64:68:f1:21:d7:f7:
                    4f:33:ad:24:d8:bb:e8:61:99:19:f8:fe:ed:6d:b3:fd:
                    46:c0:76:d3:0f:84:3d:44:6c:a9:b0:2f:3a:1c:1d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:de:eb:16:a6:e5:38:b8:90:31:bd:33:6a:73:25:05:
        c9:90:db:1d:b2:71:d0:47:a3:9f:41:f7:fb:f9:81:73:
        56:b6:55:d7:62:24:b2:32:9a:36:1c:f5:b9:00:a0:1e:
        e0:ae:85:c6:0f:cf:5f:d4:3a:b1:92:43:3f:2b:48:ec:
        2d:ec:0f:f1:ad:13:0a:65:41:8b:c4:88:e1:08:49:46:
        ce:49:ef:10:6b:8a:be:2c:41:25:79:b6:9b:a2:48:82:
        60:38:14:fa:86:c6:ee:83:00:9a:9e:60:e5:72:cd:9f:
        ea:78:17:fc:ec:be:77:d1:71:b3:e1:cd:88:7b:43:b7:
        b5:eb:98:f4:70:9a:bc:fd:3f:c1:68:98:76:12:cd:20:
        b7:d2:19:2b:47:df:15:81:b3:c3:e0:4d:7e:a7:27:c4:
        ef:83:fc:36:c6:97:b1:ec:5b:af:f5:97:32:e1:69:36:
        e3:1f:e7:50:c8:d2:f0:50:a4:ad:b5:79:5f:fb:ca:87:
        6c:dd:d4:aa:bd:6a:8e:91:51:15:bb:bf:d0:03:35:62:
        6e:e7:8e:f6:02:2e:e0:1f:22:51:ee:f9:bd:40:17:e9:
        59:85:0a:d7:1d:26:c4:2d:c5:e0:f1:08:a9:12:47:e7:
        d9:d7:a5:3e:f7:9e:b6:32:be:4d:73:1e:0f:b3:87:dd
    Fingerprint (SHA-256):
        00:2A:4D:8F:6D:5D:90:F3:2E:F3:80:C8:AA:1D:B2:28:D7:FA:8F:04:18:E3:A3:0D:A5:E2:4A:73:20:C0:74:1B
    Fingerprint (SHA1):
        48:5D:67:4D:38:CF:FF:E3:98:C5:AD:F2:B1:2D:B7:55:24:40:52:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7432: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7433: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121379 (0x1e67d5a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:15:23 2017
            Not After : Tue May 10 12:15:23 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:ee:05:13:1e:19:58:73:7d:a3:93:74:0f:27:b9:7a:
                    cb:8d:3f:ff:2a:dd:24:92:48:d7:bb:6a:22:6c:e5:f7:
                    da:eb:97:67:78:eb:db:11:d6:c4:05:66:e1:ae:84:e5:
                    e3:dd:36:41:18:be:4f:31:e0:48:4a:6e:e7:41:05:61:
                    3b:1a:e0:6f:b0:33:9e:7b:be:f3:10:b0:f0:e4:88:6b:
                    28:39:f5:a5:85:7b:f4:cd:35:b1:3a:0a:c5:85:5e:38:
                    c2:d3:e5:91:87:16:9b:5d:2e:85:17:76:1d:27:95:cd:
                    8e:4b:b2:2a:e7:49:56:2f:95:27:72:21:03:9d:91:41:
                    45:8a:33:31:d2:90:7e:91:5b:e8:96:ea:27:08:cd:e6:
                    49:37:78:02:c3:b3:d4:06:c9:48:cd:fa:bc:62:b7:66:
                    f5:8e:9f:48:3d:36:6d:13:f9:19:6f:3e:3d:f8:1f:0c:
                    f4:39:82:c7:ae:69:e1:31:c4:4c:b3:b3:2d:c9:49:a0:
                    1e:bc:65:14:72:cb:a4:6d:44:26:d7:c8:7b:c7:62:3c:
                    9a:a1:f5:31:d6:a2:89:8f:dd:a7:6e:7c:a7:9c:e7:d7:
                    d5:c0:63:ea:df:5c:31:fe:00:02:95:cc:38:07:07:b0:
                    78:4c:43:0d:ef:76:fe:27:fc:fd:39:12:5b:36:b7:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:d8:f1:9e:77:f7:75:0b:3f:3f:c9:6b:f9:c1:51:44:
        78:6b:b6:8f:a6:3c:55:d0:b9:8b:5a:e1:47:35:49:0d:
        69:37:6a:2c:5f:10:ae:60:f0:ca:de:53:f3:c0:b5:05:
        96:36:ef:20:cb:e4:77:a5:f5:b1:4f:53:fe:4a:4a:09:
        2b:e7:72:05:08:1e:d4:a6:bc:76:8e:28:d3:69:59:ce:
        48:8a:9d:c5:19:89:f2:92:7b:52:aa:d9:f0:95:d6:0b:
        2e:1d:a8:83:0f:8f:a6:49:8a:5e:2b:82:7a:20:70:87:
        4d:64:0c:d9:8f:fc:9c:29:f2:70:89:ba:37:80:16:b8:
        e5:ba:6e:46:95:aa:a3:ac:a4:be:76:c1:23:ab:11:85:
        41:0a:39:73:8e:dd:e1:b0:3e:ac:0a:c6:37:76:5a:a7:
        00:cc:f9:9e:47:46:4f:ae:29:93:8e:7e:63:8b:cd:07:
        34:d2:70:5c:3e:ad:78:6d:8d:6c:3f:4c:b4:7e:0a:8f:
        06:96:82:96:78:79:a7:06:16:6e:12:8b:37:fe:8d:79:
        53:e1:62:5f:6d:da:87:4b:00:81:36:40:c3:b7:ad:b6:
        4d:34:93:1d:1f:0f:1a:9a:c5:42:7a:22:b6:2c:80:84:
        67:d8:50:e4:0c:b3:57:59:8a:3d:5a:2d:5d:d5:98:2b
    Fingerprint (SHA-256):
        43:FA:71:99:A8:C9:54:DB:8A:F7:6E:0A:15:3A:46:20:9C:1A:F1:F8:72:A2:DA:03:2E:8D:A0:62:87:C5:98:E9
    Fingerprint (SHA1):
        6B:4B:A7:61:7E:6B:66:52:CE:E2:09:A7:E8:76:4A:9B:5A:4C:C4:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7434: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121380 (0x1e67d5a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:23 2017
            Not After : Tue May 10 12:15:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:ef:6c:2b:f3:0d:46:2d:e4:30:fe:0b:37:c7:48:98:
                    06:5e:30:e7:d1:e4:91:4c:40:80:ec:a6:b7:7e:79:20:
                    2d:fa:c3:f4:f8:59:79:78:e4:87:db:c5:3c:c0:be:85:
                    ef:ae:bd:7d:7d:d8:7c:9c:83:f5:0f:29:7c:6d:c3:24:
                    b5:fd:90:50:0d:aa:22:09:03:98:d4:b7:c0:76:2f:17:
                    b5:66:f0:97:0c:f1:68:2d:fa:e4:ec:41:7e:90:8e:b9:
                    5e:b2:d0:ac:2f:08:32:10:78:f7:d2:80:70:b5:95:71:
                    d5:db:fd:b2:27:05:86:e2:8b:12:01:45:4d:50:89:d5:
                    54:02:7a:d3:ed:85:cf:63:d1:69:ff:f1:2b:d4:de:6f:
                    27:ce:4a:48:3a:6a:f1:47:25:2d:fe:2d:ef:f8:a9:91:
                    d8:ed:3b:cb:3c:b3:cb:b1:d6:fc:82:e2:63:3d:e3:9c:
                    33:1a:75:bb:5d:03:89:bb:79:0e:50:4c:a4:5c:a7:92:
                    cf:d7:fb:6c:ce:ca:f4:c4:17:51:2c:b9:91:b6:e0:e4:
                    c3:ea:24:be:da:ec:b7:22:e1:0f:64:68:f1:21:d7:f7:
                    4f:33:ad:24:d8:bb:e8:61:99:19:f8:fe:ed:6d:b3:fd:
                    46:c0:76:d3:0f:84:3d:44:6c:a9:b0:2f:3a:1c:1d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:de:eb:16:a6:e5:38:b8:90:31:bd:33:6a:73:25:05:
        c9:90:db:1d:b2:71:d0:47:a3:9f:41:f7:fb:f9:81:73:
        56:b6:55:d7:62:24:b2:32:9a:36:1c:f5:b9:00:a0:1e:
        e0:ae:85:c6:0f:cf:5f:d4:3a:b1:92:43:3f:2b:48:ec:
        2d:ec:0f:f1:ad:13:0a:65:41:8b:c4:88:e1:08:49:46:
        ce:49:ef:10:6b:8a:be:2c:41:25:79:b6:9b:a2:48:82:
        60:38:14:fa:86:c6:ee:83:00:9a:9e:60:e5:72:cd:9f:
        ea:78:17:fc:ec:be:77:d1:71:b3:e1:cd:88:7b:43:b7:
        b5:eb:98:f4:70:9a:bc:fd:3f:c1:68:98:76:12:cd:20:
        b7:d2:19:2b:47:df:15:81:b3:c3:e0:4d:7e:a7:27:c4:
        ef:83:fc:36:c6:97:b1:ec:5b:af:f5:97:32:e1:69:36:
        e3:1f:e7:50:c8:d2:f0:50:a4:ad:b5:79:5f:fb:ca:87:
        6c:dd:d4:aa:bd:6a:8e:91:51:15:bb:bf:d0:03:35:62:
        6e:e7:8e:f6:02:2e:e0:1f:22:51:ee:f9:bd:40:17:e9:
        59:85:0a:d7:1d:26:c4:2d:c5:e0:f1:08:a9:12:47:e7:
        d9:d7:a5:3e:f7:9e:b6:32:be:4d:73:1e:0f:b3:87:dd
    Fingerprint (SHA-256):
        00:2A:4D:8F:6D:5D:90:F3:2E:F3:80:C8:AA:1D:B2:28:D7:FA:8F:04:18:E3:A3:0D:A5:E2:4A:73:20:C0:74:1B
    Fingerprint (SHA1):
        48:5D:67:4D:38:CF:FF:E3:98:C5:AD:F2:B1:2D:B7:55:24:40:52:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7435: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121380 (0x1e67d5a4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:23 2017
            Not After : Tue May 10 12:15:23 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:ef:6c:2b:f3:0d:46:2d:e4:30:fe:0b:37:c7:48:98:
                    06:5e:30:e7:d1:e4:91:4c:40:80:ec:a6:b7:7e:79:20:
                    2d:fa:c3:f4:f8:59:79:78:e4:87:db:c5:3c:c0:be:85:
                    ef:ae:bd:7d:7d:d8:7c:9c:83:f5:0f:29:7c:6d:c3:24:
                    b5:fd:90:50:0d:aa:22:09:03:98:d4:b7:c0:76:2f:17:
                    b5:66:f0:97:0c:f1:68:2d:fa:e4:ec:41:7e:90:8e:b9:
                    5e:b2:d0:ac:2f:08:32:10:78:f7:d2:80:70:b5:95:71:
                    d5:db:fd:b2:27:05:86:e2:8b:12:01:45:4d:50:89:d5:
                    54:02:7a:d3:ed:85:cf:63:d1:69:ff:f1:2b:d4:de:6f:
                    27:ce:4a:48:3a:6a:f1:47:25:2d:fe:2d:ef:f8:a9:91:
                    d8:ed:3b:cb:3c:b3:cb:b1:d6:fc:82:e2:63:3d:e3:9c:
                    33:1a:75:bb:5d:03:89:bb:79:0e:50:4c:a4:5c:a7:92:
                    cf:d7:fb:6c:ce:ca:f4:c4:17:51:2c:b9:91:b6:e0:e4:
                    c3:ea:24:be:da:ec:b7:22:e1:0f:64:68:f1:21:d7:f7:
                    4f:33:ad:24:d8:bb:e8:61:99:19:f8:fe:ed:6d:b3:fd:
                    46:c0:76:d3:0f:84:3d:44:6c:a9:b0:2f:3a:1c:1d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:de:eb:16:a6:e5:38:b8:90:31:bd:33:6a:73:25:05:
        c9:90:db:1d:b2:71:d0:47:a3:9f:41:f7:fb:f9:81:73:
        56:b6:55:d7:62:24:b2:32:9a:36:1c:f5:b9:00:a0:1e:
        e0:ae:85:c6:0f:cf:5f:d4:3a:b1:92:43:3f:2b:48:ec:
        2d:ec:0f:f1:ad:13:0a:65:41:8b:c4:88:e1:08:49:46:
        ce:49:ef:10:6b:8a:be:2c:41:25:79:b6:9b:a2:48:82:
        60:38:14:fa:86:c6:ee:83:00:9a:9e:60:e5:72:cd:9f:
        ea:78:17:fc:ec:be:77:d1:71:b3:e1:cd:88:7b:43:b7:
        b5:eb:98:f4:70:9a:bc:fd:3f:c1:68:98:76:12:cd:20:
        b7:d2:19:2b:47:df:15:81:b3:c3:e0:4d:7e:a7:27:c4:
        ef:83:fc:36:c6:97:b1:ec:5b:af:f5:97:32:e1:69:36:
        e3:1f:e7:50:c8:d2:f0:50:a4:ad:b5:79:5f:fb:ca:87:
        6c:dd:d4:aa:bd:6a:8e:91:51:15:bb:bf:d0:03:35:62:
        6e:e7:8e:f6:02:2e:e0:1f:22:51:ee:f9:bd:40:17:e9:
        59:85:0a:d7:1d:26:c4:2d:c5:e0:f1:08:a9:12:47:e7:
        d9:d7:a5:3e:f7:9e:b6:32:be:4d:73:1e:0f:b3:87:dd
    Fingerprint (SHA-256):
        00:2A:4D:8F:6D:5D:90:F3:2E:F3:80:C8:AA:1D:B2:28:D7:FA:8F:04:18:E3:A3:0D:A5:E2:4A:73:20:C0:74:1B
    Fingerprint (SHA1):
        48:5D:67:4D:38:CF:FF:E3:98:C5:AD:F2:B1:2D:B7:55:24:40:52:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7436: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7437: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121387 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7438: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7439: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7440: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121388 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7441: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7442: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7443: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7444: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510121389   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7445: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7446: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7447: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7448: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510121390   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7449: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7450: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7451: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7452: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510121391 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7453: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7454: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510121392 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7455: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7456: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7457: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7458: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7459: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510121393   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7460: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7461: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7462: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7463: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510121394   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7464: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7465: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7466: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7467: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121395   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7468: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7469: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7470: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7471: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121396   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7472: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7473: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7474: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121387 (0x1e67d5ab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:15:29 2017
            Not After : Tue May 10 12:15:29 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:08:89:d9:91:52:dc:a1:49:1e:70:4b:0a:a8:b8:b6:
                    b0:be:80:62:a1:3a:7e:e9:4a:7c:24:8a:9d:e4:29:a1:
                    6b:c2:14:34:c7:e6:31:4c:a8:84:95:e7:04:71:29:13:
                    92:62:93:52:c6:9e:e9:27:6b:9c:b4:00:55:a3:e2:f5:
                    aa:a1:eb:59:cb:66:64:82:af:56:c6:79:11:47:9a:0d:
                    27:e0:ac:cc:bd:af:57:e9:54:d5:16:c8:85:97:a4:1a:
                    79:96:c5:21:91:50:3f:40:b6:56:01:4f:64:b4:b9:1a:
                    79:01:16:e6:88:72:c1:c8:82:e3:b9:6d:72:6f:da:a6:
                    34:ba:23:2e:91:30:bf:67:9b:ee:76:a9:47:63:7e:47:
                    70:a1:22:73:93:93:b2:21:0a:1f:9e:fa:d8:b1:ef:86:
                    e1:4d:f9:fc:c1:49:99:84:db:1b:62:19:53:66:8f:9f:
                    98:31:58:12:60:98:07:21:50:0a:b5:d8:2e:23:db:65:
                    10:4f:25:a4:d0:bc:8d:34:76:09:b5:71:d6:23:94:da:
                    5b:d1:65:91:f0:13:3b:67:8d:84:29:40:57:e0:bf:57:
                    13:17:bc:a8:f2:f8:79:42:6e:74:a1:ed:54:15:95:1b:
                    81:35:b3:91:77:08:c9:88:ec:73:f4:e7:49:b1:68:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:86:30:43:78:aa:8c:5a:2d:f4:60:f2:c7:ee:a1:60:
        c9:01:be:e2:52:c3:15:3b:87:80:ca:ea:1e:11:08:11:
        54:0e:14:26:b8:09:e8:42:76:86:a0:95:53:d1:61:e2:
        cc:0c:59:e3:bb:0a:b3:9d:43:85:29:79:96:e5:cf:06:
        6d:2c:7c:6d:68:24:98:32:1f:3a:f1:47:d9:9f:0c:46:
        b9:91:c3:8e:36:aa:ea:3e:a7:c7:97:4c:a9:85:74:d4:
        71:e3:56:28:39:31:95:c9:4f:c1:26:00:86:a6:20:70:
        63:aa:db:32:8d:91:18:f2:92:92:63:c2:13:2c:85:83:
        28:0f:44:c8:75:71:f0:52:e1:5d:36:0c:44:19:3b:dd:
        36:44:4a:fa:6e:ad:47:d0:b4:4e:48:d3:59:86:5d:45:
        97:85:e7:e2:cb:df:7e:99:bd:e9:a4:b0:55:e8:b0:8c:
        a0:91:9f:b8:c5:a8:2e:eb:f3:98:25:08:e1:3a:a0:bc:
        57:1a:98:c3:83:47:c2:4f:b1:ce:7a:29:76:b6:18:49:
        7e:f8:9e:42:97:ec:ea:0a:06:e7:11:d5:be:71:fc:42:
        1c:77:e1:6f:2d:1b:fd:45:31:92:45:36:fd:33:69:a3:
        9f:f5:e2:ac:2f:d0:4a:48:5b:0a:77:fa:78:37:ad:40
    Fingerprint (SHA-256):
        D9:FD:53:7C:1D:FD:C6:34:F0:F7:B7:56:76:8E:2D:44:3F:79:A1:F4:64:40:AE:E8:82:3C:50:76:92:AB:D7:E4
    Fingerprint (SHA1):
        BC:B4:98:43:AB:3B:26:C7:A6:F5:17:1D:FB:5F:7F:AB:F0:C9:86:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7475: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7476: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7477: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7478: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7479: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7480: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7481: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7482: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7483: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121388 (0x1e67d5ac)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:15:30 2017
            Not After : Tue May 10 12:15:30 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:43:04:4a:3c:cf:41:43:02:24:27:a7:25:a0:13:5a:
                    f0:38:3c:c6:65:ae:08:50:65:1b:10:b1:23:8c:72:f1:
                    ca:3a:38:4f:0c:52:78:66:5e:b4:bc:9e:e3:74:b7:0c:
                    37:5a:46:cb:c4:b2:e5:bb:31:ce:f7:d9:da:8f:9c:47:
                    92:b6:32:16:33:23:56:3c:92:31:f0:38:44:32:36:39:
                    1f:d1:c8:f5:59:d6:af:44:92:aa:0e:1a:da:26:3f:74:
                    e0:f6:eb:bf:e9:d9:17:d5:04:cd:4b:d2:58:24:61:fe:
                    c0:b3:3d:b2:88:8e:cd:60:60:20:da:d5:3d:14:a2:a4:
                    8c:1f:4c:d4:7b:66:8f:5b:38:f7:36:f1:46:86:8a:9d:
                    be:89:3a:64:07:c6:35:36:e0:2e:6b:d3:ed:77:85:56:
                    33:a5:0d:04:96:10:77:34:22:38:0e:67:7f:03:ee:80:
                    2c:66:41:6f:8e:75:69:4b:a1:d5:79:6f:e8:0b:83:0f:
                    38:5f:55:bd:ed:dd:b7:d2:9d:42:b2:16:1f:17:9d:29:
                    6c:19:26:6d:c2:c5:89:35:e3:bd:8e:1d:e1:6a:c5:49:
                    f3:4c:80:89:6a:c7:7b:ac:36:6f:19:74:fd:fa:72:7a:
                    df:8b:7a:6e:e3:a6:ae:55:ee:59:57:d4:37:26:46:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:9e:38:7d:68:19:4c:d6:3b:ea:33:4e:d6:cf:70:6f:
        8b:82:be:f1:9c:1e:26:2c:7a:53:ad:f9:70:75:5c:d1:
        ab:91:5b:e5:4a:34:c3:cf:ec:55:f6:23:26:10:c6:dc:
        36:c3:20:2c:e7:e1:64:6f:12:7f:9b:a8:53:de:01:d1:
        ea:24:32:0b:02:79:5e:d7:cd:7b:b6:57:6c:2a:69:6b:
        08:26:ee:8a:1d:a8:94:b2:f9:0c:16:cd:fd:67:7e:d1:
        b2:2e:24:d9:d5:28:6c:7f:d9:37:80:11:45:dd:e2:13:
        0e:a4:b4:fd:f4:6d:7c:fe:52:15:76:01:12:14:e5:e3:
        e4:47:5b:ba:bf:62:9b:2d:0b:10:bb:dd:91:ed:25:b6:
        b9:1f:8b:fc:86:59:d1:ee:1e:64:af:74:2e:41:ae:71:
        5b:30:73:6f:e1:88:54:35:b0:f2:35:42:32:9b:1e:f2:
        a2:f5:1b:47:c5:a9:1b:ab:0c:55:12:26:cf:24:d6:1e:
        92:ba:fe:be:79:f5:3b:3e:c3:95:15:81:50:89:2e:ac:
        bd:f8:46:37:79:ef:ae:53:b5:75:2d:bd:38:a9:47:de:
        e4:5a:b2:a1:59:4d:2b:8f:68:aa:38:4f:73:63:d6:26:
        1f:39:ca:5b:06:0d:f7:63:2b:c3:04:6c:4b:eb:83:a5
    Fingerprint (SHA-256):
        D5:D0:A7:18:C3:01:0A:CB:9D:3E:47:91:4F:FD:31:BE:35:14:AD:E4:79:29:93:9B:93:EA:40:03:AD:2D:B2:67
    Fingerprint (SHA1):
        CB:3E:35:3F:FC:A5:DD:6E:C3:3D:05:35:00:CB:B7:97:16:58:6B:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7484: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7485: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7486: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7487: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7488: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7489: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7490: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7491: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7492: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7493: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7494: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7495: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7496: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7497: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7498: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7499: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7500: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7501: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7502: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121397 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7503: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7504: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7505: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7506: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510121398   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7507: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7508: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7509: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7510: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510121399   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7511: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7512: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7513: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7514: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510121400   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7515: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7516: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7517: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7518: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510121401   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7519: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7520: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7521: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7522: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510121402   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7523: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7524: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7525: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7526: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510121403   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7527: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7528: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7529: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7530: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510121404   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7531: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7532: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7533: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7534: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510121405   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7535: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7536: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7537: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121397 (0x1e67d5b5)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:39 2017
            Not After : Tue May 10 12:15:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a3:f9:33:4a:1f:85:9c:00:ad:5c:40:b2:65:d8:fc:4b:
                    a2:c5:70:0c:19:f3:62:07:bf:c2:85:15:62:5b:a3:37:
                    6a:f1:c6:d0:55:dc:d5:fd:ad:9a:20:69:84:17:6a:f0:
                    c1:12:45:e2:30:10:d7:ce:3f:4b:11:68:52:26:2c:e7:
                    25:fd:d9:e6:97:08:19:6f:3c:21:77:bd:41:c7:d0:fe:
                    66:4c:29:98:88:44:19:07:a2:cb:f3:c4:17:0f:bf:c3:
                    1e:94:29:f0:11:96:7f:c5:6e:ac:3d:f9:d8:ae:3e:31:
                    06:ce:15:8e:a7:d9:a9:5d:6e:fa:9d:32:87:fc:f9:03:
                    4b:45:bf:73:4a:7e:cb:ce:ac:9f:6a:c0:8b:b1:18:6c:
                    ec:33:da:79:70:79:e3:63:11:de:56:a7:49:34:79:77:
                    f8:ef:14:e7:1c:e8:5a:ac:dc:10:0f:be:6a:6a:b8:41:
                    7f:10:91:53:9f:fd:0c:0c:5f:57:9d:7e:f2:ba:77:4a:
                    c1:1c:68:61:9d:0d:9a:a7:0c:04:81:47:2f:35:e2:c0:
                    ca:46:d2:52:cd:24:c9:d5:6f:9c:ec:4e:bc:1d:be:b3:
                    b0:c1:9d:57:1c:75:4b:c4:1e:5a:c5:bc:e6:44:04:55:
                    e1:c0:be:74:14:b7:91:a5:05:cd:60:4c:67:ae:da:df
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:1a:d3:f4:a7:aa:31:46:6a:c4:6a:13:9c:
        c9:5e:ac:cf:d1:04:c2:08:e6:cd:f0:78:91:38:c9:41:
        02:1c:21:cf:f7:77:e0:95:d5:34:d1:40:0e:69:a5:f2:
        8a:12:f2:1d:8d:0f:5c:98:95:b0:4b:6f:ca:36
    Fingerprint (SHA-256):
        DA:6C:10:71:D3:07:E9:E8:D0:2E:15:1E:A3:EA:40:1D:67:58:95:79:A4:C6:92:85:C0:30:B8:B1:83:96:74:01
    Fingerprint (SHA1):
        A0:75:B3:41:A0:BB:9E:40:0B:D6:5E:F1:A5:AD:18:D8:8F:69:BE:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7538: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121397 (0x1e67d5b5)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:39 2017
            Not After : Tue May 10 12:15:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a3:f9:33:4a:1f:85:9c:00:ad:5c:40:b2:65:d8:fc:4b:
                    a2:c5:70:0c:19:f3:62:07:bf:c2:85:15:62:5b:a3:37:
                    6a:f1:c6:d0:55:dc:d5:fd:ad:9a:20:69:84:17:6a:f0:
                    c1:12:45:e2:30:10:d7:ce:3f:4b:11:68:52:26:2c:e7:
                    25:fd:d9:e6:97:08:19:6f:3c:21:77:bd:41:c7:d0:fe:
                    66:4c:29:98:88:44:19:07:a2:cb:f3:c4:17:0f:bf:c3:
                    1e:94:29:f0:11:96:7f:c5:6e:ac:3d:f9:d8:ae:3e:31:
                    06:ce:15:8e:a7:d9:a9:5d:6e:fa:9d:32:87:fc:f9:03:
                    4b:45:bf:73:4a:7e:cb:ce:ac:9f:6a:c0:8b:b1:18:6c:
                    ec:33:da:79:70:79:e3:63:11:de:56:a7:49:34:79:77:
                    f8:ef:14:e7:1c:e8:5a:ac:dc:10:0f:be:6a:6a:b8:41:
                    7f:10:91:53:9f:fd:0c:0c:5f:57:9d:7e:f2:ba:77:4a:
                    c1:1c:68:61:9d:0d:9a:a7:0c:04:81:47:2f:35:e2:c0:
                    ca:46:d2:52:cd:24:c9:d5:6f:9c:ec:4e:bc:1d:be:b3:
                    b0:c1:9d:57:1c:75:4b:c4:1e:5a:c5:bc:e6:44:04:55:
                    e1:c0:be:74:14:b7:91:a5:05:cd:60:4c:67:ae:da:df
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:1a:d3:f4:a7:aa:31:46:6a:c4:6a:13:9c:
        c9:5e:ac:cf:d1:04:c2:08:e6:cd:f0:78:91:38:c9:41:
        02:1c:21:cf:f7:77:e0:95:d5:34:d1:40:0e:69:a5:f2:
        8a:12:f2:1d:8d:0f:5c:98:95:b0:4b:6f:ca:36
    Fingerprint (SHA-256):
        DA:6C:10:71:D3:07:E9:E8:D0:2E:15:1E:A3:EA:40:1D:67:58:95:79:A4:C6:92:85:C0:30:B8:B1:83:96:74:01
    Fingerprint (SHA1):
        A0:75:B3:41:A0:BB:9E:40:0B:D6:5E:F1:A5:AD:18:D8:8F:69:BE:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7539: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121397 (0x1e67d5b5)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:39 2017
            Not After : Tue May 10 12:15:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a3:f9:33:4a:1f:85:9c:00:ad:5c:40:b2:65:d8:fc:4b:
                    a2:c5:70:0c:19:f3:62:07:bf:c2:85:15:62:5b:a3:37:
                    6a:f1:c6:d0:55:dc:d5:fd:ad:9a:20:69:84:17:6a:f0:
                    c1:12:45:e2:30:10:d7:ce:3f:4b:11:68:52:26:2c:e7:
                    25:fd:d9:e6:97:08:19:6f:3c:21:77:bd:41:c7:d0:fe:
                    66:4c:29:98:88:44:19:07:a2:cb:f3:c4:17:0f:bf:c3:
                    1e:94:29:f0:11:96:7f:c5:6e:ac:3d:f9:d8:ae:3e:31:
                    06:ce:15:8e:a7:d9:a9:5d:6e:fa:9d:32:87:fc:f9:03:
                    4b:45:bf:73:4a:7e:cb:ce:ac:9f:6a:c0:8b:b1:18:6c:
                    ec:33:da:79:70:79:e3:63:11:de:56:a7:49:34:79:77:
                    f8:ef:14:e7:1c:e8:5a:ac:dc:10:0f:be:6a:6a:b8:41:
                    7f:10:91:53:9f:fd:0c:0c:5f:57:9d:7e:f2:ba:77:4a:
                    c1:1c:68:61:9d:0d:9a:a7:0c:04:81:47:2f:35:e2:c0:
                    ca:46:d2:52:cd:24:c9:d5:6f:9c:ec:4e:bc:1d:be:b3:
                    b0:c1:9d:57:1c:75:4b:c4:1e:5a:c5:bc:e6:44:04:55:
                    e1:c0:be:74:14:b7:91:a5:05:cd:60:4c:67:ae:da:df
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:1a:d3:f4:a7:aa:31:46:6a:c4:6a:13:9c:
        c9:5e:ac:cf:d1:04:c2:08:e6:cd:f0:78:91:38:c9:41:
        02:1c:21:cf:f7:77:e0:95:d5:34:d1:40:0e:69:a5:f2:
        8a:12:f2:1d:8d:0f:5c:98:95:b0:4b:6f:ca:36
    Fingerprint (SHA-256):
        DA:6C:10:71:D3:07:E9:E8:D0:2E:15:1E:A3:EA:40:1D:67:58:95:79:A4:C6:92:85:C0:30:B8:B1:83:96:74:01
    Fingerprint (SHA1):
        A0:75:B3:41:A0:BB:9E:40:0B:D6:5E:F1:A5:AD:18:D8:8F:69:BE:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7540: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121397 (0x1e67d5b5)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:39 2017
            Not After : Tue May 10 12:15:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    a3:f9:33:4a:1f:85:9c:00:ad:5c:40:b2:65:d8:fc:4b:
                    a2:c5:70:0c:19:f3:62:07:bf:c2:85:15:62:5b:a3:37:
                    6a:f1:c6:d0:55:dc:d5:fd:ad:9a:20:69:84:17:6a:f0:
                    c1:12:45:e2:30:10:d7:ce:3f:4b:11:68:52:26:2c:e7:
                    25:fd:d9:e6:97:08:19:6f:3c:21:77:bd:41:c7:d0:fe:
                    66:4c:29:98:88:44:19:07:a2:cb:f3:c4:17:0f:bf:c3:
                    1e:94:29:f0:11:96:7f:c5:6e:ac:3d:f9:d8:ae:3e:31:
                    06:ce:15:8e:a7:d9:a9:5d:6e:fa:9d:32:87:fc:f9:03:
                    4b:45:bf:73:4a:7e:cb:ce:ac:9f:6a:c0:8b:b1:18:6c:
                    ec:33:da:79:70:79:e3:63:11:de:56:a7:49:34:79:77:
                    f8:ef:14:e7:1c:e8:5a:ac:dc:10:0f:be:6a:6a:b8:41:
                    7f:10:91:53:9f:fd:0c:0c:5f:57:9d:7e:f2:ba:77:4a:
                    c1:1c:68:61:9d:0d:9a:a7:0c:04:81:47:2f:35:e2:c0:
                    ca:46:d2:52:cd:24:c9:d5:6f:9c:ec:4e:bc:1d:be:b3:
                    b0:c1:9d:57:1c:75:4b:c4:1e:5a:c5:bc:e6:44:04:55:
                    e1:c0:be:74:14:b7:91:a5:05:cd:60:4c:67:ae:da:df
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:1a:d3:f4:a7:aa:31:46:6a:c4:6a:13:9c:
        c9:5e:ac:cf:d1:04:c2:08:e6:cd:f0:78:91:38:c9:41:
        02:1c:21:cf:f7:77:e0:95:d5:34:d1:40:0e:69:a5:f2:
        8a:12:f2:1d:8d:0f:5c:98:95:b0:4b:6f:ca:36
    Fingerprint (SHA-256):
        DA:6C:10:71:D3:07:E9:E8:D0:2E:15:1E:A3:EA:40:1D:67:58:95:79:A4:C6:92:85:C0:30:B8:B1:83:96:74:01
    Fingerprint (SHA1):
        A0:75:B3:41:A0:BB:9E:40:0B:D6:5E:F1:A5:AD:18:D8:8F:69:BE:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7541: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7542: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7543: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7544: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7545: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7546: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7547: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7548: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7549: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7550: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7551: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7552: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7553: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7554: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7555: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7556: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7557: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7558: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7559: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7560: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7561: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7562: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7563: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7564: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7565: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7566: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7567: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7568: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121549Z
nextupdate=20180510121549Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:15:49 2017
    Next Update: Thu May 10 12:15:49 2018
    CRL Extensions:
chains.sh: #7569: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121549Z
nextupdate=20180510121549Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:15:49 2017
    Next Update: Thu May 10 12:15:49 2018
    CRL Extensions:
chains.sh: #7570: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121549Z
nextupdate=20180510121549Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:15:49 2017
    Next Update: Thu May 10 12:15:49 2018
    CRL Extensions:
chains.sh: #7571: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121549Z
nextupdate=20180510121549Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:15:49 2017
    Next Update: Thu May 10 12:15:49 2018
    CRL Extensions:
chains.sh: #7572: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121550Z
addcert 14 20170510121550Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:15:50 2017
    Next Update: Thu May 10 12:15:49 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:15:50 2017
    CRL Extensions:
chains.sh: #7573: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121551Z
addcert 15 20170510121551Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:15:51 2017
    Next Update: Thu May 10 12:15:49 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:15:51 2017
    CRL Extensions:
chains.sh: #7574: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7575: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7576: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7577: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7578: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7579: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7580: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7581: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7582: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7583: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:44 2017
            Not After : Tue May 10 12:15:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:8c:2b:91:f7:3c:da:fb:0b:fd:dd:7c:1b:65:4d:ba:
                    9b:92:66:cd:fc:7e:a6:51:e8:7b:11:27:26:f0:a6:6d:
                    46:47:40:c9:3f:f9:96:ce:55:68:2e:a5:af:ab:62:54:
                    3a:89:ba:83:fe:cc:47:16:00:67:42:96:fa:ad:c7:6c:
                    0b:8f:63:d0:36:b6:91:41:8d:b4:04:c6:fb:fe:84:da:
                    6c:0e:fe:76:3e:90:5f:60:7f:ea:15:0d:77:77:22:b5:
                    24:2c:54:7b:ea:ea:79:f9:80:ec:96:eb:8a:9b:b4:24:
                    44:99:39:57:99:a7:46:bc:89:1f:83:cc:e3:9d:3c:ea:
                    a5:54:61:21:22:7d:38:f5:79:24:67:0a:64:43:e2:61:
                    e5:94:f4:0b:6d:cb:f4:86:84:c7:40:77:d0:5c:73:d7:
                    fb:7d:cf:a8:ec:f1:ba:98:cb:ca:6d:04:d5:28:31:9a:
                    de:4e:20:d0:de:be:9d:cf:fa:fa:30:1c:99:75:51:cd:
                    82:28:e1:73:e7:f6:d9:8f:41:b6:0b:8e:02:7f:06:4c:
                    60:98:b1:96:c9:51:2b:ee:88:d4:ef:76:0b:2d:2f:fd:
                    0b:1e:cc:5f:21:75:57:2b:21:57:c6:73:bf:3b:2e:72:
                    c1:df:46:97:e9:ff:d2:e1:5c:04:30:5b:2a:24:5e:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:cd:1f:7e:e4:1a:3c:6f:86:dc:b1:00:25:5e:1b:23:
        79:cc:ea:38:ce:a8:8a:b7:c3:d8:50:a3:f7:1c:46:71:
        b5:3d:ae:de:0e:0b:b1:da:be:b4:d7:05:bd:e0:36:78:
        21:5b:fd:9b:b8:73:98:fb:80:cf:56:c6:1f:cd:ae:7d:
        3b:fb:f0:7f:e1:ac:a0:eb:3e:47:1c:e4:c0:46:26:0e:
        23:ef:06:2d:2d:f3:85:df:8a:73:83:93:24:88:35:38:
        3b:1f:70:6f:f8:00:cf:6a:08:8f:44:c0:f1:9d:9c:e6:
        a3:ad:f9:d3:cc:78:98:34:83:4d:a9:df:0f:7f:35:64:
        0f:8f:fe:c7:f1:b0:82:25:07:e5:e8:ff:6c:3d:7b:0c:
        76:c5:d9:29:a9:f9:0a:d4:f2:2f:46:25:f5:81:a7:d8:
        c4:86:72:fb:7b:6c:a1:2a:e4:eb:81:1b:40:3f:ff:a8:
        42:d4:90:f6:45:d5:41:33:a7:6a:e7:05:cd:dc:57:ec:
        c0:fa:c2:7f:d9:b6:a5:c3:7d:c8:4c:3c:b9:80:cb:3a:
        6d:96:2b:cc:69:d1:5c:6a:b8:cc:63:76:6f:47:93:10:
        a5:44:86:ab:70:43:3b:00:ac:7e:a1:ee:1d:99:7e:20:
        a1:53:12:5d:f4:bb:55:e0:26:15:35:f2:43:21:e9:d3
    Fingerprint (SHA-256):
        C0:0A:4A:B5:B0:0C:7A:6C:0E:83:1C:7A:1B:98:D4:BF:8B:E8:FD:3E:73:2C:BD:7D:C1:93:5C:07:62:24:5F:D0
    Fingerprint (SHA1):
        C8:43:39:DC:05:C4:E4:7B:ED:6B:74:52:A4:D5:9A:BA:DA:E2:13:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7584: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7585: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:44 2017
            Not After : Tue May 10 12:15:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:8c:2b:91:f7:3c:da:fb:0b:fd:dd:7c:1b:65:4d:ba:
                    9b:92:66:cd:fc:7e:a6:51:e8:7b:11:27:26:f0:a6:6d:
                    46:47:40:c9:3f:f9:96:ce:55:68:2e:a5:af:ab:62:54:
                    3a:89:ba:83:fe:cc:47:16:00:67:42:96:fa:ad:c7:6c:
                    0b:8f:63:d0:36:b6:91:41:8d:b4:04:c6:fb:fe:84:da:
                    6c:0e:fe:76:3e:90:5f:60:7f:ea:15:0d:77:77:22:b5:
                    24:2c:54:7b:ea:ea:79:f9:80:ec:96:eb:8a:9b:b4:24:
                    44:99:39:57:99:a7:46:bc:89:1f:83:cc:e3:9d:3c:ea:
                    a5:54:61:21:22:7d:38:f5:79:24:67:0a:64:43:e2:61:
                    e5:94:f4:0b:6d:cb:f4:86:84:c7:40:77:d0:5c:73:d7:
                    fb:7d:cf:a8:ec:f1:ba:98:cb:ca:6d:04:d5:28:31:9a:
                    de:4e:20:d0:de:be:9d:cf:fa:fa:30:1c:99:75:51:cd:
                    82:28:e1:73:e7:f6:d9:8f:41:b6:0b:8e:02:7f:06:4c:
                    60:98:b1:96:c9:51:2b:ee:88:d4:ef:76:0b:2d:2f:fd:
                    0b:1e:cc:5f:21:75:57:2b:21:57:c6:73:bf:3b:2e:72:
                    c1:df:46:97:e9:ff:d2:e1:5c:04:30:5b:2a:24:5e:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:cd:1f:7e:e4:1a:3c:6f:86:dc:b1:00:25:5e:1b:23:
        79:cc:ea:38:ce:a8:8a:b7:c3:d8:50:a3:f7:1c:46:71:
        b5:3d:ae:de:0e:0b:b1:da:be:b4:d7:05:bd:e0:36:78:
        21:5b:fd:9b:b8:73:98:fb:80:cf:56:c6:1f:cd:ae:7d:
        3b:fb:f0:7f:e1:ac:a0:eb:3e:47:1c:e4:c0:46:26:0e:
        23:ef:06:2d:2d:f3:85:df:8a:73:83:93:24:88:35:38:
        3b:1f:70:6f:f8:00:cf:6a:08:8f:44:c0:f1:9d:9c:e6:
        a3:ad:f9:d3:cc:78:98:34:83:4d:a9:df:0f:7f:35:64:
        0f:8f:fe:c7:f1:b0:82:25:07:e5:e8:ff:6c:3d:7b:0c:
        76:c5:d9:29:a9:f9:0a:d4:f2:2f:46:25:f5:81:a7:d8:
        c4:86:72:fb:7b:6c:a1:2a:e4:eb:81:1b:40:3f:ff:a8:
        42:d4:90:f6:45:d5:41:33:a7:6a:e7:05:cd:dc:57:ec:
        c0:fa:c2:7f:d9:b6:a5:c3:7d:c8:4c:3c:b9:80:cb:3a:
        6d:96:2b:cc:69:d1:5c:6a:b8:cc:63:76:6f:47:93:10:
        a5:44:86:ab:70:43:3b:00:ac:7e:a1:ee:1d:99:7e:20:
        a1:53:12:5d:f4:bb:55:e0:26:15:35:f2:43:21:e9:d3
    Fingerprint (SHA-256):
        C0:0A:4A:B5:B0:0C:7A:6C:0E:83:1C:7A:1B:98:D4:BF:8B:E8:FD:3E:73:2C:BD:7D:C1:93:5C:07:62:24:5F:D0
    Fingerprint (SHA1):
        C8:43:39:DC:05:C4:E4:7B:ED:6B:74:52:A4:D5:9A:BA:DA:E2:13:28
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7586: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7587: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7588: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121406 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7589: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7590: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7591: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7592: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510121407   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7593: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7594: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7595: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121178.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7596: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121152.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7597: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7598: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7599: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121178.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7600: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510121408   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7601: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7602: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7603: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121178.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7604: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121153.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7605: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7606: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7607: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7608: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510121409   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7609: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7610: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7611: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121178.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7612: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121154.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7613: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7614: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7615: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510121178.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7616: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510121155.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7617: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7618: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510121558Z
nextupdate=20180510121558Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:15:58 2017
    Next Update: Thu May 10 12:15:58 2018
    CRL Extensions:
chains.sh: #7619: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121558Z
nextupdate=20180510121558Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:15:58 2017
    Next Update: Thu May 10 12:15:58 2018
    CRL Extensions:
chains.sh: #7620: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510121558Z
nextupdate=20180510121558Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:15:58 2017
    Next Update: Thu May 10 12:15:58 2018
    CRL Extensions:
chains.sh: #7621: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510121558Z
nextupdate=20180510121558Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:15:58 2017
    Next Update: Thu May 10 12:15:58 2018
    CRL Extensions:
chains.sh: #7622: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121559Z
addcert 20 20170510121559Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:15:59 2017
    Next Update: Thu May 10 12:15:58 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:15:59 2017
    CRL Extensions:
chains.sh: #7623: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510121600Z
addcert 40 20170510121600Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:16:00 2017
    Next Update: Thu May 10 12:15:58 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:15:59 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:16:00 2017
    CRL Extensions:
chains.sh: #7624: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7625: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7626: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7627: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121406 (0x1e67d5be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:52 2017
            Not After : Tue May 10 12:15:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:d8:e6:22:ce:51:b2:b7:9f:0c:3e:63:a8:a8:79:64:
                    70:cc:c7:00:46:bc:ae:8e:6d:09:3a:db:6e:c2:d7:ce:
                    32:07:07:2f:75:5c:f6:e4:aa:10:b4:50:d5:a3:a5:9a:
                    f3:01:31:66:49:6d:74:ee:40:31:3e:69:d7:d2:51:04:
                    d3:49:5c:52:04:22:e2:fa:16:21:0b:cb:67:6f:1e:e0:
                    2a:8f:cd:57:22:46:73:13:c2:5e:37:47:15:1e:20:cc:
                    7e:17:d2:db:c7:03:f2:85:f2:5f:d5:7b:e1:6f:68:29:
                    d7:f6:1d:71:7b:8c:6b:b7:8d:c3:b3:ad:e4:a2:a5:ab:
                    ea:fb:15:bc:69:83:03:c1:f4:c0:b1:07:f0:86:c8:5b:
                    55:a4:c9:d6:42:50:32:18:64:77:04:95:96:28:11:63:
                    d1:45:8f:94:ee:06:cd:a6:f2:33:1f:21:4c:a5:fe:3f:
                    b8:f2:71:85:06:49:1b:b8:7c:b8:60:7d:53:09:91:e7:
                    dc:dc:0a:fd:70:06:a7:dc:20:ce:9f:4d:f9:94:cc:65:
                    47:69:d3:dc:cb:3b:3c:9b:25:ef:88:ec:50:41:e0:cb:
                    d1:9e:ab:fb:8c:b0:43:0a:c0:b6:e5:68:f3:bf:fc:b6:
                    e3:be:c7:aa:a3:12:e7:cf:76:aa:a7:6e:66:5c:25:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:9d:38:d4:1b:cc:aa:03:12:8c:b3:50:9a:c2:d6:a4:
        2b:98:7c:1f:1a:5c:e6:04:22:87:56:78:ee:fa:08:e3:
        da:0a:08:fd:aa:c6:ca:17:ea:53:b6:8e:32:11:68:53:
        f8:03:3d:a8:eb:9a:c4:8d:c2:23:fa:14:15:a0:da:fa:
        91:f6:ac:71:01:5b:83:61:fd:49:cd:1a:26:27:77:d4:
        cc:a6:29:3a:05:b5:75:91:6b:79:be:92:48:94:c5:f8:
        0e:da:5c:70:7e:2a:0f:8b:c9:78:6e:87:22:18:0a:8e:
        72:1a:fa:bc:3a:34:5e:82:42:43:86:45:41:6a:45:07:
        a7:4a:4d:5d:5d:2b:6f:fa:f9:f5:0c:f9:6a:8a:3f:d3:
        ba:e3:05:5b:57:2c:fa:4c:be:8c:ee:cd:b9:76:24:1e:
        21:e2:7c:45:68:5b:19:28:a8:d4:6d:98:8d:fc:d9:fb:
        dc:2c:24:1d:90:61:6b:3a:d5:fc:a9:75:e0:25:ff:33:
        3c:82:b6:86:c9:20:61:09:20:af:59:70:9e:7b:59:10:
        50:f4:6c:73:28:91:fc:fd:96:a4:55:1b:54:c1:0c:33:
        8f:ac:f7:a1:2d:65:1e:4f:75:35:b6:b5:6e:42:68:4a:
        2e:e5:d5:48:86:dd:3d:0a:70:5b:49:fb:cc:e9:f6:11
    Fingerprint (SHA-256):
        0F:C2:F0:BC:EA:8B:8F:22:08:8E:BB:1D:E9:AD:D5:40:AB:75:D9:3B:D0:94:60:36:91:00:C3:7A:7A:B9:CE:9C
    Fingerprint (SHA1):
        C8:A5:19:9D:59:C8:D3:D6:E5:DB:93:2D:75:56:E3:47:72:D9:21:61
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7628: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7629: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121406 (0x1e67d5be)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:15:52 2017
            Not After : Tue May 10 12:15:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:d8:e6:22:ce:51:b2:b7:9f:0c:3e:63:a8:a8:79:64:
                    70:cc:c7:00:46:bc:ae:8e:6d:09:3a:db:6e:c2:d7:ce:
                    32:07:07:2f:75:5c:f6:e4:aa:10:b4:50:d5:a3:a5:9a:
                    f3:01:31:66:49:6d:74:ee:40:31:3e:69:d7:d2:51:04:
                    d3:49:5c:52:04:22:e2:fa:16:21:0b:cb:67:6f:1e:e0:
                    2a:8f:cd:57:22:46:73:13:c2:5e:37:47:15:1e:20:cc:
                    7e:17:d2:db:c7:03:f2:85:f2:5f:d5:7b:e1:6f:68:29:
                    d7:f6:1d:71:7b:8c:6b:b7:8d:c3:b3:ad:e4:a2:a5:ab:
                    ea:fb:15:bc:69:83:03:c1:f4:c0:b1:07:f0:86:c8:5b:
                    55:a4:c9:d6:42:50:32:18:64:77:04:95:96:28:11:63:
                    d1:45:8f:94:ee:06:cd:a6:f2:33:1f:21:4c:a5:fe:3f:
                    b8:f2:71:85:06:49:1b:b8:7c:b8:60:7d:53:09:91:e7:
                    dc:dc:0a:fd:70:06:a7:dc:20:ce:9f:4d:f9:94:cc:65:
                    47:69:d3:dc:cb:3b:3c:9b:25:ef:88:ec:50:41:e0:cb:
                    d1:9e:ab:fb:8c:b0:43:0a:c0:b6:e5:68:f3:bf:fc:b6:
                    e3:be:c7:aa:a3:12:e7:cf:76:aa:a7:6e:66:5c:25:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:9d:38:d4:1b:cc:aa:03:12:8c:b3:50:9a:c2:d6:a4:
        2b:98:7c:1f:1a:5c:e6:04:22:87:56:78:ee:fa:08:e3:
        da:0a:08:fd:aa:c6:ca:17:ea:53:b6:8e:32:11:68:53:
        f8:03:3d:a8:eb:9a:c4:8d:c2:23:fa:14:15:a0:da:fa:
        91:f6:ac:71:01:5b:83:61:fd:49:cd:1a:26:27:77:d4:
        cc:a6:29:3a:05:b5:75:91:6b:79:be:92:48:94:c5:f8:
        0e:da:5c:70:7e:2a:0f:8b:c9:78:6e:87:22:18:0a:8e:
        72:1a:fa:bc:3a:34:5e:82:42:43:86:45:41:6a:45:07:
        a7:4a:4d:5d:5d:2b:6f:fa:f9:f5:0c:f9:6a:8a:3f:d3:
        ba:e3:05:5b:57:2c:fa:4c:be:8c:ee:cd:b9:76:24:1e:
        21:e2:7c:45:68:5b:19:28:a8:d4:6d:98:8d:fc:d9:fb:
        dc:2c:24:1d:90:61:6b:3a:d5:fc:a9:75:e0:25:ff:33:
        3c:82:b6:86:c9:20:61:09:20:af:59:70:9e:7b:59:10:
        50:f4:6c:73:28:91:fc:fd:96:a4:55:1b:54:c1:0c:33:
        8f:ac:f7:a1:2d:65:1e:4f:75:35:b6:b5:6e:42:68:4a:
        2e:e5:d5:48:86:dd:3d:0a:70:5b:49:fb:cc:e9:f6:11
    Fingerprint (SHA-256):
        0F:C2:F0:BC:EA:8B:8F:22:08:8E:BB:1D:E9:AD:D5:40:AB:75:D9:3B:D0:94:60:36:91:00:C3:7A:7A:B9:CE:9C
    Fingerprint (SHA1):
        C8:A5:19:9D:59:C8:D3:D6:E5:DB:93:2D:75:56:E3:47:72:D9:21:61
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7630: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7631: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7632: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121410 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7633: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7634: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7635: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7636: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510121411   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7637: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7638: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7639: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7640: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510121412   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7641: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7642: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7643: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7644: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510121413   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7645: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7646: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7647: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -m 510121414 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7648: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7649: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7650: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7651: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510121415   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7652: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7653: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7654: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7655: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510121416   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7656: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7657: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7658: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7659: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7660: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121410 (0x1e67d5c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:16:01 2017
            Not After : Tue May 10 12:16:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:b0:2a:47:16:c4:b1:ea:c5:82:7c:15:b1:32:34:
                    35:88:a6:93:ef:e5:c6:63:f2:de:82:c2:85:e6:55:5e:
                    b4:02:1f:5f:ca:6f:f4:fd:ba:88:a8:50:f5:a5:2f:9a:
                    10:75:26:65:1a:b2:b9:26:8d:f4:c4:64:bd:66:0d:c7:
                    5f:01:f0:e3:92:4a:85:c1:cc:b8:a0:c7:8c:f7:f3:45:
                    cf:06:d2:cb:26:3b:4b:e5:b7:29:ca:e3:fc:d7:03:b7:
                    1c:97:f3:b3:37:c3:56:de:b9:c0:09:08:a4:36:29:ef:
                    d8:79:4c:d9:c0:20:d9:9e:96:6c:e0:c4:d1:7c:76:ce:
                    f7:48:a0:2b:ac:7b:60:8a:55:99:3b:0e:69:36:95:27:
                    9a:0e:8d:2d:08:56:47:e5:32:47:ba:21:ee:a6:d6:43:
                    fb:b7:d0:9a:7f:1d:b9:4c:3a:48:c0:93:61:bb:13:aa:
                    4c:41:ac:90:6a:26:a1:ba:59:17:10:f5:b8:29:92:b2:
                    90:78:a2:9f:58:fa:8c:e9:1c:3b:19:57:64:ec:fe:ad:
                    b2:da:65:dd:b8:10:c4:8c:92:37:57:0c:26:43:c3:95:
                    fa:37:da:31:4a:27:b2:c9:26:3c:1f:68:47:06:84:8d:
                    6a:9b:1e:7e:91:54:fc:c0:d8:49:19:cb:e7:12:d3:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:67:24:6f:8a:e3:96:c7:a9:35:7b:3b:66:cd:22:25:
        47:c9:cf:ac:24:41:65:96:86:e9:c2:96:0b:a9:62:fd:
        9d:b9:a1:a5:05:06:d6:8c:62:8d:0b:40:50:2a:ba:3e:
        b6:d1:94:aa:12:4d:a8:8f:5a:31:2a:3d:46:3c:17:f7:
        3f:fb:6b:77:ce:7e:53:17:f5:ff:2b:ed:89:05:e8:77:
        3e:bb:f3:1f:04:f9:50:ea:6c:08:3d:7f:3b:aa:8f:c9:
        ff:88:48:92:e9:3d:88:30:45:45:96:86:54:67:63:d0:
        6b:c2:40:9c:58:a8:34:54:33:76:40:d8:9d:2b:d1:63:
        c9:c7:d8:f5:9e:19:bb:3f:55:2e:db:0a:e3:65:27:29:
        c5:d3:5a:d3:9c:58:1d:20:16:db:3e:c6:b6:58:5b:9d:
        5e:4d:25:fe:bf:42:e3:fd:8b:75:5c:af:65:3a:81:0a:
        8a:e8:c3:40:5c:75:24:ae:b8:4f:a8:9e:8a:37:43:6d:
        60:d4:eb:de:e4:d9:3d:d9:67:4e:0b:b0:e4:c8:ab:2c:
        0a:7f:3b:f1:2c:12:e7:af:54:9b:f4:7f:04:2b:93:79:
        7f:ee:06:8f:61:a2:2e:2c:d9:48:d3:ba:b2:8a:86:0e:
        2b:3e:d3:17:43:57:5a:a4:88:f0:b9:84:06:5a:74:95
    Fingerprint (SHA-256):
        7E:D0:E4:BC:51:89:D7:FA:B2:EE:8A:39:DA:95:73:8D:4C:F7:1A:49:E3:E3:05:05:BD:51:CA:5F:48:50:7B:06
    Fingerprint (SHA1):
        D8:B3:CE:26:1A:97:92:47:07:53:67:FD:76:53:99:77:2E:D5:85:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7661: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121412 (0x1e67d5c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:16:02 2017
            Not After : Tue May 10 12:16:02 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:76:ae:fe:d0:d7:5c:72:ec:dc:78:3b:74:60:92:0b:
                    4d:11:2b:ef:c7:23:54:13:d6:f7:f0:8a:63:56:70:76:
                    b6:11:92:32:32:aa:93:06:9b:db:a3:70:2a:5b:89:f9:
                    47:03:a4:be:84:70:d7:62:14:c4:b0:fb:93:33:c9:5f:
                    c0:3c:68:87:08:45:01:df:86:29:54:75:40:29:da:75:
                    02:b7:b9:28:f8:75:39:38:20:2e:fe:0d:57:e2:9a:a4:
                    0a:2c:42:c8:f7:63:1e:4f:bd:63:53:ee:94:6c:ec:49:
                    27:80:50:09:ef:47:2c:c2:3d:eb:8a:fc:ab:7d:b3:98:
                    b1:b1:09:b2:6c:53:78:ab:ea:17:bd:8e:ac:5c:91:c0:
                    a0:c3:26:3c:3b:8b:fd:10:9b:91:a9:07:45:9a:92:14:
                    0a:4a:e1:58:47:6f:b0:92:13:99:ba:79:8e:1d:b0:2d:
                    e6:db:56:3f:f5:ec:8d:e6:e4:1f:76:42:ec:5b:61:14:
                    f0:c1:9d:24:83:77:19:11:d3:61:9c:82:d3:64:b7:95:
                    64:7f:dd:b0:a9:42:d7:6c:e2:57:a1:4d:b7:18:1f:cd:
                    f7:29:78:e6:cc:ef:85:7b:64:f5:22:fc:61:13:1d:20:
                    5b:85:78:81:48:12:91:71:58:38:87:fa:a1:7e:2d:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:e3:c1:a7:78:d7:3d:01:3f:35:63:3e:c7:49:4c:dd:
        7c:d4:13:0d:57:b8:9e:3a:5d:81:55:69:a5:53:80:ba:
        d0:1d:21:30:ae:6b:bb:15:7d:69:b4:82:0e:44:a6:bc:
        7e:ea:a5:2a:e3:b3:3b:0d:90:02:4b:1e:a0:b9:69:06:
        49:8a:d8:cd:96:7c:4b:88:5f:6a:22:a8:a0:af:7d:26:
        70:32:d0:97:d3:1a:6c:9e:a6:8f:75:a2:c1:ec:25:fe:
        07:c0:00:aa:7b:07:38:fe:bd:21:03:83:4b:b1:0d:30:
        99:05:6d:7b:66:19:45:f4:ee:ad:cd:4e:db:c7:c2:df:
        1d:f8:07:c5:1f:f6:72:2c:73:9e:53:b9:0c:b3:7f:92:
        1e:40:fd:fe:9d:ad:79:c2:94:d3:b0:92:84:0f:f8:3c:
        8c:6b:1a:d3:9e:90:1b:22:ce:7a:53:cc:67:09:d4:c2:
        82:7d:aa:44:8a:99:00:6b:e8:44:d3:8d:93:73:52:7c:
        93:88:df:ae:67:8e:89:a1:c1:05:09:3c:4f:41:63:52:
        93:c3:48:ed:e6:45:fe:b6:06:17:0d:50:64:06:92:24:
        72:89:6d:bd:c4:f1:c5:b3:f1:8b:80:8f:a8:61:fd:da:
        65:b8:88:f1:25:83:2d:db:39:0c:42:fd:37:c5:25:09
    Fingerprint (SHA-256):
        2E:93:9D:4E:72:4A:22:76:46:FD:19:0A:8E:71:F2:88:C9:E3:F8:82:B9:23:7A:7C:B5:D3:92:B4:15:CE:32:9F
    Fingerprint (SHA1):
        E1:FF:E9:A7:19:3A:FC:46:55:17:32:F2:D2:EB:74:7D:CF:31:29:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7662: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121410 (0x1e67d5c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:16:01 2017
            Not After : Tue May 10 12:16:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:b0:2a:47:16:c4:b1:ea:c5:82:7c:15:b1:32:34:
                    35:88:a6:93:ef:e5:c6:63:f2:de:82:c2:85:e6:55:5e:
                    b4:02:1f:5f:ca:6f:f4:fd:ba:88:a8:50:f5:a5:2f:9a:
                    10:75:26:65:1a:b2:b9:26:8d:f4:c4:64:bd:66:0d:c7:
                    5f:01:f0:e3:92:4a:85:c1:cc:b8:a0:c7:8c:f7:f3:45:
                    cf:06:d2:cb:26:3b:4b:e5:b7:29:ca:e3:fc:d7:03:b7:
                    1c:97:f3:b3:37:c3:56:de:b9:c0:09:08:a4:36:29:ef:
                    d8:79:4c:d9:c0:20:d9:9e:96:6c:e0:c4:d1:7c:76:ce:
                    f7:48:a0:2b:ac:7b:60:8a:55:99:3b:0e:69:36:95:27:
                    9a:0e:8d:2d:08:56:47:e5:32:47:ba:21:ee:a6:d6:43:
                    fb:b7:d0:9a:7f:1d:b9:4c:3a:48:c0:93:61:bb:13:aa:
                    4c:41:ac:90:6a:26:a1:ba:59:17:10:f5:b8:29:92:b2:
                    90:78:a2:9f:58:fa:8c:e9:1c:3b:19:57:64:ec:fe:ad:
                    b2:da:65:dd:b8:10:c4:8c:92:37:57:0c:26:43:c3:95:
                    fa:37:da:31:4a:27:b2:c9:26:3c:1f:68:47:06:84:8d:
                    6a:9b:1e:7e:91:54:fc:c0:d8:49:19:cb:e7:12:d3:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:67:24:6f:8a:e3:96:c7:a9:35:7b:3b:66:cd:22:25:
        47:c9:cf:ac:24:41:65:96:86:e9:c2:96:0b:a9:62:fd:
        9d:b9:a1:a5:05:06:d6:8c:62:8d:0b:40:50:2a:ba:3e:
        b6:d1:94:aa:12:4d:a8:8f:5a:31:2a:3d:46:3c:17:f7:
        3f:fb:6b:77:ce:7e:53:17:f5:ff:2b:ed:89:05:e8:77:
        3e:bb:f3:1f:04:f9:50:ea:6c:08:3d:7f:3b:aa:8f:c9:
        ff:88:48:92:e9:3d:88:30:45:45:96:86:54:67:63:d0:
        6b:c2:40:9c:58:a8:34:54:33:76:40:d8:9d:2b:d1:63:
        c9:c7:d8:f5:9e:19:bb:3f:55:2e:db:0a:e3:65:27:29:
        c5:d3:5a:d3:9c:58:1d:20:16:db:3e:c6:b6:58:5b:9d:
        5e:4d:25:fe:bf:42:e3:fd:8b:75:5c:af:65:3a:81:0a:
        8a:e8:c3:40:5c:75:24:ae:b8:4f:a8:9e:8a:37:43:6d:
        60:d4:eb:de:e4:d9:3d:d9:67:4e:0b:b0:e4:c8:ab:2c:
        0a:7f:3b:f1:2c:12:e7:af:54:9b:f4:7f:04:2b:93:79:
        7f:ee:06:8f:61:a2:2e:2c:d9:48:d3:ba:b2:8a:86:0e:
        2b:3e:d3:17:43:57:5a:a4:88:f0:b9:84:06:5a:74:95
    Fingerprint (SHA-256):
        7E:D0:E4:BC:51:89:D7:FA:B2:EE:8A:39:DA:95:73:8D:4C:F7:1A:49:E3:E3:05:05:BD:51:CA:5F:48:50:7B:06
    Fingerprint (SHA1):
        D8:B3:CE:26:1A:97:92:47:07:53:67:FD:76:53:99:77:2E:D5:85:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7663: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7664: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121410 (0x1e67d5c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:16:01 2017
            Not After : Tue May 10 12:16:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:b0:2a:47:16:c4:b1:ea:c5:82:7c:15:b1:32:34:
                    35:88:a6:93:ef:e5:c6:63:f2:de:82:c2:85:e6:55:5e:
                    b4:02:1f:5f:ca:6f:f4:fd:ba:88:a8:50:f5:a5:2f:9a:
                    10:75:26:65:1a:b2:b9:26:8d:f4:c4:64:bd:66:0d:c7:
                    5f:01:f0:e3:92:4a:85:c1:cc:b8:a0:c7:8c:f7:f3:45:
                    cf:06:d2:cb:26:3b:4b:e5:b7:29:ca:e3:fc:d7:03:b7:
                    1c:97:f3:b3:37:c3:56:de:b9:c0:09:08:a4:36:29:ef:
                    d8:79:4c:d9:c0:20:d9:9e:96:6c:e0:c4:d1:7c:76:ce:
                    f7:48:a0:2b:ac:7b:60:8a:55:99:3b:0e:69:36:95:27:
                    9a:0e:8d:2d:08:56:47:e5:32:47:ba:21:ee:a6:d6:43:
                    fb:b7:d0:9a:7f:1d:b9:4c:3a:48:c0:93:61:bb:13:aa:
                    4c:41:ac:90:6a:26:a1:ba:59:17:10:f5:b8:29:92:b2:
                    90:78:a2:9f:58:fa:8c:e9:1c:3b:19:57:64:ec:fe:ad:
                    b2:da:65:dd:b8:10:c4:8c:92:37:57:0c:26:43:c3:95:
                    fa:37:da:31:4a:27:b2:c9:26:3c:1f:68:47:06:84:8d:
                    6a:9b:1e:7e:91:54:fc:c0:d8:49:19:cb:e7:12:d3:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:67:24:6f:8a:e3:96:c7:a9:35:7b:3b:66:cd:22:25:
        47:c9:cf:ac:24:41:65:96:86:e9:c2:96:0b:a9:62:fd:
        9d:b9:a1:a5:05:06:d6:8c:62:8d:0b:40:50:2a:ba:3e:
        b6:d1:94:aa:12:4d:a8:8f:5a:31:2a:3d:46:3c:17:f7:
        3f:fb:6b:77:ce:7e:53:17:f5:ff:2b:ed:89:05:e8:77:
        3e:bb:f3:1f:04:f9:50:ea:6c:08:3d:7f:3b:aa:8f:c9:
        ff:88:48:92:e9:3d:88:30:45:45:96:86:54:67:63:d0:
        6b:c2:40:9c:58:a8:34:54:33:76:40:d8:9d:2b:d1:63:
        c9:c7:d8:f5:9e:19:bb:3f:55:2e:db:0a:e3:65:27:29:
        c5:d3:5a:d3:9c:58:1d:20:16:db:3e:c6:b6:58:5b:9d:
        5e:4d:25:fe:bf:42:e3:fd:8b:75:5c:af:65:3a:81:0a:
        8a:e8:c3:40:5c:75:24:ae:b8:4f:a8:9e:8a:37:43:6d:
        60:d4:eb:de:e4:d9:3d:d9:67:4e:0b:b0:e4:c8:ab:2c:
        0a:7f:3b:f1:2c:12:e7:af:54:9b:f4:7f:04:2b:93:79:
        7f:ee:06:8f:61:a2:2e:2c:d9:48:d3:ba:b2:8a:86:0e:
        2b:3e:d3:17:43:57:5a:a4:88:f0:b9:84:06:5a:74:95
    Fingerprint (SHA-256):
        7E:D0:E4:BC:51:89:D7:FA:B2:EE:8A:39:DA:95:73:8D:4C:F7:1A:49:E3:E3:05:05:BD:51:CA:5F:48:50:7B:06
    Fingerprint (SHA1):
        D8:B3:CE:26:1A:97:92:47:07:53:67:FD:76:53:99:77:2E:D5:85:64
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7665: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121412 (0x1e67d5c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:16:02 2017
            Not After : Tue May 10 12:16:02 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:76:ae:fe:d0:d7:5c:72:ec:dc:78:3b:74:60:92:0b:
                    4d:11:2b:ef:c7:23:54:13:d6:f7:f0:8a:63:56:70:76:
                    b6:11:92:32:32:aa:93:06:9b:db:a3:70:2a:5b:89:f9:
                    47:03:a4:be:84:70:d7:62:14:c4:b0:fb:93:33:c9:5f:
                    c0:3c:68:87:08:45:01:df:86:29:54:75:40:29:da:75:
                    02:b7:b9:28:f8:75:39:38:20:2e:fe:0d:57:e2:9a:a4:
                    0a:2c:42:c8:f7:63:1e:4f:bd:63:53:ee:94:6c:ec:49:
                    27:80:50:09:ef:47:2c:c2:3d:eb:8a:fc:ab:7d:b3:98:
                    b1:b1:09:b2:6c:53:78:ab:ea:17:bd:8e:ac:5c:91:c0:
                    a0:c3:26:3c:3b:8b:fd:10:9b:91:a9:07:45:9a:92:14:
                    0a:4a:e1:58:47:6f:b0:92:13:99:ba:79:8e:1d:b0:2d:
                    e6:db:56:3f:f5:ec:8d:e6:e4:1f:76:42:ec:5b:61:14:
                    f0:c1:9d:24:83:77:19:11:d3:61:9c:82:d3:64:b7:95:
                    64:7f:dd:b0:a9:42:d7:6c:e2:57:a1:4d:b7:18:1f:cd:
                    f7:29:78:e6:cc:ef:85:7b:64:f5:22:fc:61:13:1d:20:
                    5b:85:78:81:48:12:91:71:58:38:87:fa:a1:7e:2d:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:e3:c1:a7:78:d7:3d:01:3f:35:63:3e:c7:49:4c:dd:
        7c:d4:13:0d:57:b8:9e:3a:5d:81:55:69:a5:53:80:ba:
        d0:1d:21:30:ae:6b:bb:15:7d:69:b4:82:0e:44:a6:bc:
        7e:ea:a5:2a:e3:b3:3b:0d:90:02:4b:1e:a0:b9:69:06:
        49:8a:d8:cd:96:7c:4b:88:5f:6a:22:a8:a0:af:7d:26:
        70:32:d0:97:d3:1a:6c:9e:a6:8f:75:a2:c1:ec:25:fe:
        07:c0:00:aa:7b:07:38:fe:bd:21:03:83:4b:b1:0d:30:
        99:05:6d:7b:66:19:45:f4:ee:ad:cd:4e:db:c7:c2:df:
        1d:f8:07:c5:1f:f6:72:2c:73:9e:53:b9:0c:b3:7f:92:
        1e:40:fd:fe:9d:ad:79:c2:94:d3:b0:92:84:0f:f8:3c:
        8c:6b:1a:d3:9e:90:1b:22:ce:7a:53:cc:67:09:d4:c2:
        82:7d:aa:44:8a:99:00:6b:e8:44:d3:8d:93:73:52:7c:
        93:88:df:ae:67:8e:89:a1:c1:05:09:3c:4f:41:63:52:
        93:c3:48:ed:e6:45:fe:b6:06:17:0d:50:64:06:92:24:
        72:89:6d:bd:c4:f1:c5:b3:f1:8b:80:8f:a8:61:fd:da:
        65:b8:88:f1:25:83:2d:db:39:0c:42:fd:37:c5:25:09
    Fingerprint (SHA-256):
        2E:93:9D:4E:72:4A:22:76:46:FD:19:0A:8E:71:F2:88:C9:E3:F8:82:B9:23:7A:7C:B5:D3:92:B4:15:CE:32:9F
    Fingerprint (SHA1):
        E1:FF:E9:A7:19:3A:FC:46:55:17:32:F2:D2:EB:74:7D:CF:31:29:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7666: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7667: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7668: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7669: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121410 (0x1e67d5c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:16:01 2017
            Not After : Tue May 10 12:16:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:b0:2a:47:16:c4:b1:ea:c5:82:7c:15:b1:32:34:
                    35:88:a6:93:ef:e5:c6:63:f2:de:82:c2:85:e6:55:5e:
                    b4:02:1f:5f:ca:6f:f4:fd:ba:88:a8:50:f5:a5:2f:9a:
                    10:75:26:65:1a:b2:b9:26:8d:f4:c4:64:bd:66:0d:c7:
                    5f:01:f0:e3:92:4a:85:c1:cc:b8:a0:c7:8c:f7:f3:45:
                    cf:06:d2:cb:26:3b:4b:e5:b7:29:ca:e3:fc:d7:03:b7:
                    1c:97:f3:b3:37:c3:56:de:b9:c0:09:08:a4:36:29:ef:
                    d8:79:4c:d9:c0:20:d9:9e:96:6c:e0:c4:d1:7c:76:ce:
                    f7:48:a0:2b:ac:7b:60:8a:55:99:3b:0e:69:36:95:27:
                    9a:0e:8d:2d:08:56:47:e5:32:47:ba:21:ee:a6:d6:43:
                    fb:b7:d0:9a:7f:1d:b9:4c:3a:48:c0:93:61:bb:13:aa:
                    4c:41:ac:90:6a:26:a1:ba:59:17:10:f5:b8:29:92:b2:
                    90:78:a2:9f:58:fa:8c:e9:1c:3b:19:57:64:ec:fe:ad:
                    b2:da:65:dd:b8:10:c4:8c:92:37:57:0c:26:43:c3:95:
                    fa:37:da:31:4a:27:b2:c9:26:3c:1f:68:47:06:84:8d:
                    6a:9b:1e:7e:91:54:fc:c0:d8:49:19:cb:e7:12:d3:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:67:24:6f:8a:e3:96:c7:a9:35:7b:3b:66:cd:22:25:
        47:c9:cf:ac:24:41:65:96:86:e9:c2:96:0b:a9:62:fd:
        9d:b9:a1:a5:05:06:d6:8c:62:8d:0b:40:50:2a:ba:3e:
        b6:d1:94:aa:12:4d:a8:8f:5a:31:2a:3d:46:3c:17:f7:
        3f:fb:6b:77:ce:7e:53:17:f5:ff:2b:ed:89:05:e8:77:
        3e:bb:f3:1f:04:f9:50:ea:6c:08:3d:7f:3b:aa:8f:c9:
        ff:88:48:92:e9:3d:88:30:45:45:96:86:54:67:63:d0:
        6b:c2:40:9c:58:a8:34:54:33:76:40:d8:9d:2b:d1:63:
        c9:c7:d8:f5:9e:19:bb:3f:55:2e:db:0a:e3:65:27:29:
        c5:d3:5a:d3:9c:58:1d:20:16:db:3e:c6:b6:58:5b:9d:
        5e:4d:25:fe:bf:42:e3:fd:8b:75:5c:af:65:3a:81:0a:
        8a:e8:c3:40:5c:75:24:ae:b8:4f:a8:9e:8a:37:43:6d:
        60:d4:eb:de:e4:d9:3d:d9:67:4e:0b:b0:e4:c8:ab:2c:
        0a:7f:3b:f1:2c:12:e7:af:54:9b:f4:7f:04:2b:93:79:
        7f:ee:06:8f:61:a2:2e:2c:d9:48:d3:ba:b2:8a:86:0e:
        2b:3e:d3:17:43:57:5a:a4:88:f0:b9:84:06:5a:74:95
    Fingerprint (SHA-256):
        7E:D0:E4:BC:51:89:D7:FA:B2:EE:8A:39:DA:95:73:8D:4C:F7:1A:49:E3:E3:05:05:BD:51:CA:5F:48:50:7B:06
    Fingerprint (SHA1):
        D8:B3:CE:26:1A:97:92:47:07:53:67:FD:76:53:99:77:2E:D5:85:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7670: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121414 (0x1e67d5c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:16:03 2017
            Not After : Tue May 10 12:16:03 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:e4:70:e0:5d:95:ff:83:26:f5:64:9c:60:bd:20:9e:
                    ab:c7:b2:73:16:b3:d9:65:06:91:34:b4:49:f5:56:54:
                    92:10:03:55:48:b6:85:46:e3:09:4b:a7:0b:5b:8d:9c:
                    0e:d2:9d:c5:15:59:31:7d:db:d0:61:1c:de:dd:3e:f2:
                    95:39:8e:42:2f:2e:85:ce:ac:76:07:9c:f1:e3:e0:43:
                    45:aa:a2:20:f0:d2:57:4e:3e:16:87:1c:50:3d:0e:cd:
                    0a:bc:fb:d0:4d:c3:7c:7c:51:26:32:50:ca:bd:12:6e:
                    a7:62:8c:89:95:a2:51:a7:48:74:32:95:49:ea:86:8d:
                    53:b4:85:65:43:b9:12:49:a0:e4:2c:87:f7:14:fc:74:
                    ad:03:32:35:62:a8:55:50:cb:35:cf:b3:71:31:5f:26:
                    76:e4:cd:63:0c:00:e7:28:02:a4:c3:a2:10:a8:38:18:
                    67:7a:86:24:a0:49:66:3b:47:b6:f0:d3:63:bd:7d:1f:
                    51:fb:5d:53:80:6b:c3:01:5c:9c:73:d3:c0:78:1e:6b:
                    06:ec:51:a9:ae:9a:20:f1:43:31:6d:d7:b9:ea:35:bf:
                    5f:ae:da:29:87:a1:51:d7:50:92:fc:0a:ee:4f:1c:9c:
                    16:54:a6:c4:19:f4:74:f2:81:1b:29:84:09:f5:da:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:79:38:10:4e:07:9c:3a:5a:33:ea:74:17:74:f2:34:
        6b:49:75:f9:41:f6:2e:69:de:bb:3e:24:c4:8b:85:95:
        c8:9e:81:8e:60:1d:8c:c2:0e:27:c1:09:41:db:8b:97:
        37:d5:8c:45:20:63:f9:82:e4:1b:67:54:96:b1:57:df:
        1a:89:af:da:4d:0a:c4:70:ad:98:bf:89:1e:bc:02:68:
        81:67:19:ae:aa:f9:d3:5f:6f:d3:a9:ea:85:06:d4:e6:
        4b:23:72:b1:3e:60:33:ce:9a:93:27:4d:57:42:d7:cf:
        fd:13:3c:fe:85:08:31:05:e7:73:d7:a1:cf:16:f7:00:
        3d:a9:40:7a:1e:18:f3:7d:75:95:1c:25:b5:33:be:8e:
        56:0b:a8:0d:f8:a0:6f:01:de:27:37:b6:f6:0e:91:ca:
        18:9f:16:16:32:f3:c6:ce:7f:ed:67:30:d7:f3:f9:45:
        fd:78:c8:1a:68:05:be:4b:3e:c9:8a:da:50:fd:4a:3a:
        41:64:9e:8a:be:85:ea:4d:be:a1:f3:80:91:ac:c7:75:
        ab:46:1f:5d:e9:50:92:b8:f9:54:a3:89:a0:4a:59:73:
        21:09:d9:b6:1c:85:85:e7:4c:02:05:77:d4:8d:0a:8a:
        09:2b:26:6f:5a:28:3d:88:cc:d3:56:12:65:12:6d:0e
    Fingerprint (SHA-256):
        EC:63:6E:29:62:49:65:4D:0B:13:CD:E9:5D:7C:0B:BA:C7:E3:6B:74:2F:B7:69:2B:37:2D:34:D6:64:11:72:1A
    Fingerprint (SHA1):
        D8:DE:CF:F2:01:81:ED:BA:69:5A:22:6D:61:0E:EF:EC:84:D7:BF:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7671: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121410 (0x1e67d5c2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:16:01 2017
            Not After : Tue May 10 12:16:01 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:36:b0:2a:47:16:c4:b1:ea:c5:82:7c:15:b1:32:34:
                    35:88:a6:93:ef:e5:c6:63:f2:de:82:c2:85:e6:55:5e:
                    b4:02:1f:5f:ca:6f:f4:fd:ba:88:a8:50:f5:a5:2f:9a:
                    10:75:26:65:1a:b2:b9:26:8d:f4:c4:64:bd:66:0d:c7:
                    5f:01:f0:e3:92:4a:85:c1:cc:b8:a0:c7:8c:f7:f3:45:
                    cf:06:d2:cb:26:3b:4b:e5:b7:29:ca:e3:fc:d7:03:b7:
                    1c:97:f3:b3:37:c3:56:de:b9:c0:09:08:a4:36:29:ef:
                    d8:79:4c:d9:c0:20:d9:9e:96:6c:e0:c4:d1:7c:76:ce:
                    f7:48:a0:2b:ac:7b:60:8a:55:99:3b:0e:69:36:95:27:
                    9a:0e:8d:2d:08:56:47:e5:32:47:ba:21:ee:a6:d6:43:
                    fb:b7:d0:9a:7f:1d:b9:4c:3a:48:c0:93:61:bb:13:aa:
                    4c:41:ac:90:6a:26:a1:ba:59:17:10:f5:b8:29:92:b2:
                    90:78:a2:9f:58:fa:8c:e9:1c:3b:19:57:64:ec:fe:ad:
                    b2:da:65:dd:b8:10:c4:8c:92:37:57:0c:26:43:c3:95:
                    fa:37:da:31:4a:27:b2:c9:26:3c:1f:68:47:06:84:8d:
                    6a:9b:1e:7e:91:54:fc:c0:d8:49:19:cb:e7:12:d3:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        51:67:24:6f:8a:e3:96:c7:a9:35:7b:3b:66:cd:22:25:
        47:c9:cf:ac:24:41:65:96:86:e9:c2:96:0b:a9:62:fd:
        9d:b9:a1:a5:05:06:d6:8c:62:8d:0b:40:50:2a:ba:3e:
        b6:d1:94:aa:12:4d:a8:8f:5a:31:2a:3d:46:3c:17:f7:
        3f:fb:6b:77:ce:7e:53:17:f5:ff:2b:ed:89:05:e8:77:
        3e:bb:f3:1f:04:f9:50:ea:6c:08:3d:7f:3b:aa:8f:c9:
        ff:88:48:92:e9:3d:88:30:45:45:96:86:54:67:63:d0:
        6b:c2:40:9c:58:a8:34:54:33:76:40:d8:9d:2b:d1:63:
        c9:c7:d8:f5:9e:19:bb:3f:55:2e:db:0a:e3:65:27:29:
        c5:d3:5a:d3:9c:58:1d:20:16:db:3e:c6:b6:58:5b:9d:
        5e:4d:25:fe:bf:42:e3:fd:8b:75:5c:af:65:3a:81:0a:
        8a:e8:c3:40:5c:75:24:ae:b8:4f:a8:9e:8a:37:43:6d:
        60:d4:eb:de:e4:d9:3d:d9:67:4e:0b:b0:e4:c8:ab:2c:
        0a:7f:3b:f1:2c:12:e7:af:54:9b:f4:7f:04:2b:93:79:
        7f:ee:06:8f:61:a2:2e:2c:d9:48:d3:ba:b2:8a:86:0e:
        2b:3e:d3:17:43:57:5a:a4:88:f0:b9:84:06:5a:74:95
    Fingerprint (SHA-256):
        7E:D0:E4:BC:51:89:D7:FA:B2:EE:8A:39:DA:95:73:8D:4C:F7:1A:49:E3:E3:05:05:BD:51:CA:5F:48:50:7B:06
    Fingerprint (SHA1):
        D8:B3:CE:26:1A:97:92:47:07:53:67:FD:76:53:99:77:2E:D5:85:64
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7672: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7673: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7674: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7675: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7676: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7677: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510121415 (0x1e67d5c7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:16:04 2017
            Not After : Tue May 10 12:16:04 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:22:b2:c8:f2:dc:52:a4:d4:82:5f:66:e5:e8:b8:fb:
                    a0:3a:04:1d:e4:a1:4a:b2:6f:66:c8:fe:9d:17:6a:3a:
                    49:ce:d9:4c:83:b4:b8:e7:4c:14:c9:8a:e8:f8:12:3e:
                    b9:b8:69:5b:8f:3f:68:a1:33:1b:2a:f4:8f:63:b4:2c:
                    69:75:aa:3f:1b:6e:22:74:e1:a6:fe:de:79:6a:fd:ce:
                    5e:da:cc:d2:04:e3:85:d7:50:7e:41:32:c4:25:40:ea:
                    4d:c8:87:f6:2f:55:c0:1a:ba:8f:f9:ae:35:3e:6a:70:
                    97:a3:ff:08:e4:79:19:c3:4f:4e:46:8a:cf:97:bb:38:
                    f7:bd:c1:f0:4f:23:16:3c:45:5a:cd:d9:11:0b:a4:86:
                    15:64:0c:64:53:3e:02:78:f5:17:b0:28:8d:e3:d5:02:
                    3f:bf:bd:59:27:af:12:b8:39:7a:67:ab:63:cb:61:fa:
                    55:36:81:2c:91:c8:8b:5e:a5:65:7f:d6:c3:3d:d6:0c:
                    ee:e1:46:39:e1:fa:0e:a0:5f:0b:88:4d:dd:53:c0:5e:
                    99:0f:41:99:63:f8:cb:5f:52:11:6b:0a:bc:4e:f5:ac:
                    bc:94:af:70:35:93:6e:0a:28:44:ca:0a:4d:5f:ad:71:
                    39:05:68:87:b1:fc:fc:0a:20:4f:10:47:6a:1d:7c:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:b3:a8:80:fc:be:2e:7e:ee:d4:35:8e:5c:50:b4:97:
        3f:4b:a0:00:26:76:46:34:04:30:47:6e:16:4f:26:f5:
        60:f0:b8:28:de:0e:8f:5d:95:ca:28:4a:af:a8:31:ae:
        09:16:a7:87:a1:32:58:b8:44:7a:94:38:00:cb:66:3e:
        e4:1c:47:6c:74:28:21:4f:b1:29:8c:d9:5d:65:c8:95:
        62:1a:31:7a:d5:a0:62:62:61:8a:8b:63:1d:ec:55:f2:
        a3:21:88:77:39:4f:d7:c0:20:3b:07:7f:6f:33:23:62:
        2d:f4:8d:d5:63:ff:6b:7d:bd:43:38:4e:f9:a3:d9:1b:
        d0:ce:3a:cb:c2:15:57:a6:a9:08:bf:00:ed:5a:33:5b:
        18:b2:95:c0:94:5d:4c:32:31:18:07:99:ab:b2:dd:0b:
        e7:a4:3d:0e:bd:3d:1d:07:ed:fd:09:ba:17:26:3a:36:
        37:f0:8b:88:55:92:a1:4d:00:65:5e:1d:94:7a:42:75:
        a4:68:ad:c3:8f:27:6e:af:1d:18:f6:c7:3b:63:59:56:
        bd:b2:e5:aa:85:8c:61:6d:be:74:64:00:0e:06:8f:fe:
        77:9f:5b:8e:74:e9:8a:3d:9b:63:22:83:eb:81:60:1f:
        18:f0:55:e5:80:9f:f6:05:30:6f:c1:b7:cf:f0:57:91
    Fingerprint (SHA-256):
        FE:10:B7:F0:18:46:04:0B:92:26:11:C4:51:A9:69:A9:27:24:84:E0:D8:56:30:9D:22:49:AF:D1:0E:0C:96:20
    Fingerprint (SHA1):
        9A:0E:70:F3:19:39:89:85:CE:AA:A1:D8:CA:58:66:E5:6F:DE:67:82
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7678: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7679: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7680: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7681: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7682: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7683: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7684: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7685: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7686: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7687: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7688: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7689: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7690: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7691: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7692: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7693: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7694: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7695: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7696: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7697: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7698: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7699: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7700: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7701: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 18953 at Wed May 10 12:16:08 UTC 2017
kill -USR1 18953
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 18953 killed at Wed May 10 12:16:08 UTC 2017
TIMESTAMP chains END: Wed May 10 12:16:08 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 12:16:08 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 12:16:08 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #7702: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 12:16:08 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 12:16:08 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7703: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7704: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7705: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7706: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #7707: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #7708: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 12:16:08 UTC 2017
TIMESTAMP ec END: Wed May 10 12:16:08 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 12:16:08 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #7709: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #7710: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #7711: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #7712: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #7713: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #7714: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #7715: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #7716: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #7717: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #7718: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #7719: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #7720: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #7721: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #7722: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #7723: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #7724: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #7725: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #7726: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #7727: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #7728: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 12:16:08 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 12:16:08 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #7729: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7730: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7731: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7732: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7733: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7734: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7735: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7736: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7737: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7738: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7739: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7740: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7741: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7742: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7743: create certificate: sign  - PASSED
ssl_gtest.sh: #7744: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 12:16:10 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Wed May 10 12:16:11 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #7745: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #7746: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #7747: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #7748: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #7749: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7750: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #7751: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #7752: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #7753: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #7754: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #7755: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #7756: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #7757: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7758: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #7759: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #7760: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #7761: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #7762: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Wed May 10 12:16:23 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 12:16:23 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7763: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ea:ef:de:7f:36:73:d9:46:3f:ad:ed:2b:5d:23:be:89
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7764: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7765: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7766: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7767: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                29:33:96:96:14:e8:01:2a:3c:0b:e5:85:0b:f2:9a:50
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:39:58 2017
            Not After : Tue May 10 11:39:58 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:ad:16:f5:80:aa:cc:d7:1b:56:9f:f8:e9:0a:39:
                    8e:d8:05:a2:28:59:a1:d3:bc:94:f8:e7:da:c8:59:d6:
                    a3:f3:96:39:11:15:2e:1e:79:82:f6:b6:77:a8:ee:a6:
                    e2:57:cc:8e:be:b3:2b:ef:e3:a7:6a:fd:2b:04:01:0a:
                    bb:28:5d:01:5c:5e:94:6e:09:8f:14:c6:78:5c:57:54:
                    f2:5d:e1:3a:ed:7c:36:6b:cc:a6:2d:5b:b1:db:86:4c:
                    2f:ef:73:77:ad:61:aa:fa:db:5e:1f:8f:98:ef:b3:df:
                    a2:fc:71:79:c4:e0:94:4f:95:6c:d6:44:7b:28:69:b7:
                    da:d4:96:80:d0
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:ae:23:2d:b3:3b:20:e4:c9:0c:46:
        75:67:45:7b:e3:71:b9:d6:4d:66:55:34:11:43:12:e4:
        90:c7:5d:ae:ac:e4:3c:c6:9c:00:5a:a9:8a:75:8d:07:
        00:86:8c:cd:cb:12:69:17:29:0d:01:c6:b6:91:91:d8:
        15:3a:0f:c8:75:d1:2d:02:42:01:ac:ee:77:d1:8b:a1:
        18:b3:5c:70:9c:48:1f:7e:d8:31:e0:9f:67:cf:af:30:
        34:ef:21:7e:ad:b3:c6:c6:1a:c6:8f:8a:b8:aa:11:d1:
        95:4e:c7:e7:b0:e8:ee:68:01:6a:f4:92:96:bf:9a:29:
        48:7f:5a:be:dd:97:1e:34:da:e1:2c
    Fingerprint (SHA-256):
        FB:81:B6:00:78:17:7C:F7:68:D5:22:97:72:DA:03:96:57:15:8B:41:25:36:A8:51:E0:BF:AF:1F:39:D2:0C:A9
    Fingerprint (SHA1):
        FD:C1:1D:1D:E3:7C:B9:39:29:83:64:18:4F:91:6C:E4:ED:2C:9C:EB
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:d2:83:4f:09:dc:f4:6a:81:a7:68:b4:63:89:0e:f4:
                    15:2d:85:df:6c:86:d4:c5:6b:36:0c:2f:cb:7c:d5:9c:
                    f4:7d:a4:ba:9e:70:2d:f5:93:c7:e5:03:00:e5:ed:d0:
                    ac:e9:9b:9d:6e:48:37:e2:dc:71:30:cf:03:65:42:fc:
                    41:f7:91:3c:03:67:12:6c:90:e9:c7:ca:b1:52:b0:d2:
                    30:1f:60:c8:99:cd:de:a9:73:99:38:6e:2f:82:34:ab:
                    da
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:aa:65:0c:b9:bf:0a:67:9b:7b:c8:
        25:f8:ca:0c:ee:7c:6c:08:c0:9c:b7:63:d7:5a:91:ff:
        36:2a:4d:42:87:8e:6d:02:7c:75:c5:c0:a9:21:6b:b0:
        32:75:e9:81:91:19:bd:80:4a:c6:44:1a:bb:1f:18:cb:
        41:f1:7a:82:59:45:79:02:42:01:b9:07:52:33:9f:15:
        8e:e9:38:d5:b6:74:64:8a:0a:1d:00:db:6f:fc:8b:f5:
        d1:52:b8:4f:38:31:9d:d4:b4:a1:1d:fa:1c:a1:93:da:
        bb:a3:a5:ec:e4:80:6f:d9:f1:8f:5e:20:7c:c1:ee:46:
        cd:a3:89:ca:b8:d2:b7:43:72:0a:95
    Fingerprint (SHA-256):
        CB:06:55:2B:7B:97:B0:7B:F7:0E:9E:6F:06:D6:51:A3:AE:7E:5B:9D:DC:BB:7C:84:27:4C:3E:3B:80:E2:DA:ED
    Fingerprint (SHA1):
        30:39:F2:4F:A2:8D:BB:0C:C8:56:B9:CC:B9:84:73:A0:02:8A:D8:86
    Friendly Name: Alice-ec
tools.sh: #7768: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7769: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                62:86:6e:a5:75:00:80:17:2f:6d:e8:87:26:c1:60:e4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7770: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7771: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7772: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                4d:45:0d:65:3e:a1:05:ba:b4:bc:f5:42:2a:8a:ec:19
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7773: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7774: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7775: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                fa:63:51:4d:1e:69:99:0a:83:d9:50:7a:ff:56:c1:5e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7776: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7777: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7778: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                9c:61:df:67:1f:c5:ef:50:c6:3c:91:40:00:bb:de:2b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7779: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7780: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7781: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                6f:b8:cf:0b:f3:da:88:b4:d9:94:53:d6:d2:79:44:d4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7782: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7783: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7784: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                b7:b0:af:95:68:b5:5d:c1:13:e9:49:d8:8c:1c:e8:c5
            Iteration Count: 2000 (0x7d0)
tools.sh: #7785: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7786: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7787: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                29:76:f3:d8:0a:cc:9d:3b:7d:87:85:71:1a:7d:f5:8a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7788: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7789: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7790: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9f:cf:f9:c1:20:de:eb:3b:2f:44:82:f2:e9:48:5b:d9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7791: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7792: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7793: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:e7:e1:48:03:ce:66:a3:3f:7f:ee:8e:c3:20:0f:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7794: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7795: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7796: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a8:a8:04:40:5b:e7:3d:6d:ee:47:77:4f:27:b7:0d:40
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7797: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7798: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7799: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5a:eb:99:c8:c1:d1:a2:2a:ae:ba:b7:59:3f:82:c3:48
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7800: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7801: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7802: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                59:b4:36:11:65:4d:31:ac:78:e2:17:77:68:01:d4:2b
            Iteration Count: 2000 (0x7d0)
tools.sh: #7803: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7804: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7805: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a5:dc:c5:d9:68:9e:36:57:0d:13:28:58:40:16:34:f5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:5d:81:a4:33:9c:ac:63:9d:73:6b:e4:a6:b6:ad:
                    89:e5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7806: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7807: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7808: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        90:72:4d:e9:9e:c7:30:07:16:ba:af:73:d7:79:62:c4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:83:4f:83:97:eb:01:24:8e:ce:0b:05:9f:ba:20:
                    a3:bb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7809: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7810: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7811: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c8:f5:22:b2:3f:ee:a5:f3:f5:45:4e:af:2d:4f:dc:14
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:a5:8e:be:1d:d2:45:1c:84:26:c9:34:3c:4b:55:
                    97:9b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7812: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7813: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7814: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d9:ea:2b:45:b2:8e:74:31:45:4f:05:9e:b0:f1:9e:43
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:cd:51:91:5f:b7:03:77:2b:48:90:d7:97:0b:b6:
                    3e:c7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7815: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7816: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7817: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        55:78:5c:85:d1:46:6f:37:60:87:58:b1:49:51:50:a8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:bd:0d:0b:3a:8c:5d:23:f7:0c:9e:06:d3:43:09:
                    91:75
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7818: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7819: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7820: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        96:fa:10:4b:cf:c3:05:5b:3d:3f:14:fe:de:66:a4:17
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:b6:71:96:53:16:20:b0:92:37:c3:6f:2f:6b:77:
                    47:b8
tools.sh: #7821: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7822: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7823: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        93:af:04:64:d3:dd:96:15:a3:aa:cf:ae:26:e2:a0:a6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d3:d5:60:f5:32:cf:10:6d:ea:38:3c:c5:8c:8a:
                    88:0a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7824: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7825: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7826: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        02:02:34:71:f0:62:3b:ba:5a:c8:da:8e:39:de:18:ee
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:9a:1e:5f:92:14:78:b1:19:41:2d:7a:94:a6:2d:
                    c0:4d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7827: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7828: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7829: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        12:30:04:7e:bf:67:8f:98:b7:b2:b0:75:aa:dc:ee:f6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:06:cd:18:3f:37:30:62:4b:68:43:6c:9a:52:2c:
                    2b:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7830: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7831: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7832: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7a:a8:8a:75:e9:1a:15:f1:bb:a6:3f:e8:51:9e:61:47
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:0f:33:73:76:33:f2:97:be:f8:07:91:60:04:f8:
                    ac:9a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7833: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7834: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7835: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f2:e7:8c:9e:50:34:39:5b:d4:60:ef:ee:9e:e1:48:00
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:32:6a:50:3e:48:16:9c:8f:d8:4f:70:3a:51:53:
                    b5:b3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7836: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7837: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7838: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        0f:02:44:f5:51:d7:cc:e5:b3:19:a8:cf:90:9c:7a:73
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:91:49:92:71:77:69:3f:bb:fc:2b:ed:f0:88:23:
                    e4:28
tools.sh: #7839: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7840: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7841: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        26:7d:3d:30:3e:22:f6:b2:1d:a3:83:74:40:bc:86:af
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:ed:49:dd:da:3f:3f:6a:57:ba:af:5b:2f:35:ee:
                    bd:da
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7842: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7843: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7844: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        50:23:33:84:92:d4:40:bd:66:7a:02:0b:f3:2a:2c:28
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:6f:44:e1:43:9c:88:77:aa:49:86:2d:9c:71:12:
                    dd:ca
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7845: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7846: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7847: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        cf:6e:7a:f9:da:ce:47:a4:02:1d:41:ae:7a:35:ec:77
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:99:b2:11:77:93:aa:68:99:2e:10:99:d5:1c:e7:
                    79:77
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7848: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7849: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7850: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:78:1c:ab:8f:0f:76:71:6a:c0:55:2f:0f:3c:e1:60
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:25:4c:e8:a2:6b:60:84:4d:4e:65:0a:df:00:77:
                    cb:da
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7851: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7852: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7853: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2d:19:1f:0b:d5:87:06:d2:c3:8f:df:10:5a:64:78:09
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:99:aa:7a:e8:eb:10:34:c1:2f:aa:41:d5:62:96:
                    ae:fb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7854: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7855: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7856: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        69:a7:1c:ff:43:46:63:2f:5c:a8:39:74:00:ea:ad:40
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:5b:9b:c3:a6:ca:65:ec:a1:8f:03:7d:78:f4:81:
                    9a:cc
tools.sh: #7857: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7858: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7859: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        69:69:e3:bb:21:e3:a4:4e:14:90:9e:69:2e:a3:4b:35
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:0d:47:07:09:1f:56:e2:0d:05:d7:d1:d7:db:6b:
                    23:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7860: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7861: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7862: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        05:2b:78:d9:0c:57:41:95:96:36:bf:6e:13:33:fd:b3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:4e:f2:6b:47:be:0d:f3:1d:48:5e:d4:0d:58:1b:
                    9e:93
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7863: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7864: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7865: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        06:e6:6a:83:13:74:b5:63:8a:7e:f6:9d:5c:4a:a3:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:fb:9f:a3:37:49:b3:7f:f7:81:9a:27:58:93:7d:
                    03:23
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7866: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7867: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7868: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6d:81:cc:b3:f0:2b:61:4a:06:44:46:91:a4:ca:4c:db
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:3f:95:2d:5e:61:17:c8:70:ad:cd:59:76:5c:cb:
                    95:c8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7869: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7870: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7871: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fa:be:f7:92:75:42:74:3b:64:6b:8d:50:fd:02:20:5e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:88:f9:19:bc:57:35:3c:a0:d8:1c:e6:53:26:f6:
                    c4:da
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7872: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7873: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7874: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f6:d6:b5:84:4d:53:51:4b:02:3c:a5:d2:01:c7:3e:b1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:41:40:de:fe:1a:48:45:c9:3e:c0:00:83:a9:18:
                    e0:ac
tools.sh: #7875: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7876: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7877: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        35:1d:79:81:49:be:14:07:2d:8b:c0:ad:27:7b:17:18
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:5e:02:55:89:8c:93:d2:71:d3:1b:8c:d9:31:25:
                    46:44
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7878: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7879: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7880: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ca:6e:6c:ef:94:a4:59:d0:1b:e2:57:f4:28:e1:04:44
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:03:c2:b5:11:4e:c1:6e:d4:29:06:c2:27:59:f3:
                    77:40
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7881: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7882: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7883: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a4:ab:56:5a:5b:27:69:de:b2:02:8a:72:76:8f:d8:f4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:81:d7:7f:43:8d:0a:7e:e4:b0:c3:d9:8f:f8:e9:
                    23:c8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7884: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7885: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7886: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:f0:98:62:40:5c:41:e0:a4:8a:f0:ab:18:47:56:9c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:75:3e:87:2c:08:10:43:26:2d:5a:a2:30:c7:c2:
                    ad:58
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7887: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7888: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7889: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ed:4c:42:8f:81:5a:0c:8d:87:56:74:ac:69:42:9a:4b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:a0:ce:7a:f3:20:df:64:3b:14:91:f5:03:1c:4e:
                    f2:1a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7890: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7891: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7892: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        56:d9:38:0b:ff:8b:b2:c2:61:2b:09:33:5b:e6:ca:a1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:60:f8:10:e5:2d:f8:98:55:d9:7f:ac:54:2c:21:
                    00:29
tools.sh: #7893: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7894: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7895: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        4b:62:c4:8d:77:30:a7:64:37:99:8d:2c:4f:3d:50:8f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:9d:bc:0f:f9:a3:68:ca:70:89:50:e6:fd:d5:fa:
                    d2:22
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7896: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7897: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7898: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        31:93:91:d6:00:b9:6c:f0:f3:60:9e:f1:7b:03:6b:87
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:79:98:ab:33:0f:85:0f:13:2d:62:a9:81:6f:6b:
                    5e:d0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7899: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7900: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7901: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b4:d1:b4:50:45:dd:b4:36:10:8c:53:af:12:f2:06:55
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:83:25:3f:cf:cf:cd:d4:6e:37:27:03:22:9f:be:
                    f0:8e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7902: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7903: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7904: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        81:3f:0c:b5:c1:15:bd:db:16:97:67:3f:de:37:ae:9c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7a:c9:25:2a:ad:21:8e:69:30:49:77:8b:93:4d:
                    11:e0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7905: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7906: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7907: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b8:56:63:16:b9:72:63:71:1c:62:84:9e:01:04:fd:5b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:11:b7:4a:11:6c:83:89:dd:90:61:94:6c:4c:61:
                    27:ac
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7908: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7909: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7910: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6e:c0:83:64:8b:c7:60:a1:ce:c4:a2:49:86:0b:80:bd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:54:c1:81:96:36:4f:b4:89:0a:19:d8:b4:6d:70:
                    ab:1b
tools.sh: #7911: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7912: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7913: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b5:70:50:5c:66:7e:5d:df:03:69:62:a1:71:b8:25:c4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7914: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7915: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7916: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                34:28:1c:53:95:b4:cf:86:fc:d9:ba:54:65:c4:e0:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7917: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7918: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7919: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                87:6c:d9:e5:85:99:9e:b4:34:bf:d4:36:7a:d0:78:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7920: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7921: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7922: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                99:99:65:a1:8b:8d:7f:b8:38:00:8f:fc:29:0f:84:b7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7923: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7924: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7925: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                71:15:97:88:95:ae:7e:e2:53:d1:d3:42:d0:d5:88:1e
            Iteration Count: 2000 (0x7d0)
tools.sh: #7926: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7927: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7928: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                7e:39:0c:ae:98:be:cc:b2:34:a6:c9:a2:7a:43:78:0b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7929: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7930: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7931: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                92:d3:5a:04:0c:cb:32:15:51:35:00:08:6b:03:dd:8b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7932: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7933: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7934: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                33:63:7c:0f:98:e3:84:f8:d9:62:ea:b1:1a:75:c7:0f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7935: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7936: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7937: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                f4:47:63:4e:09:c1:ad:31:12:1f:5a:74:b8:b4:3f:57
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7938: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7939: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7940: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                aa:0a:fb:f7:4b:e6:05:96:2f:36:31:55:f9:35:f7:c6
            Iteration Count: 2000 (0x7d0)
tools.sh: #7941: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7942: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7943: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                54:f5:16:64:ad:5a:b8:cb:50:48:49:4c:ac:03:c8:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7944: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7945: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7946: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ef:8f:fc:cb:5c:c2:e9:fa:66:1c:a9:af:29:73:c0:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7947: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7948: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7949: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                7b:16:1f:bd:1d:08:eb:b0:25:90:51:49:1e:59:25:b1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7950: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7951: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7952: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                c2:97:26:91:25:ad:cc:23:9f:ee:b7:fb:ba:89:a2:9b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7953: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7954: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7955: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                76:a9:f6:20:64:c4:d8:45:c5:de:c8:a4:9c:91:e5:fb
            Iteration Count: 2000 (0x7d0)
tools.sh: #7956: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7957: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7958: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9a:c0:78:00:61:8f:89:ee:fc:59:fe:28:f6:45:51:9c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7959: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7960: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7961: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                83:9f:39:d5:e1:a3:53:ef:84:fc:79:72:45:4b:9a:41
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7962: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7963: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7964: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ee:7d:ed:9b:23:e9:9f:20:84:a5:9c:1e:30:89:79:ea
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7965: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7966: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7967: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                84:f4:06:61:d3:1e:7a:81:3c:45:57:2d:ed:68:fd:34
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7968: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7969: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7970: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                52:82:19:d1:35:2a:9f:ad:9a:e9:0d:88:61:4d:03:e3
            Iteration Count: 2000 (0x7d0)
tools.sh: #7971: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7972: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7973: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:8d:73:f8:0a:83:28:f0:9e:bb:be:97:24:b5:bb:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7974: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7975: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7976: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                60:c7:b1:bb:78:07:cc:75:a5:3a:e6:de:f7:95:e1:47
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7977: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7978: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7979: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                48:9f:9d:5d:52:28:19:2f:47:58:75:25:ec:02:8b:ce
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7980: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7981: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7982: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                98:14:46:11:30:a3:ef:c8:69:d6:8f:0c:0a:0f:fa:be
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7983: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7984: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7985: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d0:65:f3:8b:29:18:fb:ec:c1:e6:bb:4a:e9:8c:21:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7986: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7987: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7988: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:7e:85:0d:36:3d:58:42:3b:8e:4f:65:f1:6b:d2:7b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7989: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7990: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7991: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                59:4a:9b:f7:61:c5:96:d4:9d:6d:a9:41:c0:1d:a0:10
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7992: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7993: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7994: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                de:1a:41:7b:65:d1:3a:ad:27:29:3d:e2:f3:8c:48:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7995: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7996: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7997: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                18:8a:c9:4d:f4:73:c7:7c:8d:79:a1:34:7f:22:6f:e1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #7998: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7999: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #8000: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9b:56:ab:b7:cc:54:4a:9e:12:4b:00:ad:c8:00:9d:cf
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:39:54 2017
            Not After : Tue May 10 11:39:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:e6:e2:f0:74:5f:a7:c2:d3:80:59:4a:f4:a5:d7:0b:
                    e4:16:dc:0e:96:f2:b1:b6:90:e4:fd:10:d3:68:e0:1b:
                    1b:2e:6e:36:d4:ed:0b:fa:9a:45:5a:bd:02:5c:89:ee:
                    27:77:41:00:1f:ab:93:90:14:8a:02:ff:ce:da:a1:c8:
                    1d:7d:5d:08:8a:aa:bf:6f:6f:29:a1:54:65:94:a3:1b:
                    d8:d7:35:38:83:98:39:01:6e:c8:e9:0b:63:2b:67:d6:
                    03:18:3a:e8:69:eb:fa:2b:5a:e3:64:64:d8:3b:a6:9e:
                    e8:25:c8:94:6f:ff:76:c5:91:54:bb:67:d0:bd:97:7f:
                    b9:7f:1c:fb:db:a8:4e:d5:f1:36:68:eb:ce:c1:40:d4:
                    db:d8:ba:8f:5d:c0:9d:58:f2:a5:86:42:34:47:72:4c:
                    3d:82:ac:b8:f9:84:06:9b:57:53:dd:61:ab:cf:52:66:
                    1f:96:0a:9c:78:e8:93:d8:4c:40:91:f1:ff:10:b1:79:
                    3d:6d:73:a2:0d:76:6e:20:f9:e9:d0:99:a0:8f:8c:f9:
                    a3:d2:80:16:d0:81:0e:32:27:6a:06:2e:2b:d7:dd:44:
                    58:1d:d3:f2:ec:0b:10:2d:f0:a5:62:12:92:5e:51:4b:
                    98:b8:26:81:02:60:e5:95:6a:40:77:fe:07:b2:64:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:06:38:36:e5:34:c5:75:49:58:18:a2:98:62:3b:70:
        c7:56:3d:72:59:e4:4e:e0:ef:7d:79:d2:20:c1:bc:00:
        a1:1b:1b:60:0b:4c:01:b8:64:d7:70:01:3e:20:dc:54:
        70:9e:38:e1:d0:78:29:c7:88:46:c5:ad:ef:13:d6:db:
        7a:94:55:2c:b7:ad:64:e3:1d:87:25:71:81:78:e7:8f:
        b4:b7:f9:49:3c:90:67:7f:80:53:81:2f:fe:bc:9d:b0:
        2c:b8:c7:f6:48:1d:34:27:20:ca:bb:83:71:62:f1:aa:
        4d:6a:c8:43:d6:8f:12:c0:ee:be:9b:99:f4:34:6d:f7:
        7a:19:01:9a:60:f6:40:33:69:a4:80:b4:a5:7c:d8:4c:
        0f:0a:df:34:8c:94:7b:95:da:c1:d5:18:33:56:27:fb:
        03:3d:0a:33:f4:1e:09:e4:a8:b0:76:89:4d:33:6a:db:
        af:93:96:58:7a:c7:59:f8:d4:37:cc:ec:ed:83:79:55:
        fd:83:a1:ad:98:a7:b7:49:4d:13:a3:0a:0c:d2:3b:4c:
        71:0e:e3:76:66:a0:a1:00:86:ea:cf:53:74:66:16:37:
        25:72:f1:cc:80:ee:a4:9b:3c:b2:83:7d:b1:86:68:a9:
        13:76:e0:45:4b:09:f3:7a:15:82:3c:a6:6a:02:42:a1
    Fingerprint (SHA-256):
        AC:FF:F8:0B:0A:67:C7:AB:0A:45:F8:5B:C9:0E:60:04:1B:2A:7E:50:BE:9F:50:B0:F3:E1:DF:5E:24:69:8A:CD
    Fingerprint (SHA1):
        1B:51:E4:FA:D4:24:E3:76:47:02:78:1C:93:8C:E2:20:0B:D3:63:16
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:07 2017
            Not After : Tue May 10 11:40:07 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:27:dc:ad:9d:e4:69:09:f5:c6:f6:86:b0:0f:88:a9:
                    f3:6b:7f:5c:25:27:dd:ba:54:2a:5a:9b:57:75:03:77:
                    aa:8d:00:2a:97:6a:5d:38:07:bf:44:c7:16:c9:8d:78:
                    44:38:72:5c:24:85:c0:44:f7:3e:05:3b:dc:08:9f:80:
                    d8:ff:a5:81:03:85:73:19:58:a3:1b:4e:8f:92:3c:9a:
                    75:4a:f1:97:02:6b:0a:2a:77:db:29:4b:7e:27:44:03:
                    7b:49:5d:d0:07:73:ee:82:cb:39:ef:b7:05:83:a2:20:
                    78:92:6c:21:83:56:e4:18:8b:3e:0a:31:84:ae:5c:6f:
                    29:10:b2:5c:07:51:31:c8:b9:65:81:1b:ce:bc:45:f8:
                    03:d4:71:e3:02:1c:19:31:a4:3f:fc:38:22:a6:e8:67:
                    55:e3:48:de:c0:08:62:d6:6f:9f:a3:13:34:02:c4:22:
                    90:3d:b6:df:51:d4:c3:c9:23:c7:b4:70:4d:67:af:6d:
                    d2:1b:cd:1a:bc:b2:ff:2b:3a:e1:3f:7c:13:0f:a1:96:
                    f4:c3:4b:9b:aa:6c:34:3c:22:54:34:cd:7a:6b:41:06:
                    25:c2:5b:c6:4b:4f:cd:1e:d0:78:5f:f7:1b:89:c5:97:
                    60:aa:72:34:cc:d0:da:f9:3b:11:7c:bd:03:42:61:b3
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:5a:0d:d7:b2:23:3e:c5:80:33:93:a8:20:ca:d9:d9:
        7b:3e:51:42:11:1f:78:d8:ec:0b:3d:96:04:8c:57:0e:
        85:8d:d0:16:b7:e3:7b:d5:98:1c:f1:e7:41:cc:57:e8:
        c5:8a:e4:8e:fd:1f:1c:ae:7e:cf:2e:51:d8:b5:93:e5:
        e5:15:e5:d9:f5:d7:62:b4:84:97:7a:03:d4:38:72:aa:
        46:a2:33:21:0f:f7:d3:e6:f7:53:bb:40:c1:56:9a:c6:
        47:fa:e8:3f:6d:a3:bd:6b:c7:1f:a1:2d:d0:4b:ae:04:
        94:e1:fb:e6:d3:ab:d6:f5:0b:f9:b4:91:5a:17:72:fe:
        8f:13:13:1b:cc:42:82:35:df:2b:57:b4:2e:ec:87:49:
        ba:11:07:ac:98:ff:41:70:ee:3c:5a:80:81:86:ff:76:
        e6:e5:af:59:55:8e:58:4b:85:29:c2:11:3d:cb:38:0a:
        43:37:b6:60:00:5c:dc:e3:36:26:29:0d:84:8b:57:fa:
        40:dd:41:ba:58:4c:e2:58:81:01:b4:6e:af:b1:e5:c1:
        55:a6:50:66:29:6c:b8:dc:43:98:73:f1:95:14:2c:69:
        7d:05:a0:55:56:23:61:1a:2f:7d:f5:0d:72:1e:13:62:
        d4:01:f7:31:26:b3:86:50:c4:1b:3a:40:50:b0:c5:ed
    Fingerprint (SHA-256):
        0C:34:53:F2:34:55:2F:56:FC:53:D9:2C:B0:1C:67:25:73:8A:5E:84:6D:1A:8E:DB:BF:93:D4:A3:7A:E5:D1:AF
    Fingerprint (SHA1):
        77:FD:11:F0:67:22:C9:E0:EA:3B:17:0F:4B:1A:2C:52:7B:AA:15:6B
    Friendly Name: Alice
tools.sh: #8001: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #8002: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #8003: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #8004: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #8005: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #8006: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #8007: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #8008: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #8009: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #8010: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #8011: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 12:17:02 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 12:17:02 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #8012: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #8013: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      30fa12fd62d053eb2e2a8243652d0a6bf9ac426a   FIPS_PUB_140_Test_Certificate
fips.sh: #8014: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #8015: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #8016: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #8017: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #8018: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #8019: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #8020: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #8021: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #8022: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #8023: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #8024: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      30fa12fd62d053eb2e2a8243652d0a6bf9ac426a   FIPS_PUB_140_Test_Certificate
fips.sh: #8025: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #8026: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #8027: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #8028: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #8029: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      30fa12fd62d053eb2e2a8243652d0a6bf9ac426a   FIPS_PUB_140_Test_Certificate
fips.sh: #8030: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #8031: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #8032: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x00042d00 (273664): from 20 (32) to 00 (0)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #8033: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 12:17:21 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed May 10 12:17:21 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #8034: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #8035: CMMF test . - PASSED
TIMESTAMP crmf END: Wed May 10 12:17:21 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed May 10 12:17:21 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #8036: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8037: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #8038: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #8039: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #8040: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #8041: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8042: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #8043: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #8044: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #8045: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #8046: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8047: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #8048: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #8049: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #8050: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #8051: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8052: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #8053: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #8054: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #8055: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #8056: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8057: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #8058: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #8059: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #8060: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #8061: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8062: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #8063: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #8064: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #8065: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #8066: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8067: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #8068: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #8069: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #8070: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #8071: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #8072: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #8073: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #8074: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #8075: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #8076: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #8077: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #8078: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #8079: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #8080: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #8081: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #8082: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #8083: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #8084: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #8085: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #8086: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #8087: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #8088: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #8089: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #8090: Decode Encrypted-Data . - PASSED
smime.sh: #8091: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #8092: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #8093: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #8094: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #8095: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #8096: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed May 10 12:17:29 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 12:17:29 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5843 >/dev/null 2>/dev/null
selfserv_9505 with PID 5843 found at Wed May 10 12:17:30 UTC 2017
selfserv_9505 with PID 5843 started at Wed May 10 12:17:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8097: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5843 at Wed May 10 12:17:30 UTC 2017
kill -USR1 5843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5843 killed at Wed May 10 12:17:30 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5899 >/dev/null 2>/dev/null
selfserv_9505 with PID 5899 found at Wed May 10 12:17:30 UTC 2017
selfserv_9505 with PID 5899 started at Wed May 10 12:17:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8098: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5899 at Wed May 10 12:17:31 UTC 2017
kill -USR1 5899
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5899 killed at Wed May 10 12:17:31 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5955 >/dev/null 2>/dev/null
selfserv_9505 with PID 5955 found at Wed May 10 12:17:31 UTC 2017
selfserv_9505 with PID 5955 started at Wed May 10 12:17:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8099: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 5955 at Wed May 10 12:17:31 UTC 2017
kill -USR1 5955
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5955 killed at Wed May 10 12:17:31 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6023 >/dev/null 2>/dev/null
selfserv_9505 with PID 6023 found at Wed May 10 12:17:31 UTC 2017
selfserv_9505 with PID 6023 started at Wed May 10 12:17:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8100: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6023 at Wed May 10 12:17:32 UTC 2017
kill -USR1 6023
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6023 killed at Wed May 10 12:17:32 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6079 >/dev/null 2>/dev/null
selfserv_9505 with PID 6079 found at Wed May 10 12:17:32 UTC 2017
selfserv_9505 with PID 6079 started at Wed May 10 12:17:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8101: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6079 at Wed May 10 12:17:32 UTC 2017
kill -USR1 6079
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6079 killed at Wed May 10 12:17:32 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6135 >/dev/null 2>/dev/null
selfserv_9505 with PID 6135 found at Wed May 10 12:17:32 UTC 2017
selfserv_9505 with PID 6135 started at Wed May 10 12:17:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8102: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6135 at Wed May 10 12:17:33 UTC 2017
kill -USR1 6135
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6135 killed at Wed May 10 12:17:33 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6203 >/dev/null 2>/dev/null
selfserv_9505 with PID 6203 found at Wed May 10 12:17:33 UTC 2017
selfserv_9505 with PID 6203 started at Wed May 10 12:17:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8103: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6203 at Wed May 10 12:17:33 UTC 2017
kill -USR1 6203
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6203 killed at Wed May 10 12:17:33 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6259 >/dev/null 2>/dev/null
selfserv_9505 with PID 6259 found at Wed May 10 12:17:33 UTC 2017
selfserv_9505 with PID 6259 started at Wed May 10 12:17:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8104: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6259 at Wed May 10 12:17:34 UTC 2017
kill -USR1 6259
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6259 killed at Wed May 10 12:17:34 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6316 >/dev/null 2>/dev/null
selfserv_9505 with PID 6316 found at Wed May 10 12:17:34 UTC 2017
selfserv_9505 with PID 6316 started at Wed May 10 12:17:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8105: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6316 at Wed May 10 12:17:34 UTC 2017
kill -USR1 6316
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6316 killed at Wed May 10 12:17:34 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6384 >/dev/null 2>/dev/null
selfserv_9505 with PID 6384 found at Wed May 10 12:17:35 UTC 2017
selfserv_9505 with PID 6384 started at Wed May 10 12:17:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8106: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6384 at Wed May 10 12:17:35 UTC 2017
kill -USR1 6384
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6384 killed at Wed May 10 12:17:35 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6440 >/dev/null 2>/dev/null
selfserv_9505 with PID 6440 found at Wed May 10 12:17:35 UTC 2017
selfserv_9505 with PID 6440 started at Wed May 10 12:17:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8107: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6440 at Wed May 10 12:17:36 UTC 2017
kill -USR1 6440
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6440 killed at Wed May 10 12:17:36 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6496 >/dev/null 2>/dev/null
selfserv_9505 with PID 6496 found at Wed May 10 12:17:36 UTC 2017
selfserv_9505 with PID 6496 started at Wed May 10 12:17:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8108: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6496 at Wed May 10 12:17:36 UTC 2017
kill -USR1 6496
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6496 killed at Wed May 10 12:17:36 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6564 >/dev/null 2>/dev/null
selfserv_9505 with PID 6564 found at Wed May 10 12:17:36 UTC 2017
selfserv_9505 with PID 6564 started at Wed May 10 12:17:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8109: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6564 at Wed May 10 12:17:37 UTC 2017
kill -USR1 6564
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6564 killed at Wed May 10 12:17:37 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6620 >/dev/null 2>/dev/null
selfserv_9505 with PID 6620 found at Wed May 10 12:17:37 UTC 2017
selfserv_9505 with PID 6620 started at Wed May 10 12:17:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8110: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6620 at Wed May 10 12:17:37 UTC 2017
kill -USR1 6620
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6620 killed at Wed May 10 12:17:37 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6676 >/dev/null 2>/dev/null
selfserv_9505 with PID 6676 found at Wed May 10 12:17:37 UTC 2017
selfserv_9505 with PID 6676 started at Wed May 10 12:17:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8111: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6676 at Wed May 10 12:17:38 UTC 2017
kill -USR1 6676
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6676 killed at Wed May 10 12:17:38 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6744 >/dev/null 2>/dev/null
selfserv_9505 with PID 6744 found at Wed May 10 12:17:38 UTC 2017
selfserv_9505 with PID 6744 started at Wed May 10 12:17:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8112: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6744 at Wed May 10 12:17:38 UTC 2017
kill -USR1 6744
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6744 killed at Wed May 10 12:17:38 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6800 >/dev/null 2>/dev/null
selfserv_9505 with PID 6800 found at Wed May 10 12:17:38 UTC 2017
selfserv_9505 with PID 6800 started at Wed May 10 12:17:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8113: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6800 at Wed May 10 12:17:39 UTC 2017
kill -USR1 6800
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6800 killed at Wed May 10 12:17:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6857 >/dev/null 2>/dev/null
selfserv_9505 with PID 6857 found at Wed May 10 12:17:39 UTC 2017
selfserv_9505 with PID 6857 started at Wed May 10 12:17:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8114: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 6857 at Wed May 10 12:17:39 UTC 2017
kill -USR1 6857
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6857 killed at Wed May 10 12:17:39 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6925 >/dev/null 2>/dev/null
selfserv_9505 with PID 6925 found at Wed May 10 12:17:39 UTC 2017
selfserv_9505 with PID 6925 started at Wed May 10 12:17:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8115: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6925 at Wed May 10 12:17:40 UTC 2017
kill -USR1 6925
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6925 killed at Wed May 10 12:17:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6981 >/dev/null 2>/dev/null
selfserv_9505 with PID 6981 found at Wed May 10 12:17:40 UTC 2017
selfserv_9505 with PID 6981 started at Wed May 10 12:17:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8116: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 6981 at Wed May 10 12:17:40 UTC 2017
kill -USR1 6981
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6981 killed at Wed May 10 12:17:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7037 >/dev/null 2>/dev/null
selfserv_9505 with PID 7037 found at Wed May 10 12:17:40 UTC 2017
selfserv_9505 with PID 7037 started at Wed May 10 12:17:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8117: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7037 at Wed May 10 12:17:41 UTC 2017
kill -USR1 7037
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7037 killed at Wed May 10 12:17:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7106 >/dev/null 2>/dev/null
selfserv_9505 with PID 7106 found at Wed May 10 12:17:41 UTC 2017
selfserv_9505 with PID 7106 started at Wed May 10 12:17:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8118: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7106 at Wed May 10 12:17:41 UTC 2017
kill -USR1 7106
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7106 killed at Wed May 10 12:17:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7162 >/dev/null 2>/dev/null
selfserv_9505 with PID 7162 found at Wed May 10 12:17:41 UTC 2017
selfserv_9505 with PID 7162 started at Wed May 10 12:17:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8119: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7162 at Wed May 10 12:17:42 UTC 2017
kill -USR1 7162
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7162 killed at Wed May 10 12:17:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7218 >/dev/null 2>/dev/null
selfserv_9505 with PID 7218 found at Wed May 10 12:17:42 UTC 2017
selfserv_9505 with PID 7218 started at Wed May 10 12:17:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8120: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7218 at Wed May 10 12:17:42 UTC 2017
kill -USR1 7218
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7218 killed at Wed May 10 12:17:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7286 >/dev/null 2>/dev/null
selfserv_9505 with PID 7286 found at Wed May 10 12:17:42 UTC 2017
selfserv_9505 with PID 7286 started at Wed May 10 12:17:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8121: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7286 at Wed May 10 12:17:43 UTC 2017
kill -USR1 7286
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7286 killed at Wed May 10 12:17:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7342 >/dev/null 2>/dev/null
selfserv_9505 with PID 7342 found at Wed May 10 12:17:43 UTC 2017
selfserv_9505 with PID 7342 started at Wed May 10 12:17:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8122: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7342 at Wed May 10 12:17:43 UTC 2017
kill -USR1 7342
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7342 killed at Wed May 10 12:17:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7398 >/dev/null 2>/dev/null
selfserv_9505 with PID 7398 found at Wed May 10 12:17:43 UTC 2017
selfserv_9505 with PID 7398 started at Wed May 10 12:17:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8123: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7398 at Wed May 10 12:17:44 UTC 2017
kill -USR1 7398
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7398 killed at Wed May 10 12:17:44 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7466 >/dev/null 2>/dev/null
selfserv_9505 with PID 7466 found at Wed May 10 12:17:44 UTC 2017
selfserv_9505 with PID 7466 started at Wed May 10 12:17:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8124: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7466 at Wed May 10 12:17:44 UTC 2017
kill -USR1 7466
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7466 killed at Wed May 10 12:17:44 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7522 >/dev/null 2>/dev/null
selfserv_9505 with PID 7522 found at Wed May 10 12:17:44 UTC 2017
selfserv_9505 with PID 7522 started at Wed May 10 12:17:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8125: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7522 at Wed May 10 12:17:45 UTC 2017
kill -USR1 7522
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7522 killed at Wed May 10 12:17:45 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7578 >/dev/null 2>/dev/null
selfserv_9505 with PID 7578 found at Wed May 10 12:17:45 UTC 2017
selfserv_9505 with PID 7578 started at Wed May 10 12:17:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8126: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7578 at Wed May 10 12:17:45 UTC 2017
kill -USR1 7578
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7578 killed at Wed May 10 12:17:45 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7646 >/dev/null 2>/dev/null
selfserv_9505 with PID 7646 found at Wed May 10 12:17:45 UTC 2017
selfserv_9505 with PID 7646 started at Wed May 10 12:17:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8127: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7646 at Wed May 10 12:17:46 UTC 2017
kill -USR1 7646
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7646 killed at Wed May 10 12:17:46 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7702 >/dev/null 2>/dev/null
selfserv_9505 with PID 7702 found at Wed May 10 12:17:46 UTC 2017
selfserv_9505 with PID 7702 started at Wed May 10 12:17:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8128: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7702 at Wed May 10 12:17:46 UTC 2017
kill -USR1 7702
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7702 killed at Wed May 10 12:17:46 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7758 >/dev/null 2>/dev/null
selfserv_9505 with PID 7758 found at Wed May 10 12:17:46 UTC 2017
selfserv_9505 with PID 7758 started at Wed May 10 12:17:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8129: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7758 at Wed May 10 12:17:47 UTC 2017
kill -USR1 7758
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7758 killed at Wed May 10 12:17:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7826 >/dev/null 2>/dev/null
selfserv_9505 with PID 7826 found at Wed May 10 12:17:47 UTC 2017
selfserv_9505 with PID 7826 started at Wed May 10 12:17:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8130: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7826 at Wed May 10 12:17:47 UTC 2017
kill -USR1 7826
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7826 killed at Wed May 10 12:17:47 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7882 >/dev/null 2>/dev/null
selfserv_9505 with PID 7882 found at Wed May 10 12:17:47 UTC 2017
selfserv_9505 with PID 7882 started at Wed May 10 12:17:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8131: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 7882 at Wed May 10 12:17:48 UTC 2017
kill -USR1 7882
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7882 killed at Wed May 10 12:17:48 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 7938 >/dev/null 2>/dev/null
selfserv_9505 with PID 7938 found at Wed May 10 12:17:48 UTC 2017
selfserv_9505 with PID 7938 started at Wed May 10 12:17:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8132: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 7938 at Wed May 10 12:17:48 UTC 2017
kill -USR1 7938
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 7938 killed at Wed May 10 12:17:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8006 >/dev/null 2>/dev/null
selfserv_9505 with PID 8006 found at Wed May 10 12:17:48 UTC 2017
selfserv_9505 with PID 8006 started at Wed May 10 12:17:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8133: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8006 at Wed May 10 12:17:49 UTC 2017
kill -USR1 8006
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8006 killed at Wed May 10 12:17:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8062 >/dev/null 2>/dev/null
selfserv_9505 with PID 8062 found at Wed May 10 12:17:49 UTC 2017
selfserv_9505 with PID 8062 started at Wed May 10 12:17:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8134: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8062 at Wed May 10 12:17:49 UTC 2017
kill -USR1 8062
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8062 killed at Wed May 10 12:17:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8118 >/dev/null 2>/dev/null
selfserv_9505 with PID 8118 found at Wed May 10 12:17:49 UTC 2017
selfserv_9505 with PID 8118 started at Wed May 10 12:17:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8135: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8118 at Wed May 10 12:17:50 UTC 2017
kill -USR1 8118
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8118 killed at Wed May 10 12:17:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8186 >/dev/null 2>/dev/null
selfserv_9505 with PID 8186 found at Wed May 10 12:17:50 UTC 2017
selfserv_9505 with PID 8186 started at Wed May 10 12:17:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8136: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8186 at Wed May 10 12:17:51 UTC 2017
kill -USR1 8186
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8186 killed at Wed May 10 12:17:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8242 >/dev/null 2>/dev/null
selfserv_9505 with PID 8242 found at Wed May 10 12:17:51 UTC 2017
selfserv_9505 with PID 8242 started at Wed May 10 12:17:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8137: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8242 at Wed May 10 12:17:51 UTC 2017
kill -USR1 8242
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8242 killed at Wed May 10 12:17:51 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8298 >/dev/null 2>/dev/null
selfserv_9505 with PID 8298 found at Wed May 10 12:17:51 UTC 2017
selfserv_9505 with PID 8298 started at Wed May 10 12:17:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8138: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8298 at Wed May 10 12:17:52 UTC 2017
kill -USR1 8298
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8298 killed at Wed May 10 12:17:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8366 >/dev/null 2>/dev/null
selfserv_9505 with PID 8366 found at Wed May 10 12:17:52 UTC 2017
selfserv_9505 with PID 8366 started at Wed May 10 12:17:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8139: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8366 at Wed May 10 12:17:52 UTC 2017
kill -USR1 8366
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8366 killed at Wed May 10 12:17:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8422 >/dev/null 2>/dev/null
selfserv_9505 with PID 8422 found at Wed May 10 12:17:52 UTC 2017
selfserv_9505 with PID 8422 started at Wed May 10 12:17:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8140: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8422 at Wed May 10 12:17:53 UTC 2017
kill -USR1 8422
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8422 killed at Wed May 10 12:17:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8478 >/dev/null 2>/dev/null
selfserv_9505 with PID 8478 found at Wed May 10 12:17:53 UTC 2017
selfserv_9505 with PID 8478 started at Wed May 10 12:17:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8141: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8478 at Wed May 10 12:17:54 UTC 2017
kill -USR1 8478
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8478 killed at Wed May 10 12:17:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8546 >/dev/null 2>/dev/null
selfserv_9505 with PID 8546 found at Wed May 10 12:17:54 UTC 2017
selfserv_9505 with PID 8546 started at Wed May 10 12:17:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8142: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8546 at Wed May 10 12:17:54 UTC 2017
kill -USR1 8546
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8546 killed at Wed May 10 12:17:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8602 >/dev/null 2>/dev/null
selfserv_9505 with PID 8602 found at Wed May 10 12:17:54 UTC 2017
selfserv_9505 with PID 8602 started at Wed May 10 12:17:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8143: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8602 at Wed May 10 12:17:55 UTC 2017
kill -USR1 8602
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8602 killed at Wed May 10 12:17:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8658 >/dev/null 2>/dev/null
selfserv_9505 with PID 8658 found at Wed May 10 12:17:55 UTC 2017
selfserv_9505 with PID 8658 started at Wed May 10 12:17:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8144: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8658 at Wed May 10 12:17:55 UTC 2017
kill -USR1 8658
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8658 killed at Wed May 10 12:17:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8726 >/dev/null 2>/dev/null
selfserv_9505 with PID 8726 found at Wed May 10 12:17:55 UTC 2017
selfserv_9505 with PID 8726 started at Wed May 10 12:17:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8145: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8726 at Wed May 10 12:17:56 UTC 2017
kill -USR1 8726
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8726 killed at Wed May 10 12:17:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8782 >/dev/null 2>/dev/null
selfserv_9505 with PID 8782 found at Wed May 10 12:17:56 UTC 2017
selfserv_9505 with PID 8782 started at Wed May 10 12:17:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8146: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8782 at Wed May 10 12:17:57 UTC 2017
kill -USR1 8782
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8782 killed at Wed May 10 12:17:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:17:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8838 >/dev/null 2>/dev/null
selfserv_9505 with PID 8838 found at Wed May 10 12:17:57 UTC 2017
selfserv_9505 with PID 8838 started at Wed May 10 12:17:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8147: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8838 at Wed May 10 12:17:57 UTC 2017
kill -USR1 8838
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8838 killed at Wed May 10 12:17:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8906 >/dev/null 2>/dev/null
selfserv_9505 with PID 8906 found at Wed May 10 12:17:57 UTC 2017
selfserv_9505 with PID 8906 started at Wed May 10 12:17:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8148: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8906 at Wed May 10 12:17:58 UTC 2017
kill -USR1 8906
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8906 killed at Wed May 10 12:17:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8962 >/dev/null 2>/dev/null
selfserv_9505 with PID 8962 found at Wed May 10 12:17:58 UTC 2017
selfserv_9505 with PID 8962 started at Wed May 10 12:17:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8149: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 8962 at Wed May 10 12:17:58 UTC 2017
kill -USR1 8962
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8962 killed at Wed May 10 12:17:58 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:17:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9019 >/dev/null 2>/dev/null
selfserv_9505 with PID 9019 found at Wed May 10 12:17:58 UTC 2017
selfserv_9505 with PID 9019 started at Wed May 10 12:17:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8150: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9019 at Wed May 10 12:17:59 UTC 2017
kill -USR1 9019
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9019 killed at Wed May 10 12:17:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:17:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:17:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9088 >/dev/null 2>/dev/null
selfserv_9505 with PID 9088 found at Wed May 10 12:17:59 UTC 2017
selfserv_9505 with PID 9088 started at Wed May 10 12:17:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8151: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9088 at Wed May 10 12:18:00 UTC 2017
kill -USR1 9088
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9088 killed at Wed May 10 12:18:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9144 >/dev/null 2>/dev/null
selfserv_9505 with PID 9144 found at Wed May 10 12:18:00 UTC 2017
selfserv_9505 with PID 9144 started at Wed May 10 12:18:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8152: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9144 at Wed May 10 12:18:00 UTC 2017
kill -USR1 9144
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9144 killed at Wed May 10 12:18:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9200 >/dev/null 2>/dev/null
selfserv_9505 with PID 9200 found at Wed May 10 12:18:00 UTC 2017
selfserv_9505 with PID 9200 started at Wed May 10 12:18:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8153: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9200 at Wed May 10 12:18:01 UTC 2017
kill -USR1 9200
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9200 killed at Wed May 10 12:18:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9268 >/dev/null 2>/dev/null
selfserv_9505 with PID 9268 found at Wed May 10 12:18:01 UTC 2017
selfserv_9505 with PID 9268 started at Wed May 10 12:18:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8154: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9268 at Wed May 10 12:18:01 UTC 2017
kill -USR1 9268
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9268 killed at Wed May 10 12:18:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9324 >/dev/null 2>/dev/null
selfserv_9505 with PID 9324 found at Wed May 10 12:18:02 UTC 2017
selfserv_9505 with PID 9324 started at Wed May 10 12:18:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8155: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9324 at Wed May 10 12:18:02 UTC 2017
kill -USR1 9324
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9324 killed at Wed May 10 12:18:02 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9380 >/dev/null 2>/dev/null
selfserv_9505 with PID 9380 found at Wed May 10 12:18:02 UTC 2017
selfserv_9505 with PID 9380 started at Wed May 10 12:18:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8156: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9380 at Wed May 10 12:18:03 UTC 2017
kill -USR1 9380
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9380 killed at Wed May 10 12:18:03 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9449 >/dev/null 2>/dev/null
selfserv_9505 with PID 9449 found at Wed May 10 12:18:03 UTC 2017
selfserv_9505 with PID 9449 started at Wed May 10 12:18:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8157: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9449 at Wed May 10 12:18:03 UTC 2017
kill -USR1 9449
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9449 killed at Wed May 10 12:18:03 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9505 >/dev/null 2>/dev/null
selfserv_9505 with PID 9505 found at Wed May 10 12:18:03 UTC 2017
selfserv_9505 with PID 9505 started at Wed May 10 12:18:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8158: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 9505 at Wed May 10 12:18:04 UTC 2017
kill -USR1 9505
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9505 killed at Wed May 10 12:18:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9561 >/dev/null 2>/dev/null
selfserv_9505 with PID 9561 found at Wed May 10 12:18:04 UTC 2017
selfserv_9505 with PID 9561 started at Wed May 10 12:18:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8159: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9561 at Wed May 10 12:18:05 UTC 2017
kill -USR1 9561
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9561 killed at Wed May 10 12:18:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9629 >/dev/null 2>/dev/null
selfserv_9505 with PID 9629 found at Wed May 10 12:18:05 UTC 2017
selfserv_9505 with PID 9629 started at Wed May 10 12:18:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8160: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9629 at Wed May 10 12:18:05 UTC 2017
kill -USR1 9629
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9629 killed at Wed May 10 12:18:05 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9686 >/dev/null 2>/dev/null
selfserv_9505 with PID 9686 found at Wed May 10 12:18:05 UTC 2017
selfserv_9505 with PID 9686 started at Wed May 10 12:18:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8161: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9686 at Wed May 10 12:18:06 UTC 2017
kill -USR1 9686
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9686 killed at Wed May 10 12:18:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9742 >/dev/null 2>/dev/null
selfserv_9505 with PID 9742 found at Wed May 10 12:18:06 UTC 2017
selfserv_9505 with PID 9742 started at Wed May 10 12:18:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8162: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9742 at Wed May 10 12:18:06 UTC 2017
kill -USR1 9742
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9742 killed at Wed May 10 12:18:06 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9810 >/dev/null 2>/dev/null
selfserv_9505 with PID 9810 found at Wed May 10 12:18:06 UTC 2017
selfserv_9505 with PID 9810 started at Wed May 10 12:18:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8163: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9810 at Wed May 10 12:18:07 UTC 2017
kill -USR1 9810
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9810 killed at Wed May 10 12:18:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9866 >/dev/null 2>/dev/null
selfserv_9505 with PID 9866 found at Wed May 10 12:18:07 UTC 2017
selfserv_9505 with PID 9866 started at Wed May 10 12:18:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8164: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9866 at Wed May 10 12:18:08 UTC 2017
kill -USR1 9866
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9866 killed at Wed May 10 12:18:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9922 >/dev/null 2>/dev/null
selfserv_9505 with PID 9922 found at Wed May 10 12:18:08 UTC 2017
selfserv_9505 with PID 9922 started at Wed May 10 12:18:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8165: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9922 at Wed May 10 12:18:08 UTC 2017
kill -USR1 9922
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9922 killed at Wed May 10 12:18:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9990 >/dev/null 2>/dev/null
selfserv_9505 with PID 9990 found at Wed May 10 12:18:08 UTC 2017
selfserv_9505 with PID 9990 started at Wed May 10 12:18:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8166: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9990 at Wed May 10 12:18:09 UTC 2017
kill -USR1 9990
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9990 killed at Wed May 10 12:18:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10046 >/dev/null 2>/dev/null
selfserv_9505 with PID 10046 found at Wed May 10 12:18:09 UTC 2017
selfserv_9505 with PID 10046 started at Wed May 10 12:18:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8167: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10046 at Wed May 10 12:18:09 UTC 2017
kill -USR1 10046
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10046 killed at Wed May 10 12:18:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10102 >/dev/null 2>/dev/null
selfserv_9505 with PID 10102 found at Wed May 10 12:18:10 UTC 2017
selfserv_9505 with PID 10102 started at Wed May 10 12:18:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8168: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10102 at Wed May 10 12:18:10 UTC 2017
kill -USR1 10102
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10102 killed at Wed May 10 12:18:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10170 >/dev/null 2>/dev/null
selfserv_9505 with PID 10170 found at Wed May 10 12:18:10 UTC 2017
selfserv_9505 with PID 10170 started at Wed May 10 12:18:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8169: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10170 at Wed May 10 12:18:11 UTC 2017
kill -USR1 10170
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10170 killed at Wed May 10 12:18:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10226 >/dev/null 2>/dev/null
selfserv_9505 with PID 10226 found at Wed May 10 12:18:11 UTC 2017
selfserv_9505 with PID 10226 started at Wed May 10 12:18:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8170: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10226 at Wed May 10 12:18:11 UTC 2017
kill -USR1 10226
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10226 killed at Wed May 10 12:18:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10282 >/dev/null 2>/dev/null
selfserv_9505 with PID 10282 found at Wed May 10 12:18:11 UTC 2017
selfserv_9505 with PID 10282 started at Wed May 10 12:18:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8171: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10282 at Wed May 10 12:18:12 UTC 2017
kill -USR1 10282
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10282 killed at Wed May 10 12:18:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9505 with PID 10350 found at Wed May 10 12:18:12 UTC 2017
selfserv_9505 with PID 10350 started at Wed May 10 12:18:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8172: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10350 at Wed May 10 12:18:12 UTC 2017
kill -USR1 10350
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10350 killed at Wed May 10 12:18:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10406 >/dev/null 2>/dev/null
selfserv_9505 with PID 10406 found at Wed May 10 12:18:12 UTC 2017
selfserv_9505 with PID 10406 started at Wed May 10 12:18:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8173: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10406 at Wed May 10 12:18:13 UTC 2017
kill -USR1 10406
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10406 killed at Wed May 10 12:18:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10462 >/dev/null 2>/dev/null
selfserv_9505 with PID 10462 found at Wed May 10 12:18:13 UTC 2017
selfserv_9505 with PID 10462 started at Wed May 10 12:18:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8174: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10462 at Wed May 10 12:18:13 UTC 2017
kill -USR1 10462
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10462 killed at Wed May 10 12:18:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10530 >/dev/null 2>/dev/null
selfserv_9505 with PID 10530 found at Wed May 10 12:18:13 UTC 2017
selfserv_9505 with PID 10530 started at Wed May 10 12:18:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8175: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10530 at Wed May 10 12:18:14 UTC 2017
kill -USR1 10530
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10530 killed at Wed May 10 12:18:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10587 >/dev/null 2>/dev/null
selfserv_9505 with PID 10587 found at Wed May 10 12:18:14 UTC 2017
selfserv_9505 with PID 10587 started at Wed May 10 12:18:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8176: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 10587 at Wed May 10 12:18:15 UTC 2017
kill -USR1 10587
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10587 killed at Wed May 10 12:18:15 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10646 >/dev/null 2>/dev/null
selfserv_9505 with PID 10646 found at Wed May 10 12:18:15 UTC 2017
selfserv_9505 with PID 10646 started at Wed May 10 12:18:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8177: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10646 at Wed May 10 12:18:15 UTC 2017
kill -USR1 10646
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10646 killed at Wed May 10 12:18:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10714 >/dev/null 2>/dev/null
selfserv_9505 with PID 10714 found at Wed May 10 12:18:15 UTC 2017
selfserv_9505 with PID 10714 started at Wed May 10 12:18:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8178: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10714 at Wed May 10 12:18:16 UTC 2017
kill -USR1 10714
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10714 killed at Wed May 10 12:18:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10770 >/dev/null 2>/dev/null
selfserv_9505 with PID 10770 found at Wed May 10 12:18:16 UTC 2017
selfserv_9505 with PID 10770 started at Wed May 10 12:18:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8179: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10770 at Wed May 10 12:18:16 UTC 2017
kill -USR1 10770
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10770 killed at Wed May 10 12:18:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:18:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10826 >/dev/null 2>/dev/null
selfserv_9505 with PID 10826 found at Wed May 10 12:18:16 UTC 2017
selfserv_9505 with PID 10826 started at Wed May 10 12:18:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8180: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10826 at Wed May 10 12:18:17 UTC 2017
kill -USR1 10826
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10826 killed at Wed May 10 12:18:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10894 >/dev/null 2>/dev/null
selfserv_9505 with PID 10894 found at Wed May 10 12:18:17 UTC 2017
selfserv_9505 with PID 10894 started at Wed May 10 12:18:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8181: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10894 at Wed May 10 12:18:17 UTC 2017
kill -USR1 10894
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10894 killed at Wed May 10 12:18:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 10950 >/dev/null 2>/dev/null
selfserv_9505 with PID 10950 found at Wed May 10 12:18:17 UTC 2017
selfserv_9505 with PID 10950 started at Wed May 10 12:18:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8182: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 10950 at Wed May 10 12:18:18 UTC 2017
kill -USR1 10950
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 10950 killed at Wed May 10 12:18:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11006 >/dev/null 2>/dev/null
selfserv_9505 with PID 11006 found at Wed May 10 12:18:18 UTC 2017
selfserv_9505 with PID 11006 started at Wed May 10 12:18:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8183: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 11006 at Wed May 10 12:18:18 UTC 2017
kill -USR1 11006
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11006 killed at Wed May 10 12:18:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11074 >/dev/null 2>/dev/null
selfserv_9505 with PID 11074 found at Wed May 10 12:18:18 UTC 2017
selfserv_9505 with PID 11074 started at Wed May 10 12:18:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8184: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 11074 at Wed May 10 12:18:19 UTC 2017
kill -USR1 11074
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11074 killed at Wed May 10 12:18:19 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11130 >/dev/null 2>/dev/null
selfserv_9505 with PID 11130 found at Wed May 10 12:18:19 UTC 2017
selfserv_9505 with PID 11130 started at Wed May 10 12:18:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8185: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11130 at Wed May 10 12:18:20 UTC 2017
kill -USR1 11130
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11130 killed at Wed May 10 12:18:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11186 >/dev/null 2>/dev/null
selfserv_9505 with PID 11186 found at Wed May 10 12:18:20 UTC 2017
selfserv_9505 with PID 11186 started at Wed May 10 12:18:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8186: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 11186 at Wed May 10 12:18:20 UTC 2017
kill -USR1 11186
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11186 killed at Wed May 10 12:18:20 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11263 >/dev/null 2>/dev/null
selfserv_9505 with PID 11263 found at Wed May 10 12:18:20 UTC 2017
selfserv_9505 with PID 11263 started at Wed May 10 12:18:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8187: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11263 at Wed May 10 12:18:21 UTC 2017
kill -USR1 11263
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11263 killed at Wed May 10 12:18:21 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11319 >/dev/null 2>/dev/null
selfserv_9505 with PID 11319 found at Wed May 10 12:18:21 UTC 2017
selfserv_9505 with PID 11319 started at Wed May 10 12:18:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8188: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11319 at Wed May 10 12:18:21 UTC 2017
kill -USR1 11319
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11319 killed at Wed May 10 12:18:21 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11375 >/dev/null 2>/dev/null
selfserv_9505 with PID 11375 found at Wed May 10 12:18:21 UTC 2017
selfserv_9505 with PID 11375 started at Wed May 10 12:18:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8189: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11375 at Wed May 10 12:18:22 UTC 2017
kill -USR1 11375
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11375 killed at Wed May 10 12:18:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11443 >/dev/null 2>/dev/null
selfserv_9505 with PID 11443 found at Wed May 10 12:18:22 UTC 2017
selfserv_9505 with PID 11443 started at Wed May 10 12:18:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8190: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11443 at Wed May 10 12:18:22 UTC 2017
kill -USR1 11443
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11443 killed at Wed May 10 12:18:22 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11500 >/dev/null 2>/dev/null
selfserv_9505 with PID 11500 found at Wed May 10 12:18:22 UTC 2017
selfserv_9505 with PID 11500 started at Wed May 10 12:18:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8191: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11500 at Wed May 10 12:18:23 UTC 2017
kill -USR1 11500
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11500 killed at Wed May 10 12:18:23 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11556 >/dev/null 2>/dev/null
selfserv_9505 with PID 11556 found at Wed May 10 12:18:23 UTC 2017
selfserv_9505 with PID 11556 started at Wed May 10 12:18:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8192: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11556 at Wed May 10 12:18:24 UTC 2017
kill -USR1 11556
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11556 killed at Wed May 10 12:18:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11624 >/dev/null 2>/dev/null
selfserv_9505 with PID 11624 found at Wed May 10 12:18:24 UTC 2017
selfserv_9505 with PID 11624 started at Wed May 10 12:18:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8193: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11624 at Wed May 10 12:18:24 UTC 2017
kill -USR1 11624
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11624 killed at Wed May 10 12:18:24 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11680 >/dev/null 2>/dev/null
selfserv_9505 with PID 11680 found at Wed May 10 12:18:24 UTC 2017
selfserv_9505 with PID 11680 started at Wed May 10 12:18:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8194: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11680 at Wed May 10 12:18:25 UTC 2017
kill -USR1 11680
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11680 killed at Wed May 10 12:18:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11736 >/dev/null 2>/dev/null
selfserv_9505 with PID 11736 found at Wed May 10 12:18:25 UTC 2017
selfserv_9505 with PID 11736 started at Wed May 10 12:18:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8195: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11736 at Wed May 10 12:18:25 UTC 2017
kill -USR1 11736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11736 killed at Wed May 10 12:18:25 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11804 >/dev/null 2>/dev/null
selfserv_9505 with PID 11804 found at Wed May 10 12:18:25 UTC 2017
selfserv_9505 with PID 11804 started at Wed May 10 12:18:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8196: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11804 at Wed May 10 12:18:26 UTC 2017
kill -USR1 11804
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11804 killed at Wed May 10 12:18:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11860 >/dev/null 2>/dev/null
selfserv_9505 with PID 11860 found at Wed May 10 12:18:26 UTC 2017
selfserv_9505 with PID 11860 started at Wed May 10 12:18:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8197: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11860 at Wed May 10 12:18:26 UTC 2017
kill -USR1 11860
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11860 killed at Wed May 10 12:18:26 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11916 >/dev/null 2>/dev/null
selfserv_9505 with PID 11916 found at Wed May 10 12:18:26 UTC 2017
selfserv_9505 with PID 11916 started at Wed May 10 12:18:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8198: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 11916 at Wed May 10 12:18:27 UTC 2017
kill -USR1 11916
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11916 killed at Wed May 10 12:18:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11984 >/dev/null 2>/dev/null
selfserv_9505 with PID 11984 found at Wed May 10 12:18:27 UTC 2017
selfserv_9505 with PID 11984 started at Wed May 10 12:18:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8199: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 11984 at Wed May 10 12:18:27 UTC 2017
kill -USR1 11984
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11984 killed at Wed May 10 12:18:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12040 >/dev/null 2>/dev/null
selfserv_9505 with PID 12040 found at Wed May 10 12:18:27 UTC 2017
selfserv_9505 with PID 12040 started at Wed May 10 12:18:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8200: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12040 at Wed May 10 12:18:28 UTC 2017
kill -USR1 12040
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12040 killed at Wed May 10 12:18:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12096 >/dev/null 2>/dev/null
selfserv_9505 with PID 12096 found at Wed May 10 12:18:28 UTC 2017
selfserv_9505 with PID 12096 started at Wed May 10 12:18:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8201: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12096 at Wed May 10 12:18:28 UTC 2017
kill -USR1 12096
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12096 killed at Wed May 10 12:18:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12164 >/dev/null 2>/dev/null
selfserv_9505 with PID 12164 found at Wed May 10 12:18:28 UTC 2017
selfserv_9505 with PID 12164 started at Wed May 10 12:18:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8202: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12164 at Wed May 10 12:18:29 UTC 2017
kill -USR1 12164
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12164 killed at Wed May 10 12:18:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12220 >/dev/null 2>/dev/null
selfserv_9505 with PID 12220 found at Wed May 10 12:18:29 UTC 2017
selfserv_9505 with PID 12220 started at Wed May 10 12:18:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8203: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12220 at Wed May 10 12:18:30 UTC 2017
kill -USR1 12220
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12220 killed at Wed May 10 12:18:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12276 >/dev/null 2>/dev/null
selfserv_9505 with PID 12276 found at Wed May 10 12:18:30 UTC 2017
selfserv_9505 with PID 12276 started at Wed May 10 12:18:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8204: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12276 at Wed May 10 12:18:30 UTC 2017
kill -USR1 12276
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12276 killed at Wed May 10 12:18:30 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12344 >/dev/null 2>/dev/null
selfserv_9505 with PID 12344 found at Wed May 10 12:18:30 UTC 2017
selfserv_9505 with PID 12344 started at Wed May 10 12:18:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8205: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12344 at Wed May 10 12:18:31 UTC 2017
kill -USR1 12344
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12344 killed at Wed May 10 12:18:31 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12400 >/dev/null 2>/dev/null
selfserv_9505 with PID 12400 found at Wed May 10 12:18:31 UTC 2017
selfserv_9505 with PID 12400 started at Wed May 10 12:18:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8206: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12400 at Wed May 10 12:18:31 UTC 2017
kill -USR1 12400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12400 killed at Wed May 10 12:18:31 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12456 >/dev/null 2>/dev/null
selfserv_9505 with PID 12456 found at Wed May 10 12:18:31 UTC 2017
selfserv_9505 with PID 12456 started at Wed May 10 12:18:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8207: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12456 at Wed May 10 12:18:32 UTC 2017
kill -USR1 12456
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12456 killed at Wed May 10 12:18:32 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12524 >/dev/null 2>/dev/null
selfserv_9505 with PID 12524 found at Wed May 10 12:18:32 UTC 2017
selfserv_9505 with PID 12524 started at Wed May 10 12:18:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8208: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12524 at Wed May 10 12:18:32 UTC 2017
kill -USR1 12524
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12524 killed at Wed May 10 12:18:32 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12580 >/dev/null 2>/dev/null
selfserv_9505 with PID 12580 found at Wed May 10 12:18:32 UTC 2017
selfserv_9505 with PID 12580 started at Wed May 10 12:18:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8209: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12580 at Wed May 10 12:18:33 UTC 2017
kill -USR1 12580
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12580 killed at Wed May 10 12:18:33 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12636 >/dev/null 2>/dev/null
selfserv_9505 with PID 12636 found at Wed May 10 12:18:33 UTC 2017
selfserv_9505 with PID 12636 started at Wed May 10 12:18:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8210: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 12636 at Wed May 10 12:18:33 UTC 2017
kill -USR1 12636
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12636 killed at Wed May 10 12:18:33 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12704 >/dev/null 2>/dev/null
selfserv_9505 with PID 12704 found at Wed May 10 12:18:33 UTC 2017
selfserv_9505 with PID 12704 started at Wed May 10 12:18:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8211: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12704 at Wed May 10 12:18:34 UTC 2017
kill -USR1 12704
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12704 killed at Wed May 10 12:18:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12760 >/dev/null 2>/dev/null
selfserv_9505 with PID 12760 found at Wed May 10 12:18:34 UTC 2017
selfserv_9505 with PID 12760 started at Wed May 10 12:18:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8212: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12760 at Wed May 10 12:18:34 UTC 2017
kill -USR1 12760
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12760 killed at Wed May 10 12:18:34 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12816 >/dev/null 2>/dev/null
selfserv_9505 with PID 12816 found at Wed May 10 12:18:34 UTC 2017
selfserv_9505 with PID 12816 started at Wed May 10 12:18:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8213: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12816 at Wed May 10 12:18:35 UTC 2017
kill -USR1 12816
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12816 killed at Wed May 10 12:18:35 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12884 >/dev/null 2>/dev/null
selfserv_9505 with PID 12884 found at Wed May 10 12:18:35 UTC 2017
selfserv_9505 with PID 12884 started at Wed May 10 12:18:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8214: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 12884 at Wed May 10 12:18:36 UTC 2017
kill -USR1 12884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12884 killed at Wed May 10 12:18:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12940 >/dev/null 2>/dev/null
selfserv_9505 with PID 12940 found at Wed May 10 12:18:36 UTC 2017
selfserv_9505 with PID 12940 started at Wed May 10 12:18:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8215: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 12940 at Wed May 10 12:18:36 UTC 2017
kill -USR1 12940
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12940 killed at Wed May 10 12:18:36 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12996 >/dev/null 2>/dev/null
selfserv_9505 with PID 12996 found at Wed May 10 12:18:36 UTC 2017
selfserv_9505 with PID 12996 started at Wed May 10 12:18:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8216: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 12996 at Wed May 10 12:18:37 UTC 2017
kill -USR1 12996
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12996 killed at Wed May 10 12:18:37 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13064 >/dev/null 2>/dev/null
selfserv_9505 with PID 13064 found at Wed May 10 12:18:37 UTC 2017
selfserv_9505 with PID 13064 started at Wed May 10 12:18:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8217: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13064 at Wed May 10 12:18:38 UTC 2017
kill -USR1 13064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13064 killed at Wed May 10 12:18:38 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13120 >/dev/null 2>/dev/null
selfserv_9505 with PID 13120 found at Wed May 10 12:18:38 UTC 2017
selfserv_9505 with PID 13120 started at Wed May 10 12:18:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8218: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13120 at Wed May 10 12:18:38 UTC 2017
kill -USR1 13120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13120 killed at Wed May 10 12:18:38 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13178 >/dev/null 2>/dev/null
selfserv_9505 with PID 13178 found at Wed May 10 12:18:38 UTC 2017
selfserv_9505 with PID 13178 started at Wed May 10 12:18:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8219: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13178 at Wed May 10 12:18:39 UTC 2017
kill -USR1 13178
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13178 killed at Wed May 10 12:18:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13246 >/dev/null 2>/dev/null
selfserv_9505 with PID 13246 found at Wed May 10 12:18:39 UTC 2017
selfserv_9505 with PID 13246 started at Wed May 10 12:18:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8220: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13246 at Wed May 10 12:18:39 UTC 2017
kill -USR1 13246
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13246 killed at Wed May 10 12:18:39 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13302 >/dev/null 2>/dev/null
selfserv_9505 with PID 13302 found at Wed May 10 12:18:39 UTC 2017
selfserv_9505 with PID 13302 started at Wed May 10 12:18:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8221: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 13302 at Wed May 10 12:18:40 UTC 2017
kill -USR1 13302
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13302 killed at Wed May 10 12:18:40 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13358 >/dev/null 2>/dev/null
selfserv_9505 with PID 13358 found at Wed May 10 12:18:40 UTC 2017
selfserv_9505 with PID 13358 started at Wed May 10 12:18:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8222: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13358 at Wed May 10 12:18:41 UTC 2017
kill -USR1 13358
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13358 killed at Wed May 10 12:18:41 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13426 >/dev/null 2>/dev/null
selfserv_9505 with PID 13426 found at Wed May 10 12:18:41 UTC 2017
selfserv_9505 with PID 13426 started at Wed May 10 12:18:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8223: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 13426 at Wed May 10 12:18:41 UTC 2017
kill -USR1 13426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13426 killed at Wed May 10 12:18:41 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13482 >/dev/null 2>/dev/null
selfserv_9505 with PID 13482 found at Wed May 10 12:18:41 UTC 2017
selfserv_9505 with PID 13482 started at Wed May 10 12:18:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8224: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 13482 at Wed May 10 12:18:42 UTC 2017
kill -USR1 13482
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13482 killed at Wed May 10 12:18:42 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13538 >/dev/null 2>/dev/null
selfserv_9505 with PID 13538 found at Wed May 10 12:18:42 UTC 2017
selfserv_9505 with PID 13538 started at Wed May 10 12:18:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8225: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 13538 at Wed May 10 12:18:43 UTC 2017
kill -USR1 13538
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13538 killed at Wed May 10 12:18:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13607 >/dev/null 2>/dev/null
selfserv_9505 with PID 13607 found at Wed May 10 12:18:43 UTC 2017
selfserv_9505 with PID 13607 started at Wed May 10 12:18:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8226: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13607 at Wed May 10 12:18:43 UTC 2017
kill -USR1 13607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13607 killed at Wed May 10 12:18:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13663 >/dev/null 2>/dev/null
selfserv_9505 with PID 13663 found at Wed May 10 12:18:43 UTC 2017
selfserv_9505 with PID 13663 started at Wed May 10 12:18:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8227: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 13663 at Wed May 10 12:18:44 UTC 2017
kill -USR1 13663
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13663 killed at Wed May 10 12:18:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13719 >/dev/null 2>/dev/null
selfserv_9505 with PID 13719 found at Wed May 10 12:18:44 UTC 2017
selfserv_9505 with PID 13719 started at Wed May 10 12:18:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8228: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13719 at Wed May 10 12:18:45 UTC 2017
kill -USR1 13719
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13719 killed at Wed May 10 12:18:45 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13787 >/dev/null 2>/dev/null
selfserv_9505 with PID 13787 found at Wed May 10 12:18:45 UTC 2017
selfserv_9505 with PID 13787 started at Wed May 10 12:18:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8229: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13787 at Wed May 10 12:18:45 UTC 2017
kill -USR1 13787
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13787 killed at Wed May 10 12:18:45 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13843 >/dev/null 2>/dev/null
selfserv_9505 with PID 13843 found at Wed May 10 12:18:45 UTC 2017
selfserv_9505 with PID 13843 started at Wed May 10 12:18:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8230: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13843 at Wed May 10 12:18:46 UTC 2017
kill -USR1 13843
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13843 killed at Wed May 10 12:18:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13899 >/dev/null 2>/dev/null
selfserv_9505 with PID 13899 found at Wed May 10 12:18:46 UTC 2017
selfserv_9505 with PID 13899 started at Wed May 10 12:18:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8231: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13899 at Wed May 10 12:18:46 UTC 2017
kill -USR1 13899
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13899 killed at Wed May 10 12:18:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 13967 >/dev/null 2>/dev/null
selfserv_9505 with PID 13967 found at Wed May 10 12:18:47 UTC 2017
selfserv_9505 with PID 13967 started at Wed May 10 12:18:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8232: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 13967 at Wed May 10 12:18:47 UTC 2017
kill -USR1 13967
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 13967 killed at Wed May 10 12:18:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14023 >/dev/null 2>/dev/null
selfserv_9505 with PID 14023 found at Wed May 10 12:18:47 UTC 2017
selfserv_9505 with PID 14023 started at Wed May 10 12:18:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8233: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 14023 at Wed May 10 12:18:48 UTC 2017
kill -USR1 14023
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14023 killed at Wed May 10 12:18:48 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14079 >/dev/null 2>/dev/null
selfserv_9505 with PID 14079 found at Wed May 10 12:18:48 UTC 2017
selfserv_9505 with PID 14079 started at Wed May 10 12:18:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8234: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14079 at Wed May 10 12:18:48 UTC 2017
kill -USR1 14079
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14079 killed at Wed May 10 12:18:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14147 >/dev/null 2>/dev/null
selfserv_9505 with PID 14147 found at Wed May 10 12:18:49 UTC 2017
selfserv_9505 with PID 14147 started at Wed May 10 12:18:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8235: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 14147 at Wed May 10 12:18:49 UTC 2017
kill -USR1 14147
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14147 killed at Wed May 10 12:18:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14203 >/dev/null 2>/dev/null
selfserv_9505 with PID 14203 found at Wed May 10 12:18:49 UTC 2017
selfserv_9505 with PID 14203 started at Wed May 10 12:18:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8236: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 14203 at Wed May 10 12:18:50 UTC 2017
kill -USR1 14203
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14203 killed at Wed May 10 12:18:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14259 >/dev/null 2>/dev/null
selfserv_9505 with PID 14259 found at Wed May 10 12:18:50 UTC 2017
selfserv_9505 with PID 14259 started at Wed May 10 12:18:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8237: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 14259 at Wed May 10 12:18:50 UTC 2017
kill -USR1 14259
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14259 killed at Wed May 10 12:18:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14327 >/dev/null 2>/dev/null
selfserv_9505 with PID 14327 found at Wed May 10 12:18:50 UTC 2017
selfserv_9505 with PID 14327 started at Wed May 10 12:18:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8238: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14327 at Wed May 10 12:18:51 UTC 2017
kill -USR1 14327
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14327 killed at Wed May 10 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14383 >/dev/null 2>/dev/null
selfserv_9505 with PID 14383 found at Wed May 10 12:18:51 UTC 2017
selfserv_9505 with PID 14383 started at Wed May 10 12:18:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8239: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 14383 at Wed May 10 12:18:51 UTC 2017
kill -USR1 14383
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14383 killed at Wed May 10 12:18:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14439 >/dev/null 2>/dev/null
selfserv_9505 with PID 14439 found at Wed May 10 12:18:51 UTC 2017
selfserv_9505 with PID 14439 started at Wed May 10 12:18:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8240: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14439 at Wed May 10 12:18:52 UTC 2017
kill -USR1 14439
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14439 killed at Wed May 10 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14507 >/dev/null 2>/dev/null
selfserv_9505 with PID 14507 found at Wed May 10 12:18:52 UTC 2017
selfserv_9505 with PID 14507 started at Wed May 10 12:18:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8241: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14507 at Wed May 10 12:18:52 UTC 2017
kill -USR1 14507
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14507 killed at Wed May 10 12:18:52 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14563 >/dev/null 2>/dev/null
selfserv_9505 with PID 14563 found at Wed May 10 12:18:52 UTC 2017
selfserv_9505 with PID 14563 started at Wed May 10 12:18:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8242: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14563 at Wed May 10 12:18:53 UTC 2017
kill -USR1 14563
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14563 killed at Wed May 10 12:18:53 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:18:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14619 >/dev/null 2>/dev/null
selfserv_9505 with PID 14619 found at Wed May 10 12:18:53 UTC 2017
selfserv_9505 with PID 14619 started at Wed May 10 12:18:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8243: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14619 at Wed May 10 12:18:54 UTC 2017
kill -USR1 14619
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14619 killed at Wed May 10 12:18:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14687 >/dev/null 2>/dev/null
selfserv_9505 with PID 14687 found at Wed May 10 12:18:54 UTC 2017
selfserv_9505 with PID 14687 started at Wed May 10 12:18:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8244: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14687 at Wed May 10 12:18:54 UTC 2017
kill -USR1 14687
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14687 killed at Wed May 10 12:18:54 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14743 >/dev/null 2>/dev/null
selfserv_9505 with PID 14743 found at Wed May 10 12:18:54 UTC 2017
selfserv_9505 with PID 14743 started at Wed May 10 12:18:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8245: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 14743 at Wed May 10 12:18:55 UTC 2017
kill -USR1 14743
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14743 killed at Wed May 10 12:18:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:18:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14799 >/dev/null 2>/dev/null
selfserv_9505 with PID 14799 found at Wed May 10 12:18:55 UTC 2017
selfserv_9505 with PID 14799 started at Wed May 10 12:18:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8246: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14799 at Wed May 10 12:18:55 UTC 2017
kill -USR1 14799
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14799 killed at Wed May 10 12:18:55 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9505 starting at Wed May 10 12:18:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:18:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:55 UTC 2017
selfserv_9505 with PID 14862 started at Wed May 10 12:18:55 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:56 UTC 2017
ssl.sh: #8247: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:56 UTC 2017
ssl.sh: #8248: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:56 UTC 2017
ssl.sh: #8249: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:57 UTC 2017
ssl.sh: #8250: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:57 UTC 2017
ssl.sh: #8251: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:57 UTC 2017
ssl.sh: #8252: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:57 UTC 2017
ssl.sh: #8253: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:58 UTC 2017
ssl.sh: #8254: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:58 UTC 2017
ssl.sh: #8255: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:58 UTC 2017
ssl.sh: #8256: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:59 UTC 2017
ssl.sh: #8257: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:59 UTC 2017
ssl.sh: #8258: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:59 UTC 2017
ssl.sh: #8259: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:18:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8260: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:00 UTC 2017
ssl.sh: #8261: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:00 UTC 2017
ssl.sh: #8262: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:00 UTC 2017
ssl.sh: #8263: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:00 UTC 2017
ssl.sh: #8264: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:01 UTC 2017
ssl.sh: #8265: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:01 UTC 2017
ssl.sh: #8266: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:01 UTC 2017
ssl.sh: #8267: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:01 UTC 2017
ssl.sh: #8268: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:02 UTC 2017
ssl.sh: #8269: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:02 UTC 2017
ssl.sh: #8270: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:02 UTC 2017
ssl.sh: #8271: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:02 UTC 2017
ssl.sh: #8272: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:03 UTC 2017
ssl.sh: #8273: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8274: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:03 UTC 2017
ssl.sh: #8275: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:03 UTC 2017
ssl.sh: #8276: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:04 UTC 2017
ssl.sh: #8277: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:04 UTC 2017
ssl.sh: #8278: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:04 UTC 2017
ssl.sh: #8279: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:04 UTC 2017
ssl.sh: #8280: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:05 UTC 2017
ssl.sh: #8281: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:05 UTC 2017
ssl.sh: #8282: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:05 UTC 2017
ssl.sh: #8283: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:05 UTC 2017
ssl.sh: #8284: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:06 UTC 2017
ssl.sh: #8285: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:06 UTC 2017
ssl.sh: #8286: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14862 >/dev/null 2>/dev/null
selfserv_9505 with PID 14862 found at Wed May 10 12:19:06 UTC 2017
ssl.sh: #8287: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 14862 at Wed May 10 12:19:06 UTC 2017
kill -USR1 14862
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14862 killed at Wed May 10 12:19:06 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:19:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:19:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:06 UTC 2017
selfserv_9505 with PID 16284 started at Wed May 10 12:19:06 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:07 UTC 2017
ssl.sh: #8288: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:07 UTC 2017
ssl.sh: #8289: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:07 UTC 2017
ssl.sh: #8290: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:08 UTC 2017
ssl.sh: #8291: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:08 UTC 2017
ssl.sh: #8292: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:08 UTC 2017
ssl.sh: #8293: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:08 UTC 2017
ssl.sh: #8294: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:08 UTC 2017
ssl.sh: #8295: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:09 UTC 2017
ssl.sh: #8296: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:09 UTC 2017
ssl.sh: #8297: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:09 UTC 2017
ssl.sh: #8298: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:09 UTC 2017
ssl.sh: #8299: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:10 UTC 2017
ssl.sh: #8300: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8301: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:10 UTC 2017
ssl.sh: #8302: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:10 UTC 2017
ssl.sh: #8303: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:11 UTC 2017
ssl.sh: #8304: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:11 UTC 2017
ssl.sh: #8305: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:11 UTC 2017
ssl.sh: #8306: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:11 UTC 2017
ssl.sh: #8307: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:12 UTC 2017
ssl.sh: #8308: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:12 UTC 2017
ssl.sh: #8309: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:12 UTC 2017
ssl.sh: #8310: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:12 UTC 2017
ssl.sh: #8311: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:13 UTC 2017
ssl.sh: #8312: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:13 UTC 2017
ssl.sh: #8313: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:13 UTC 2017
ssl.sh: #8314: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8315: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:14 UTC 2017
ssl.sh: #8316: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:14 UTC 2017
ssl.sh: #8317: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:14 UTC 2017
ssl.sh: #8318: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:14 UTC 2017
ssl.sh: #8319: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:14 UTC 2017
ssl.sh: #8320: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:15 UTC 2017
ssl.sh: #8321: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:15 UTC 2017
ssl.sh: #8322: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:15 UTC 2017
ssl.sh: #8323: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:15 UTC 2017
ssl.sh: #8324: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:16 UTC 2017
ssl.sh: #8325: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:16 UTC 2017
ssl.sh: #8326: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:16 UTC 2017
ssl.sh: #8327: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16284 >/dev/null 2>/dev/null
selfserv_9505 with PID 16284 found at Wed May 10 12:19:16 UTC 2017
ssl.sh: #8328: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16284 at Wed May 10 12:19:16 UTC 2017
kill -USR1 16284
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16284 killed at Wed May 10 12:19:16 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:19:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:19:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:16 UTC 2017
selfserv_9505 with PID 17706 started at Wed May 10 12:19:16 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:17 UTC 2017
ssl.sh: #8329: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:17 UTC 2017
ssl.sh: #8330: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:17 UTC 2017
ssl.sh: #8331: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:18 UTC 2017
ssl.sh: #8332: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:18 UTC 2017
ssl.sh: #8333: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:18 UTC 2017
ssl.sh: #8334: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:19 UTC 2017
ssl.sh: #8335: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:19 UTC 2017
ssl.sh: #8336: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:19 UTC 2017
ssl.sh: #8337: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:19 UTC 2017
ssl.sh: #8338: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:20 UTC 2017
ssl.sh: #8339: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:20 UTC 2017
ssl.sh: #8340: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:20 UTC 2017
ssl.sh: #8341: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8342: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:21 UTC 2017
ssl.sh: #8343: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:21 UTC 2017
ssl.sh: #8344: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:21 UTC 2017
ssl.sh: #8345: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:22 UTC 2017
ssl.sh: #8346: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:22 UTC 2017
ssl.sh: #8347: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:22 UTC 2017
ssl.sh: #8348: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:22 UTC 2017
ssl.sh: #8349: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:23 UTC 2017
ssl.sh: #8350: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:23 UTC 2017
ssl.sh: #8351: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:23 UTC 2017
ssl.sh: #8352: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:23 UTC 2017
ssl.sh: #8353: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:24 UTC 2017
ssl.sh: #8354: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:24 UTC 2017
ssl.sh: #8355: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8356: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:25 UTC 2017
ssl.sh: #8357: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:25 UTC 2017
ssl.sh: #8358: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:25 UTC 2017
ssl.sh: #8359: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:25 UTC 2017
ssl.sh: #8360: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:26 UTC 2017
ssl.sh: #8361: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:26 UTC 2017
ssl.sh: #8362: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:26 UTC 2017
ssl.sh: #8363: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:26 UTC 2017
ssl.sh: #8364: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:27 UTC 2017
ssl.sh: #8365: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:27 UTC 2017
ssl.sh: #8366: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:27 UTC 2017
ssl.sh: #8367: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:27 UTC 2017
ssl.sh: #8368: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17706 >/dev/null 2>/dev/null
selfserv_9505 with PID 17706 found at Wed May 10 12:19:28 UTC 2017
ssl.sh: #8369: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17706 at Wed May 10 12:19:28 UTC 2017
kill -USR1 17706
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17706 killed at Wed May 10 12:19:28 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:19:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:19:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:28 UTC 2017
selfserv_9505 with PID 19133 started at Wed May 10 12:19:28 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:28 UTC 2017
ssl.sh: #8370: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:28 UTC 2017
ssl.sh: #8371: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:29 UTC 2017
ssl.sh: #8372: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:29 UTC 2017
ssl.sh: #8373: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:29 UTC 2017
ssl.sh: #8374: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:29 UTC 2017
ssl.sh: #8375: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:30 UTC 2017
ssl.sh: #8376: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:30 UTC 2017
ssl.sh: #8377: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:30 UTC 2017
ssl.sh: #8378: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:31 UTC 2017
ssl.sh: #8379: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:31 UTC 2017
ssl.sh: #8380: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:31 UTC 2017
ssl.sh: #8381: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:31 UTC 2017
ssl.sh: #8382: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8383: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:32 UTC 2017
ssl.sh: #8384: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:32 UTC 2017
ssl.sh: #8385: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:32 UTC 2017
ssl.sh: #8386: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:33 UTC 2017
ssl.sh: #8387: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:33 UTC 2017
ssl.sh: #8388: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:33 UTC 2017
ssl.sh: #8389: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:33 UTC 2017
ssl.sh: #8390: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:34 UTC 2017
ssl.sh: #8391: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:34 UTC 2017
ssl.sh: #8392: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:34 UTC 2017
ssl.sh: #8393: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:34 UTC 2017
ssl.sh: #8394: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:35 UTC 2017
ssl.sh: #8395: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:35 UTC 2017
ssl.sh: #8396: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8397: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:35 UTC 2017
ssl.sh: #8398: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:36 UTC 2017
ssl.sh: #8399: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:36 UTC 2017
ssl.sh: #8400: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:36 UTC 2017
ssl.sh: #8401: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:36 UTC 2017
ssl.sh: #8402: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:37 UTC 2017
ssl.sh: #8403: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:37 UTC 2017
ssl.sh: #8404: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:37 UTC 2017
ssl.sh: #8405: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:37 UTC 2017
ssl.sh: #8406: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:38 UTC 2017
ssl.sh: #8407: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:38 UTC 2017
ssl.sh: #8408: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:38 UTC 2017
ssl.sh: #8409: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19133 >/dev/null 2>/dev/null
selfserv_9505 with PID 19133 found at Wed May 10 12:19:38 UTC 2017
ssl.sh: #8410: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 19133 at Wed May 10 12:19:38 UTC 2017
kill -USR1 19133
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19133 killed at Wed May 10 12:19:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:19:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:19:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20555 >/dev/null 2>/dev/null
selfserv_9505 with PID 20555 found at Wed May 10 12:19:38 UTC 2017
selfserv_9505 with PID 20555 started at Wed May 10 12:19:38 UTC 2017
trying to kill selfserv_9505 with PID 20555 at Wed May 10 12:19:38 UTC 2017
kill -USR1 20555
./ssl.sh: line 183: 20555 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20555 killed at Wed May 10 12:19:38 UTC 2017
selfserv_9505 starting at Wed May 10 12:19:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:19:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:39 UTC 2017
selfserv_9505 with PID 20589 started at Wed May 10 12:19:39 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:39 UTC 2017
ssl.sh: #8411: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:39 UTC 2017
ssl.sh: #8412: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:40 UTC 2017
ssl.sh: #8413: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:40 UTC 2017
ssl.sh: #8414: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:40 UTC 2017
ssl.sh: #8415: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:41 UTC 2017
ssl.sh: #8416: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:41 UTC 2017
ssl.sh: #8417: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:41 UTC 2017
ssl.sh: #8418: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:42 UTC 2017
ssl.sh: #8419: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:42 UTC 2017
ssl.sh: #8420: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:42 UTC 2017
ssl.sh: #8421: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:43 UTC 2017
ssl.sh: #8422: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:43 UTC 2017
ssl.sh: #8423: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8424: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:43 UTC 2017
ssl.sh: #8425: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:44 UTC 2017
ssl.sh: #8426: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:44 UTC 2017
ssl.sh: #8427: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:44 UTC 2017
ssl.sh: #8428: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:45 UTC 2017
ssl.sh: #8429: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:45 UTC 2017
ssl.sh: #8430: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:45 UTC 2017
ssl.sh: #8431: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:46 UTC 2017
ssl.sh: #8432: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:46 UTC 2017
ssl.sh: #8433: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:46 UTC 2017
ssl.sh: #8434: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:47 UTC 2017
ssl.sh: #8435: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:47 UTC 2017
ssl.sh: #8436: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:47 UTC 2017
ssl.sh: #8437: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8438: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:48 UTC 2017
ssl.sh: #8439: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:48 UTC 2017
ssl.sh: #8440: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:49 UTC 2017
ssl.sh: #8441: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:49 UTC 2017
ssl.sh: #8442: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:49 UTC 2017
ssl.sh: #8443: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:49 UTC 2017
ssl.sh: #8444: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:50 UTC 2017
ssl.sh: #8445: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:50 UTC 2017
ssl.sh: #8446: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:50 UTC 2017
ssl.sh: #8447: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:51 UTC 2017
ssl.sh: #8448: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:51 UTC 2017
ssl.sh: #8449: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:51 UTC 2017
ssl.sh: #8450: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20589 >/dev/null 2>/dev/null
selfserv_9505 with PID 20589 found at Wed May 10 12:19:52 UTC 2017
ssl.sh: #8451: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20589 at Wed May 10 12:19:52 UTC 2017
kill -USR1 20589
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20589 killed at Wed May 10 12:19:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:19:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:19:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:52 UTC 2017
selfserv_9505 with PID 22011 started at Wed May 10 12:19:52 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:52 UTC 2017
ssl.sh: #8452: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:53 UTC 2017
ssl.sh: #8453: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:53 UTC 2017
ssl.sh: #8454: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:53 UTC 2017
ssl.sh: #8455: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:54 UTC 2017
ssl.sh: #8456: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:54 UTC 2017
ssl.sh: #8457: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:54 UTC 2017
ssl.sh: #8458: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:55 UTC 2017
ssl.sh: #8459: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:55 UTC 2017
ssl.sh: #8460: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:55 UTC 2017
ssl.sh: #8461: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:56 UTC 2017
ssl.sh: #8462: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:56 UTC 2017
ssl.sh: #8463: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:56 UTC 2017
ssl.sh: #8464: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8465: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:57 UTC 2017
ssl.sh: #8466: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:57 UTC 2017
ssl.sh: #8467: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:58 UTC 2017
ssl.sh: #8468: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:58 UTC 2017
ssl.sh: #8469: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:58 UTC 2017
ssl.sh: #8470: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:59 UTC 2017
ssl.sh: #8471: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:59 UTC 2017
ssl.sh: #8472: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:19:59 UTC 2017
ssl.sh: #8473: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:00 UTC 2017
ssl.sh: #8474: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:00 UTC 2017
ssl.sh: #8475: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:00 UTC 2017
ssl.sh: #8476: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:01 UTC 2017
ssl.sh: #8477: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:01 UTC 2017
ssl.sh: #8478: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8479: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:02 UTC 2017
ssl.sh: #8480: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:02 UTC 2017
ssl.sh: #8481: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:02 UTC 2017
ssl.sh: #8482: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:02 UTC 2017
ssl.sh: #8483: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:03 UTC 2017
ssl.sh: #8484: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:03 UTC 2017
ssl.sh: #8485: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:03 UTC 2017
ssl.sh: #8486: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:04 UTC 2017
ssl.sh: #8487: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:04 UTC 2017
ssl.sh: #8488: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:04 UTC 2017
ssl.sh: #8489: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:05 UTC 2017
ssl.sh: #8490: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:05 UTC 2017
ssl.sh: #8491: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22011 >/dev/null 2>/dev/null
selfserv_9505 with PID 22011 found at Wed May 10 12:20:05 UTC 2017
ssl.sh: #8492: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 22011 at Wed May 10 12:20:05 UTC 2017
kill -USR1 22011
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22011 killed at Wed May 10 12:20:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:20:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:20:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:06 UTC 2017
selfserv_9505 with PID 23434 started at Wed May 10 12:20:06 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:06 UTC 2017
ssl.sh: #8493: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:06 UTC 2017
ssl.sh: #8494: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:07 UTC 2017
ssl.sh: #8495: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:07 UTC 2017
ssl.sh: #8496: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:07 UTC 2017
ssl.sh: #8497: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:07 UTC 2017
ssl.sh: #8498: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:08 UTC 2017
ssl.sh: #8499: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:08 UTC 2017
ssl.sh: #8500: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:08 UTC 2017
ssl.sh: #8501: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:08 UTC 2017
ssl.sh: #8502: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:09 UTC 2017
ssl.sh: #8503: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:09 UTC 2017
ssl.sh: #8504: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:09 UTC 2017
ssl.sh: #8505: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8506: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:10 UTC 2017
ssl.sh: #8507: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:10 UTC 2017
ssl.sh: #8508: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:10 UTC 2017
ssl.sh: #8509: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:11 UTC 2017
ssl.sh: #8510: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:11 UTC 2017
ssl.sh: #8511: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:11 UTC 2017
ssl.sh: #8512: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:12 UTC 2017
ssl.sh: #8513: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:12 UTC 2017
ssl.sh: #8514: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:12 UTC 2017
ssl.sh: #8515: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:12 UTC 2017
ssl.sh: #8516: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:13 UTC 2017
ssl.sh: #8517: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:13 UTC 2017
ssl.sh: #8518: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:13 UTC 2017
ssl.sh: #8519: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8520: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:14 UTC 2017
ssl.sh: #8521: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:14 UTC 2017
ssl.sh: #8522: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:14 UTC 2017
ssl.sh: #8523: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:15 UTC 2017
ssl.sh: #8524: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:15 UTC 2017
ssl.sh: #8525: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:15 UTC 2017
ssl.sh: #8526: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:15 UTC 2017
ssl.sh: #8527: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:16 UTC 2017
ssl.sh: #8528: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:16 UTC 2017
ssl.sh: #8529: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:16 UTC 2017
ssl.sh: #8530: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:16 UTC 2017
ssl.sh: #8531: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:17 UTC 2017
ssl.sh: #8532: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23434 >/dev/null 2>/dev/null
selfserv_9505 with PID 23434 found at Wed May 10 12:20:17 UTC 2017
ssl.sh: #8533: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23434 at Wed May 10 12:20:17 UTC 2017
kill -USR1 23434
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23434 killed at Wed May 10 12:20:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:20:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:20:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:17 UTC 2017
selfserv_9505 with PID 24859 started at Wed May 10 12:20:17 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:18 UTC 2017
ssl.sh: #8534: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:18 UTC 2017
ssl.sh: #8535: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:18 UTC 2017
ssl.sh: #8536: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:19 UTC 2017
ssl.sh: #8537: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:19 UTC 2017
ssl.sh: #8538: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:19 UTC 2017
ssl.sh: #8539: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:20 UTC 2017
ssl.sh: #8540: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:20 UTC 2017
ssl.sh: #8541: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:20 UTC 2017
ssl.sh: #8542: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:21 UTC 2017
ssl.sh: #8543: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:21 UTC 2017
ssl.sh: #8544: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:21 UTC 2017
ssl.sh: #8545: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:22 UTC 2017
ssl.sh: #8546: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8547: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:22 UTC 2017
ssl.sh: #8548: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:23 UTC 2017
ssl.sh: #8549: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:23 UTC 2017
ssl.sh: #8550: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:23 UTC 2017
ssl.sh: #8551: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:24 UTC 2017
ssl.sh: #8552: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:24 UTC 2017
ssl.sh: #8553: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:24 UTC 2017
ssl.sh: #8554: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:25 UTC 2017
ssl.sh: #8555: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:25 UTC 2017
ssl.sh: #8556: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:25 UTC 2017
ssl.sh: #8557: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:26 UTC 2017
ssl.sh: #8558: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:26 UTC 2017
ssl.sh: #8559: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:26 UTC 2017
ssl.sh: #8560: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8561: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:27 UTC 2017
ssl.sh: #8562: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:27 UTC 2017
ssl.sh: #8563: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:27 UTC 2017
ssl.sh: #8564: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:28 UTC 2017
ssl.sh: #8565: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:28 UTC 2017
ssl.sh: #8566: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:28 UTC 2017
ssl.sh: #8567: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:29 UTC 2017
ssl.sh: #8568: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:29 UTC 2017
ssl.sh: #8569: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:29 UTC 2017
ssl.sh: #8570: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:30 UTC 2017
ssl.sh: #8571: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:30 UTC 2017
ssl.sh: #8572: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:30 UTC 2017
ssl.sh: #8573: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24859 >/dev/null 2>/dev/null
selfserv_9505 with PID 24859 found at Wed May 10 12:20:31 UTC 2017
ssl.sh: #8574: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24859 at Wed May 10 12:20:31 UTC 2017
kill -USR1 24859
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24859 killed at Wed May 10 12:20:31 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:20:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:20:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:31 UTC 2017
selfserv_9505 with PID 26281 started at Wed May 10 12:20:31 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:31 UTC 2017
ssl.sh: #8575: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:32 UTC 2017
ssl.sh: #8576: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:32 UTC 2017
ssl.sh: #8577: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:32 UTC 2017
ssl.sh: #8578: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:33 UTC 2017
ssl.sh: #8579: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:33 UTC 2017
ssl.sh: #8580: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:33 UTC 2017
ssl.sh: #8581: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:34 UTC 2017
ssl.sh: #8582: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:34 UTC 2017
ssl.sh: #8583: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:35 UTC 2017
ssl.sh: #8584: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:35 UTC 2017
ssl.sh: #8585: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:35 UTC 2017
ssl.sh: #8586: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:36 UTC 2017
ssl.sh: #8587: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8588: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:36 UTC 2017
ssl.sh: #8589: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:37 UTC 2017
ssl.sh: #8590: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:37 UTC 2017
ssl.sh: #8591: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:37 UTC 2017
ssl.sh: #8592: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:38 UTC 2017
ssl.sh: #8593: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:38 UTC 2017
ssl.sh: #8594: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:38 UTC 2017
ssl.sh: #8595: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:39 UTC 2017
ssl.sh: #8596: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:39 UTC 2017
ssl.sh: #8597: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:39 UTC 2017
ssl.sh: #8598: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:40 UTC 2017
ssl.sh: #8599: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:40 UTC 2017
ssl.sh: #8600: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:40 UTC 2017
ssl.sh: #8601: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8602: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:41 UTC 2017
ssl.sh: #8603: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:41 UTC 2017
ssl.sh: #8604: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:42 UTC 2017
ssl.sh: #8605: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:42 UTC 2017
ssl.sh: #8606: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:42 UTC 2017
ssl.sh: #8607: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:43 UTC 2017
ssl.sh: #8608: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:43 UTC 2017
ssl.sh: #8609: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:43 UTC 2017
ssl.sh: #8610: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:44 UTC 2017
ssl.sh: #8611: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:44 UTC 2017
ssl.sh: #8612: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:44 UTC 2017
ssl.sh: #8613: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:45 UTC 2017
ssl.sh: #8614: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26281 >/dev/null 2>/dev/null
selfserv_9505 with PID 26281 found at Wed May 10 12:20:45 UTC 2017
ssl.sh: #8615: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 26281 at Wed May 10 12:20:45 UTC 2017
kill -USR1 26281
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 26281 killed at Wed May 10 12:20:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:20:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:20:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:45 UTC 2017
selfserv_9505 with PID 27703 started at Wed May 10 12:20:45 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:46 UTC 2017
ssl.sh: #8616: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:46 UTC 2017
ssl.sh: #8617: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:46 UTC 2017
ssl.sh: #8618: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:46 UTC 2017
ssl.sh: #8619: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:47 UTC 2017
ssl.sh: #8620: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:47 UTC 2017
ssl.sh: #8621: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:47 UTC 2017
ssl.sh: #8622: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:48 UTC 2017
ssl.sh: #8623: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:48 UTC 2017
ssl.sh: #8624: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:48 UTC 2017
ssl.sh: #8625: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:49 UTC 2017
ssl.sh: #8626: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:49 UTC 2017
ssl.sh: #8627: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:49 UTC 2017
ssl.sh: #8628: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8629: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:50 UTC 2017
ssl.sh: #8630: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:50 UTC 2017
ssl.sh: #8631: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:50 UTC 2017
ssl.sh: #8632: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:51 UTC 2017
ssl.sh: #8633: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:51 UTC 2017
ssl.sh: #8634: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:51 UTC 2017
ssl.sh: #8635: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:51 UTC 2017
ssl.sh: #8636: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:52 UTC 2017
ssl.sh: #8637: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:52 UTC 2017
ssl.sh: #8638: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:52 UTC 2017
ssl.sh: #8639: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:53 UTC 2017
ssl.sh: #8640: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:53 UTC 2017
ssl.sh: #8641: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:53 UTC 2017
ssl.sh: #8642: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8643: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:54 UTC 2017
ssl.sh: #8644: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:54 UTC 2017
ssl.sh: #8645: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:54 UTC 2017
ssl.sh: #8646: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:55 UTC 2017
ssl.sh: #8647: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:55 UTC 2017
ssl.sh: #8648: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:55 UTC 2017
ssl.sh: #8649: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:56 UTC 2017
ssl.sh: #8650: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:56 UTC 2017
ssl.sh: #8651: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:56 UTC 2017
ssl.sh: #8652: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:56 UTC 2017
ssl.sh: #8653: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:57 UTC 2017
ssl.sh: #8654: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:57 UTC 2017
ssl.sh: #8655: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27703 >/dev/null 2>/dev/null
selfserv_9505 with PID 27703 found at Wed May 10 12:20:57 UTC 2017
ssl.sh: #8656: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 27703 at Wed May 10 12:20:57 UTC 2017
kill -USR1 27703
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 27703 killed at Wed May 10 12:20:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:20:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:20:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29125 >/dev/null 2>/dev/null
selfserv_9505 with PID 29125 found at Wed May 10 12:20:57 UTC 2017
selfserv_9505 with PID 29125 started at Wed May 10 12:20:57 UTC 2017
trying to kill selfserv_9505 with PID 29125 at Wed May 10 12:20:57 UTC 2017
kill -USR1 29125
./ssl.sh: line 183: 29125 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29125 killed at Wed May 10 12:20:57 UTC 2017
selfserv_9505 starting at Wed May 10 12:20:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:20:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:20:57 UTC 2017
selfserv_9505 with PID 29159 started at Wed May 10 12:20:57 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:20:58 UTC 2017
ssl.sh: #8657: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:20:58 UTC 2017
ssl.sh: #8658: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:20:59 UTC 2017
ssl.sh: #8659: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:20:59 UTC 2017
ssl.sh: #8660: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:20:59 UTC 2017
ssl.sh: #8661: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:00 UTC 2017
ssl.sh: #8662: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:00 UTC 2017
ssl.sh: #8663: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:00 UTC 2017
ssl.sh: #8664: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:01 UTC 2017
ssl.sh: #8665: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:01 UTC 2017
ssl.sh: #8666: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:01 UTC 2017
ssl.sh: #8667: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:02 UTC 2017
ssl.sh: #8668: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:02 UTC 2017
ssl.sh: #8669: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:02 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8670: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:02 UTC 2017
ssl.sh: #8671: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:03 UTC 2017
ssl.sh: #8672: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:03 UTC 2017
ssl.sh: #8673: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:03 UTC 2017
ssl.sh: #8674: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:04 UTC 2017
ssl.sh: #8675: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:04 UTC 2017
ssl.sh: #8676: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:04 UTC 2017
ssl.sh: #8677: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:05 UTC 2017
ssl.sh: #8678: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:05 UTC 2017
ssl.sh: #8679: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:05 UTC 2017
ssl.sh: #8680: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:06 UTC 2017
ssl.sh: #8681: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:06 UTC 2017
ssl.sh: #8682: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:06 UTC 2017
ssl.sh: #8683: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8684: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:07 UTC 2017
ssl.sh: #8685: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:07 UTC 2017
ssl.sh: #8686: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:07 UTC 2017
ssl.sh: #8687: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:08 UTC 2017
ssl.sh: #8688: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:08 UTC 2017
ssl.sh: #8689: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:08 UTC 2017
ssl.sh: #8690: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:09 UTC 2017
ssl.sh: #8691: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:09 UTC 2017
ssl.sh: #8692: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:09 UTC 2017
ssl.sh: #8693: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:10 UTC 2017
ssl.sh: #8694: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:10 UTC 2017
ssl.sh: #8695: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:10 UTC 2017
ssl.sh: #8696: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29159 >/dev/null 2>/dev/null
selfserv_9505 with PID 29159 found at Wed May 10 12:21:11 UTC 2017
ssl.sh: #8697: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 29159 at Wed May 10 12:21:11 UTC 2017
kill -USR1 29159
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29159 killed at Wed May 10 12:21:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:21:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:21:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:11 UTC 2017
selfserv_9505 with PID 30582 started at Wed May 10 12:21:11 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:11 UTC 2017
ssl.sh: #8698: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:12 UTC 2017
ssl.sh: #8699: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:12 UTC 2017
ssl.sh: #8700: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:12 UTC 2017
ssl.sh: #8701: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:13 UTC 2017
ssl.sh: #8702: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:13 UTC 2017
ssl.sh: #8703: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:13 UTC 2017
ssl.sh: #8704: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:13 UTC 2017
ssl.sh: #8705: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:14 UTC 2017
ssl.sh: #8706: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:14 UTC 2017
ssl.sh: #8707: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:15 UTC 2017
ssl.sh: #8708: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:15 UTC 2017
ssl.sh: #8709: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:15 UTC 2017
ssl.sh: #8710: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8711: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:16 UTC 2017
ssl.sh: #8712: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:16 UTC 2017
ssl.sh: #8713: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:16 UTC 2017
ssl.sh: #8714: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:17 UTC 2017
ssl.sh: #8715: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:17 UTC 2017
ssl.sh: #8716: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:17 UTC 2017
ssl.sh: #8717: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:18 UTC 2017
ssl.sh: #8718: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:18 UTC 2017
ssl.sh: #8719: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:18 UTC 2017
ssl.sh: #8720: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:19 UTC 2017
ssl.sh: #8721: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:19 UTC 2017
ssl.sh: #8722: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:19 UTC 2017
ssl.sh: #8723: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:20 UTC 2017
ssl.sh: #8724: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8725: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:20 UTC 2017
ssl.sh: #8726: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:21 UTC 2017
ssl.sh: #8727: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:21 UTC 2017
ssl.sh: #8728: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:21 UTC 2017
ssl.sh: #8729: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:22 UTC 2017
ssl.sh: #8730: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:22 UTC 2017
ssl.sh: #8731: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:22 UTC 2017
ssl.sh: #8732: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:23 UTC 2017
ssl.sh: #8733: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:23 UTC 2017
ssl.sh: #8734: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:23 UTC 2017
ssl.sh: #8735: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:24 UTC 2017
ssl.sh: #8736: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:24 UTC 2017
ssl.sh: #8737: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9505 with PID 30582 found at Wed May 10 12:21:24 UTC 2017
ssl.sh: #8738: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30582 at Wed May 10 12:21:24 UTC 2017
kill -USR1 30582
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30582 killed at Wed May 10 12:21:24 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:21:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:21:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:24 UTC 2017
selfserv_9505 with PID 32004 started at Wed May 10 12:21:24 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:25 UTC 2017
ssl.sh: #8739: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:25 UTC 2017
ssl.sh: #8740: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:25 UTC 2017
ssl.sh: #8741: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:26 UTC 2017
ssl.sh: #8742: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:26 UTC 2017
ssl.sh: #8743: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:26 UTC 2017
ssl.sh: #8744: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:26 UTC 2017
ssl.sh: #8745: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:27 UTC 2017
ssl.sh: #8746: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:27 UTC 2017
ssl.sh: #8747: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:27 UTC 2017
ssl.sh: #8748: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:28 UTC 2017
ssl.sh: #8749: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:28 UTC 2017
ssl.sh: #8750: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:28 UTC 2017
ssl.sh: #8751: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8752: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:29 UTC 2017
ssl.sh: #8753: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:29 UTC 2017
ssl.sh: #8754: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:29 UTC 2017
ssl.sh: #8755: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:30 UTC 2017
ssl.sh: #8756: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:30 UTC 2017
ssl.sh: #8757: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:30 UTC 2017
ssl.sh: #8758: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:30 UTC 2017
ssl.sh: #8759: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:31 UTC 2017
ssl.sh: #8760: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:31 UTC 2017
ssl.sh: #8761: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:31 UTC 2017
ssl.sh: #8762: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:31 UTC 2017
ssl.sh: #8763: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:32 UTC 2017
ssl.sh: #8764: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:32 UTC 2017
ssl.sh: #8765: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8766: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:33 UTC 2017
ssl.sh: #8767: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:33 UTC 2017
ssl.sh: #8768: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:33 UTC 2017
ssl.sh: #8769: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:33 UTC 2017
ssl.sh: #8770: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:34 UTC 2017
ssl.sh: #8771: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:34 UTC 2017
ssl.sh: #8772: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:34 UTC 2017
ssl.sh: #8773: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:34 UTC 2017
ssl.sh: #8774: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:35 UTC 2017
ssl.sh: #8775: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:35 UTC 2017
ssl.sh: #8776: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:35 UTC 2017
ssl.sh: #8777: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:36 UTC 2017
ssl.sh: #8778: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32004 >/dev/null 2>/dev/null
selfserv_9505 with PID 32004 found at Wed May 10 12:21:36 UTC 2017
ssl.sh: #8779: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32004 at Wed May 10 12:21:36 UTC 2017
kill -USR1 32004
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32004 killed at Wed May 10 12:21:36 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:21:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:21:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:36 UTC 2017
selfserv_9505 with PID 1042 started at Wed May 10 12:21:36 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:37 UTC 2017
ssl.sh: #8780: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:37 UTC 2017
ssl.sh: #8781: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:37 UTC 2017
ssl.sh: #8782: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:38 UTC 2017
ssl.sh: #8783: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:38 UTC 2017
ssl.sh: #8784: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:38 UTC 2017
ssl.sh: #8785: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:39 UTC 2017
ssl.sh: #8786: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:39 UTC 2017
ssl.sh: #8787: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:39 UTC 2017
ssl.sh: #8788: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:40 UTC 2017
ssl.sh: #8789: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:40 UTC 2017
ssl.sh: #8790: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:40 UTC 2017
ssl.sh: #8791: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:41 UTC 2017
ssl.sh: #8792: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8793: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:41 UTC 2017
ssl.sh: #8794: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:42 UTC 2017
ssl.sh: #8795: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:42 UTC 2017
ssl.sh: #8796: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:42 UTC 2017
ssl.sh: #8797: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:43 UTC 2017
ssl.sh: #8798: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:43 UTC 2017
ssl.sh: #8799: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:43 UTC 2017
ssl.sh: #8800: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:43 UTC 2017
ssl.sh: #8801: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:44 UTC 2017
ssl.sh: #8802: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:44 UTC 2017
ssl.sh: #8803: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:44 UTC 2017
ssl.sh: #8804: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:45 UTC 2017
ssl.sh: #8805: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:45 UTC 2017
ssl.sh: #8806: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8807: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:46 UTC 2017
ssl.sh: #8808: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:46 UTC 2017
ssl.sh: #8809: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:46 UTC 2017
ssl.sh: #8810: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:47 UTC 2017
ssl.sh: #8811: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:47 UTC 2017
ssl.sh: #8812: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:47 UTC 2017
ssl.sh: #8813: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:48 UTC 2017
ssl.sh: #8814: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:48 UTC 2017
ssl.sh: #8815: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:48 UTC 2017
ssl.sh: #8816: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:49 UTC 2017
ssl.sh: #8817: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:49 UTC 2017
ssl.sh: #8818: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:49 UTC 2017
ssl.sh: #8819: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1042 >/dev/null 2>/dev/null
selfserv_9505 with PID 1042 found at Wed May 10 12:21:50 UTC 2017
ssl.sh: #8820: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1042 at Wed May 10 12:21:50 UTC 2017
kill -USR1 1042
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1042 killed at Wed May 10 12:21:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:21:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:21:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:50 UTC 2017
selfserv_9505 with PID 2472 started at Wed May 10 12:21:50 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:50 UTC 2017
ssl.sh: #8821: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:51 UTC 2017
ssl.sh: #8822: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:51 UTC 2017
ssl.sh: #8823: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:51 UTC 2017
ssl.sh: #8824: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:52 UTC 2017
ssl.sh: #8825: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:52 UTC 2017
ssl.sh: #8826: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:52 UTC 2017
ssl.sh: #8827: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:53 UTC 2017
ssl.sh: #8828: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:53 UTC 2017
ssl.sh: #8829: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:53 UTC 2017
ssl.sh: #8830: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:54 UTC 2017
ssl.sh: #8831: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:54 UTC 2017
ssl.sh: #8832: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:54 UTC 2017
ssl.sh: #8833: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8834: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:55 UTC 2017
ssl.sh: #8835: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:55 UTC 2017
ssl.sh: #8836: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:56 UTC 2017
ssl.sh: #8837: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:56 UTC 2017
ssl.sh: #8838: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:56 UTC 2017
ssl.sh: #8839: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:57 UTC 2017
ssl.sh: #8840: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:57 UTC 2017
ssl.sh: #8841: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:58 UTC 2017
ssl.sh: #8842: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:58 UTC 2017
ssl.sh: #8843: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:58 UTC 2017
ssl.sh: #8844: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:59 UTC 2017
ssl.sh: #8845: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:21:59 UTC 2017
ssl.sh: #8846: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:00 UTC 2017
ssl.sh: #8847: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8848: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:00 UTC 2017
ssl.sh: #8849: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:01 UTC 2017
ssl.sh: #8850: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:01 UTC 2017
ssl.sh: #8851: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:01 UTC 2017
ssl.sh: #8852: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:02 UTC 2017
ssl.sh: #8853: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:02 UTC 2017
ssl.sh: #8854: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:02 UTC 2017
ssl.sh: #8855: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:03 UTC 2017
ssl.sh: #8856: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:03 UTC 2017
ssl.sh: #8857: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:03 UTC 2017
ssl.sh: #8858: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:03 UTC 2017
ssl.sh: #8859: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:04 UTC 2017
ssl.sh: #8860: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2472 >/dev/null 2>/dev/null
selfserv_9505 with PID 2472 found at Wed May 10 12:22:04 UTC 2017
ssl.sh: #8861: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 2472 at Wed May 10 12:22:04 UTC 2017
kill -USR1 2472
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2472 killed at Wed May 10 12:22:04 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:22:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:22:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:04 UTC 2017
selfserv_9505 with PID 3906 started at Wed May 10 12:22:04 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:05 UTC 2017
ssl.sh: #8862: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:05 UTC 2017
ssl.sh: #8863: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:05 UTC 2017
ssl.sh: #8864: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:06 UTC 2017
ssl.sh: #8865: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:06 UTC 2017
ssl.sh: #8866: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:06 UTC 2017
ssl.sh: #8867: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:07 UTC 2017
ssl.sh: #8868: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:07 UTC 2017
ssl.sh: #8869: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:07 UTC 2017
ssl.sh: #8870: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:07 UTC 2017
ssl.sh: #8871: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:08 UTC 2017
ssl.sh: #8872: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:08 UTC 2017
ssl.sh: #8873: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:08 UTC 2017
ssl.sh: #8874: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8875: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:09 UTC 2017
ssl.sh: #8876: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:09 UTC 2017
ssl.sh: #8877: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:10 UTC 2017
ssl.sh: #8878: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:10 UTC 2017
ssl.sh: #8879: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:10 UTC 2017
ssl.sh: #8880: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:10 UTC 2017
ssl.sh: #8881: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:11 UTC 2017
ssl.sh: #8882: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:11 UTC 2017
ssl.sh: #8883: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:11 UTC 2017
ssl.sh: #8884: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:12 UTC 2017
ssl.sh: #8885: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:12 UTC 2017
ssl.sh: #8886: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:12 UTC 2017
ssl.sh: #8887: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:12 UTC 2017
ssl.sh: #8888: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8889: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:13 UTC 2017
ssl.sh: #8890: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:13 UTC 2017
ssl.sh: #8891: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:14 UTC 2017
ssl.sh: #8892: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:14 UTC 2017
ssl.sh: #8893: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:14 UTC 2017
ssl.sh: #8894: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:14 UTC 2017
ssl.sh: #8895: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:15 UTC 2017
ssl.sh: #8896: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:15 UTC 2017
ssl.sh: #8897: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:15 UTC 2017
ssl.sh: #8898: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:16 UTC 2017
ssl.sh: #8899: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:16 UTC 2017
ssl.sh: #8900: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:16 UTC 2017
ssl.sh: #8901: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3906 >/dev/null 2>/dev/null
selfserv_9505 with PID 3906 found at Wed May 10 12:22:17 UTC 2017
ssl.sh: #8902: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 3906 at Wed May 10 12:22:17 UTC 2017
kill -USR1 3906
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 3906 killed at Wed May 10 12:22:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:22:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:22:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5328 >/dev/null 2>/dev/null
selfserv_9505 with PID 5328 found at Wed May 10 12:22:17 UTC 2017
selfserv_9505 with PID 5328 started at Wed May 10 12:22:17 UTC 2017
trying to kill selfserv_9505 with PID 5328 at Wed May 10 12:22:17 UTC 2017
kill -USR1 5328
./ssl.sh: line 183:  5328 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5328 killed at Wed May 10 12:22:17 UTC 2017
TIMESTAMP ssl END: Wed May 10 12:22:17 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed May 10 12:22:17 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.v3.17937 -t Test2 -f ../tests.pw
merge.sh: #8903: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8904: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8905: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8906: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8907: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8908: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:41 2017
            Not After : Tue May 10 11:40:41 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:05:f0:6b:db:a5:67:db:dd:4c:5f:26:87:62:70:91:
                    44:d9:21:21:7a:4a:83:75:fc:21:59:98:9e:a1:92:30:
                    e3:d0:5d:f8:72:22:de:88:c8:91:7d:a3:1d:20:4f:1e:
                    75:2e:f1:dc:03:bd:a7:74:42:78:4f:ed:7d:02:9e:35:
                    99:c3:6e:b1:af:81:53:c4:15:5a:79:1a:e4:16:fb:b8:
                    00:db:cc:8c:d8:3b:36:b5:91:8f:24:b3:5f:1c:ea:91:
                    84:c2:d4:03:59:02:c2:7a:a4:70:02:4a:d1:a7:47:8b:
                    70:f9:80:c1:8c:c5:1c:4d:e8:c5:f1:4a:40:91:9e:db:
                    ff:3f:15:8e:f8:0c:31:36:26:6d:53:d9:4b:a0:88:25:
                    cb:25:c3:e0:b2:66:a8:c9:55:56:0b:16:01:e0:a5:31:
                    64:5e:92:ae:09:21:e3:5e:8b:3f:88:bd:f7:93:32:4c:
                    2c:91:ac:ea:bf:91:11:55:41:8e:f0:37:a6:50:61:f3:
                    78:1b:b3:31:8a:2f:31:c5:6e:8c:5a:95:28:bc:a5:a0:
                    b3:94:5d:2c:4d:16:38:70:9e:69:9e:22:63:e1:29:b2:
                    00:66:d2:b1:74:86:26:82:c6:75:23:2f:db:c0:e9:ad:
                    d4:ed:2d:43:fd:7a:43:93:9d:8c:ed:11:12:1b:8f:e7
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:84:14:8e:df:42:bd:63:9b:fd:d6:a2:9d:1a:30:44:
        27:4c:ea:a2:ca:0d:b7:c9:3e:e2:a2:9d:16:c5:fb:07:
        95:65:8f:44:96:aa:8e:58:76:b5:4c:dc:0a:87:fd:da:
        b0:92:2b:86:62:af:6a:67:81:2a:04:90:74:71:ed:e4:
        dc:61:0a:6a:82:f1:89:91:95:f4:10:d1:36:3e:8d:43:
        8b:9c:71:1f:46:27:7b:c3:0f:90:4c:db:ff:7a:9f:25:
        ff:7a:9e:42:87:89:74:a8:d5:90:8e:70:43:90:63:f1:
        c9:d9:da:8c:e3:6a:e7:33:30:2c:a9:e5:a8:fe:8e:1e:
        f7:8c:fc:90:69:c7:d5:64:3c:2e:83:00:91:94:c8:13:
        01:9e:da:8d:24:4e:de:6b:f1:bc:d0:f6:e8:99:e1:21:
        0e:45:02:d9:d0:0b:90:3c:ee:8e:a0:ef:e0:71:0a:87:
        d7:89:fe:2d:57:c0:f5:fd:2c:8e:58:8b:f8:f9:08:2a:
        cc:cb:09:4f:fa:a0:ab:25:9e:7e:53:19:7a:2a:c4:03:
        57:ab:e9:c1:63:47:50:5b:c0:e4:db:39:af:bd:a9:df:
        3c:d5:7f:10:ab:64:c1:bf:7d:72:39:22:15:88:4d:4d:
        dc:e4:6f:b4:f6:98:6d:57:d7:6c:cb:fe:30:8d:26:fb
    Fingerprint (SHA-256):
        C2:16:05:91:81:32:0F:4F:B7:C4:6B:B5:78:63:BC:0C:DC:F9:C0:A8:49:60:4C:69:C1:14:AB:C6:14:31:6B:41
    Fingerprint (SHA1):
        38:23:14:B7:BA:4C:C1:30:C2:08:D6:24:56:D7:42:5A:78:78:03:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8909: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 11:40:42 2017
            Not After : Tue May 10 11:40:42 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:dc:14:7b:ef:db:ee:3b:53:a8:38:b9:77:3b:bb:7e:
                    e7:11:82:57:fd:10:78:3c:5c:e6:af:f9:e2:3d:18:62:
                    8f:05:32:4e:94:a9:78:9f:d3:8a:64:ae:a9:4d:81:cc:
                    36:d5:66:e9:56:64:8a:70:23:28:ae:93:da:e4:e3:17:
                    a4:d3:dd:f6:62:8e:bd:a8:06:26:6c:de:59:cd:50:9e:
                    fe:ae:20:db:e2:20:c4:62:13:c3:d9:3c:8b:85:16:7b:
                    fa:e1:d0:0f:cf:f3:89:b2:35:4e:e1:1d:0e:65:8e:68:
                    1f:79:2c:52:63:87:30:7e:b8:d9:e3:9d:f9:92:eb:d7:
                    72:d6:a1:07:5e:65:b2:6b:ff:cb:0a:26:23:02:96:71:
                    f7:f0:b0:2b:04:de:dc:2e:59:51:b9:bc:bc:10:19:76:
                    f2:c2:55:b1:e9:b1:a6:71:82:18:cb:c7:80:49:b7:41:
                    e2:cd:e2:21:ae:5f:86:92:59:2a:99:37:e9:62:9b:9b:
                    f0:de:59:bc:9f:77:78:29:19:df:56:ed:29:50:08:b0:
                    5d:4a:5e:6d:db:79:59:6d:14:84:f8:f2:63:15:b1:d9:
                    a8:d3:da:d0:87:77:f1:52:7e:54:c3:f9:d4:52:3b:1d:
                    b5:94:6a:c7:dc:3a:44:f9:e8:b0:cf:82:81:e4:e6:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:c3:0e:18:fb:1d:96:0e:55:66:73:d4:b4:53:3e:57:
        88:63:93:31:99:df:72:91:4c:03:86:14:21:04:b1:39:
        14:91:cb:91:47:36:d7:37:de:a6:43:9e:7c:8c:be:df:
        d7:d2:01:c3:13:b5:41:c0:1e:18:7f:5a:9d:82:93:32:
        f2:07:71:c9:38:20:47:3f:97:3d:86:4c:3a:1b:67:b9:
        c5:32:d3:84:35:2f:d3:0d:44:40:d8:63:a5:3e:83:94:
        f5:30:e8:44:bf:04:ba:3b:ff:d7:2c:4e:fe:ff:3a:e2:
        8d:b3:ba:7b:73:a7:a0:e4:72:a5:a7:82:1b:92:a2:5a:
        07:14:8d:ea:47:e3:3f:bb:9a:3c:44:ae:e6:54:df:29:
        6a:18:61:ab:4e:81:e0:1e:7e:8a:0d:0f:ea:fa:52:90:
        53:3a:7e:f9:8e:51:cf:78:c8:c3:38:3b:3a:70:d6:df:
        2a:b2:40:46:c3:06:de:8c:92:ae:af:1f:8b:9b:d1:1e:
        3c:d5:e3:0f:a5:7f:02:c5:55:37:47:c1:72:02:ef:e2:
        b9:04:4a:1b:e1:c6:a9:1c:5e:68:79:8f:ba:3a:2d:86:
        05:af:16:5d:89:9c:26:60:d3:29:d4:b3:97:16:b9:ff:
        cc:9d:1a:c7:8c:2a:ae:4d:ea:83:5e:0e:c1:3f:10:14
    Fingerprint (SHA-256):
        16:4A:08:71:23:B6:94:48:1E:50:45:39:77:A9:00:FE:4C:CB:D9:04:ED:17:0A:45:26:75:19:E4:BD:51:68:AD
    Fingerprint (SHA1):
        13:D7:1D:B8:98:46:62:BE:D9:A0:E8:31:58:1B:64:C6:73:DB:9F:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8910: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8911: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA                                                     T,C,C
chain-2-clientCA-ec                                          ,,   
chain-2-clientCA                                             ,,   
clientCA-ec                                                  T,C,C
chain-1-clientCA-dsa                                         ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
clientCA-dsa                                                 T,C,C
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.v3.17937 -t Test2 -f ../tests.pw
merge.sh: #8912: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/tests.v1.17937 -t Test1 -f ../tests.pw
merge.sh: #8913: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #8914: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #8915: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #8916: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed May 10 11:40:56 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 11:39:53 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed May 10 11:40:52 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #8917: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Wed May 10 12:22:21 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 12:22:21 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 12:22:21 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8918: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 12:22:21 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 12:22:21 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8919: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8920: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8921: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8922: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8923: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8924: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 12:22:22 UTC 2017
TIMESTAMP ec END: Wed May 10 12:22:22 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 12:22:22 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #8925: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8926: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8927: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8928: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8929: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8930: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8931: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8932: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8933: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8934: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8935: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8936: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8937: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8938: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8939: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8940: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8941: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8942: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #8943: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #8944: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 12:22:22 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 12:22:22 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8945: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8946: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8947: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8948: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8949: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8950: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8951: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8952: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8953: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8954: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8955: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8956: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8957: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8958: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8959: create certificate: sign  - PASSED
ssl_gtest.sh: #8960: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 12:22:29 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Wed May 10 12:22:29 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #8961: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #8962: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8963: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8964: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #8965: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #8966: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8967: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8968: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8969: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8970: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8971: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8972: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8973: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #8974: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8975: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8976: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8977: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8978: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8979: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8980: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8981: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8982: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8983: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8984: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8985: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8986: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8987: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8988: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8989: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8990: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8991: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8992: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8993: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8994: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8995: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8996: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #8997: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8998: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8999: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9000: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #9001: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9002: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #9003: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9004: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #9005: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9006: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #9007: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9008: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #9009: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #9010: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9011: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9012: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #9013: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9014: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #9015: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9016: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #9017: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9018: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #9019: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9020: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #9021: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9022: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9023: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #9024: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9025: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #9026: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9027: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #9028: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9029: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #9030: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9031: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9032: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #9033: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9034: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #9035: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9036: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9037: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9038: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #9039: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9040: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9041: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #9042: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9043: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #9044: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9045: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #9046: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9047: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #9048: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9049: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #9050: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9051: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9052: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #9053: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9054: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #9055: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9056: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #9057: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9058: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #9059: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9060: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #9061: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9062: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9063: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9064: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9065: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #9066: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9067: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #9068: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9069: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #9070: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9071: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #9072: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9073: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #9074: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9075: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9076: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #9077: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9078: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9079: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #9080: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9081: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9082: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #9083: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9084: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9085: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #9086: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9087: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9088: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9089: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #9090: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9091: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #9092: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9093: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #9094: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9095: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9096: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #9097: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9098: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9099: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #9100: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9101: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9102: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #9103: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9104: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9105: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #9106: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9107: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9108: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #9109: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9110: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9111: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #9112: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9113: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9114: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #9115: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9116: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9117: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #9118: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9119: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9120: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #9121: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9122: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9123: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9124: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #9125: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #9126: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9127: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #9128: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9129: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #9130: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9131: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #9132: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9133: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9134: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #9135: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9136: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9137: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #9138: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9139: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9140: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #9141: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9142: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9143: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #9144: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9145: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #9146: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9147: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #9148: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9149: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #9150: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9151: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #9152: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9153: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9154: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #9155: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9156: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9157: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #9158: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9159: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9160: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #9161: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9162: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9163: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #9164: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9165: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #9166: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9167: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #9168: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9169: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #9170: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9171: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #9172: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9173: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9174: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #9175: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9176: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9177: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #9178: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9179: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9180: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #9181: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9182: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9183: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #9184: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9185: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #9186: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9187: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #9188: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9189: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #9190: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9191: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9192: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9193: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9194: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9195: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9196: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9197: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9198: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9199: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9200: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9201: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9202: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9203: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #9204: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9205: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #9206: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #9207: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #9208: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #9209: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #9210: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #9211: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #9212: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #9213: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #9214: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9215: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #9216: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9217: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #9218: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9219: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #9220: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9221: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #9222: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9223: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9224: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #9225: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9226: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9227: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #9228: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9229: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #9230: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9231: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #9232: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9233: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #9234: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9235: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #9236: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9237: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9238: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #9239: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9240: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9241: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #9242: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9243: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9244: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #9245: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9246: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9247: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #9248: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9249: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:69
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:49 2017
            Not After : Thu Aug 10 12:23:49 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:cd:f7:b8:dd:ba:a5:6e:b2:90:91:fc:14:c1:02:e8:
                    48:fc:41:7d:c9:5a:60:1d:91:e6:56:60:a4:53:d6:85:
                    bb:13:4c:71:39:a1:bb:e2:e7:86:bf:95:e4:61:f0:ba:
                    a9:ff:29:93:c5:de:92:79:be:f0:e9:10:b9:68:64:20:
                    7b:59:9a:12:86:5f:27:a9:1b:ff:50:de:bd:9c:f3:30:
                    a4:44:5e:90:3a:41:ec:b4:8a:38:15:78:fb:7f:8e:34:
                    0e:7c:b7:c1:e1:01:c2:0b:a2:ea:f4:5b:77:d0:5e:13:
                    33:b3:29:c9:b7:81:7e:a6:31:76:d4:59:82:7a:4f:aa:
                    90:44:f3:54:f6:38:57:48:50:cf:85:c3:19:56:aa:3f:
                    7a:09:da:43:c1:ce:2f:6b:8b:49:bd:f3:83:3c:b5:93:
                    3c:42:90:91:58:5c:95:f1:eb:44:ac:ba:39:e2:8e:3f:
                    b7:bf:f8:52:39:37:60:31:e9:ad:89:10:f5:aa:13:1b:
                    1d:5b:5a:14:62:a4:f3:12:49:66:d8:88:97:48:10:eb:
                    47:82:f6:d5:c2:22:8b:8c:5e:61:bd:59:15:d5:d4:3c:
                    94:ac:4b:cf:06:85:c7:b6:84:3f:8e:d6:5b:7c:47:2a:
                    4d:90:55:f7:00:f8:c6:23:93:06:70:60:84:a5:af:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:3a:c5:64:16:d0:6c:ce:87:a1:30:17:8b:93:66:a0:
        02:63:b0:44:57:95:14:9c:00:ed:16:e0:4a:0f:d2:53:
        6f:11:80:4e:15:eb:f1:f0:cb:de:d7:cc:af:ee:45:58:
        fa:48:f4:7b:00:b7:d8:ff:32:e2:3a:1a:b7:6d:40:26:
        78:52:fe:4a:e2:c2:60:32:7b:8a:3f:6e:ed:af:2c:5e:
        aa:21:89:4b:9e:31:7b:2d:30:5f:5e:86:73:ab:65:ac:
        51:22:1d:e9:9e:e8:9c:0a:b1:b3:ac:3b:0b:fb:fa:f3:
        f2:a6:00:eb:ba:9e:11:60:7e:d3:10:87:45:ac:43:74:
        e3:71:66:21:31:ef:0f:2d:50:c8:71:b0:da:39:47:b4:
        65:69:c0:54:19:26:53:23:83:bc:86:84:a9:b2:97:e3:
        d0:50:b1:98:13:62:1e:a8:9b:c1:9d:6b:3e:1a:0a:33:
        cf:8e:4f:7b:7b:17:1e:26:19:bf:15:b6:2e:c8:ef:e0:
        09:df:02:fa:6c:76:fc:ea:57:36:b5:ff:2f:8a:85:c1:
        26:cd:32:f5:5b:7f:98:fe:49:5d:29:77:1c:9d:64:43:
        f1:22:7d:f2:24:a9:98:7a:02:e7:85:14:d2:d8:fa:e0:
        68:52:90:6b:58:fc:9d:d7:11:b4:34:c1:80:40:08:c4
    Fingerprint (SHA-256):
        CC:43:8F:59:10:0E:E2:72:95:BF:68:3C:7D:CF:BF:40:34:C0:F1:BF:9F:97:9E:3A:E4:D4:25:62:56:3C:07:7C
    Fingerprint (SHA1):
        50:37:70:B8:8F:68:32:58:C5:B2:5C:64:8D:4B:31:FD:FB:7D:90:1C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9250: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:6d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:51 2017
            Not After : Thu Aug 10 12:23:51 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:a8:56:de:e6:8a:1f:07:ea:88:82:c0:b1:78:2f:b3:
                    9b:c3:47:f8:cf:25:26:0b:40:8f:65:ac:5f:b4:38:18:
                    2b:22:b4:57:82:b4:f3:34:08:71:28:d8:c7:16:ea:60:
                    df:ab:71:83:d4:11:4b:e7:9f:46:82:0b:47:2c:f3:26:
                    92:58:a9:b5:5a:58:a1:53:2c:65:53:8b:f1:33:9d:37:
                    e6:98:12:fc:14:80:8b:72:da:6e:01:34:10:14:36:a6:
                    80:4f:2e:1e:56:18:cf:c2:d5:40:e8:b4:26:cd:c8:4d:
                    9c:04:7a:0a:91:cd:4f:71:af:83:eb:99:51:44:ec:2b:
                    08:70:76:d2:5a:e7:00:a7:1f:6d:61:b0:bb:32:d3:36:
                    a5:15:c0:db:a3:65:65:53:17:e6:24:d2:e1:63:c1:e0:
                    38:ed:84:87:a7:16:eb:d1:1d:16:99:70:24:f1:a2:13:
                    eb:57:72:51:a4:77:b1:b3:4c:b5:6b:1e:d7:24:6b:a7:
                    97:60:07:42:47:71:87:ee:d9:f3:c7:8d:25:fc:ef:9e:
                    f4:87:db:44:a0:f2:ec:09:27:61:d7:36:a4:07:b1:86:
                    94:f4:81:f3:1d:62:44:b3:96:4e:60:86:cb:05:bb:52:
                    d6:cb:58:82:de:b5:60:c7:58:b0:b8:b3:a4:34:08:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:5b:52:e0:d5:b9:cb:7f:40:0e:29:34:f0:12:ce:14:
        28:f1:3d:61:b1:fb:3b:30:99:e8:98:2d:53:68:73:4c:
        fa:38:85:0c:b8:23:32:1b:be:97:33:f2:e6:16:e0:dd:
        fe:5c:60:e7:ec:d7:a4:38:33:42:d2:2c:2e:a0:80:1c:
        20:db:26:79:4d:56:7a:4f:9b:83:17:78:f3:b6:b1:b0:
        7f:f4:0d:9b:95:f6:a1:81:0a:d2:f5:74:4a:66:27:32:
        97:db:13:2f:6b:b8:c8:75:79:2d:a2:f3:35:61:f1:37:
        dc:21:28:56:87:13:d5:55:5a:3f:5c:26:f0:ca:7e:44:
        7f:0d:7d:7c:dc:56:a3:f3:dd:83:78:70:24:20:ac:0e:
        47:cc:b7:89:c7:90:09:99:de:cd:c0:57:3a:a3:ad:ab:
        ff:6a:ef:c0:5f:9c:2c:69:92:47:72:27:2c:7f:3b:25:
        b6:b2:e5:cb:16:fb:c1:d2:b6:90:4d:d6:af:7f:3a:fb:
        3e:21:11:63:ba:d4:2c:aa:43:1f:fb:d1:12:fa:d0:f1:
        38:ef:be:26:e8:f9:91:b6:47:87:9b:cf:ae:10:79:89:
        dd:f5:06:49:2e:5f:77:29:e7:07:97:56:6d:5c:a1:35:
        45:03:8a:6a:dc:19:23:c1:61:de:14:40:ce:5d:87:ae
    Fingerprint (SHA-256):
        25:DB:3D:42:41:5C:D6:39:8E:1C:CC:A0:E4:0D:EC:1F:8F:1D:BD:8E:21:CC:38:0B:80:65:38:FF:8F:A8:8C:39
    Fingerprint (SHA1):
        E9:1C:FE:4C:58:01:45:69:21:2E:D7:0A:DD:B9:07:5D:A6:D6:F2:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9251: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:71
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:52 2017
            Not After : Thu Aug 10 12:23:52 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:83:cf:15:45:47:54:33:b6:79:37:96:94:f7:f3:8c:
                    a0:a6:0b:c5:55:36:48:bf:5e:86:04:2e:0e:9f:88:6f:
                    b8:c5:60:93:cb:7b:ea:bb:37:e1:2f:b4:12:21:11:bb:
                    56:ca:4a:75:cc:01:0a:60:dd:af:92:b8:70:7f:91:f1:
                    7e:8a:70:c9:35:f8:f0:5a:aa:68:2f:6a:1c:58:04:42:
                    bb:9d:df:74:8b:61:52:9a:2a:8a:d8:c7:30:eb:90:04:
                    50:af:d4:89:53:df:da:42:71:70:50:75:44:7e:c4:1c:
                    0f:87:83:51:5f:c0:ec:ab:f8:68:35:8b:22:c5:24:b2:
                    65:66:d9:92:09:6e:97:ba:fc:ba:a9:10:de:50:f5:56:
                    e0:02:4d:70:55:65:30:ff:58:ab:19:df:23:60:f4:a6:
                    b5:3e:d6:6d:05:28:31:15:5a:6f:3e:9d:29:38:b7:63:
                    02:b9:02:57:36:e2:41:17:45:3b:f4:58:e7:8d:45:d2:
                    4f:74:5d:c2:94:40:41:8f:65:a0:da:88:fc:04:f7:93:
                    5e:a7:ce:ee:d7:d3:91:e6:f4:d4:d3:78:2e:7f:14:a9:
                    76:a0:6b:8f:84:99:23:cb:61:73:66:6e:88:19:ae:c6:
                    ab:a4:24:98:ab:bf:41:de:4b:ad:f2:49:88:b0:c6:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:74:44:b5:d8:90:c3:64:3f:04:c6:30:6e:96:9a:3b:
        10:fa:3c:a0:5f:b5:f7:f8:94:e1:e7:f7:f6:40:c9:f8:
        f4:d4:46:ed:f2:07:c1:f4:1e:8b:fc:6e:24:2d:3a:4e:
        a6:0f:e3:56:d9:c0:bd:5a:d8:22:ec:e4:89:1b:d3:aa:
        10:ab:8c:72:13:bf:36:a8:6a:bf:07:0c:ac:50:40:92:
        5a:70:59:39:3c:f8:32:be:d2:5a:83:88:ef:d1:12:f6:
        d1:b8:a7:a7:d5:b8:cd:d2:99:ff:03:33:1a:91:5f:12:
        ff:39:ca:97:b4:da:9f:20:c8:35:9a:66:d6:12:38:cc:
        68:49:f1:9f:ed:48:31:e4:b1:88:a7:e4:46:dd:a1:04:
        9b:ea:fe:3c:d1:30:70:33:ed:d5:5f:8f:48:ed:91:2b:
        ff:ea:55:f2:c7:9e:4e:98:ae:2b:dd:26:73:13:b3:cb:
        6c:27:7f:ac:00:e4:db:5b:cd:d4:6b:23:0c:3a:6f:c8:
        cd:be:07:15:ea:08:78:1b:4f:99:8b:9b:ec:af:28:a8:
        cb:9b:99:fa:35:0c:61:ee:57:0f:de:c5:61:f8:fe:ce:
        22:21:0d:bc:65:8a:d3:83:2a:16:0d:ec:c4:01:91:7f:
        b6:c9:70:c3:55:27:3f:06:ee:40:3e:6a:5f:e2:d2:10
    Fingerprint (SHA-256):
        DC:06:45:60:41:59:49:6A:7A:FA:F1:38:8A:12:97:0A:80:DB:7F:FD:80:91:23:18:5C:87:10:B8:42:83:9C:A1
    Fingerprint (SHA1):
        16:C6:F4:5E:1E:4B:4B:C1:E0:B7:E4:B4:16:E0:65:8F:F0:A0:0F:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9252: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:72
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:53 2017
            Not After : Thu Aug 10 12:23:53 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:3f:7f:b7:eb:36:83:ae:43:31:4c:5a:df:dc:1e:07:
                    f2:dd:b2:d2:83:9d:f0:50:c7:a7:fe:30:5b:d9:30:c1:
                    ca:ee:05:f8:5e:52:eb:d0:94:70:8f:d7:94:73:8c:a2:
                    1d:9f:3a:07:6b:bd:05:ff:c3:19:07:21:09:0f:d3:f2:
                    95:c3:17:93:7e:b2:ec:b8:d8:b3:91:d4:e8:1a:79:99:
                    03:31:65:8e:d6:c8:ae:38:03:06:b1:f6:c6:53:8f:f8:
                    3a:1f:76:81:f5:92:56:b5:9e:d0:a0:50:d3:15:3b:88:
                    0f:d8:b3:db:43:8e:d2:c4:e3:85:62:34:63:a1:40:f8:
                    f4:b7:3b:06:eb:c4:90:61:06:8f:38:b8:10:9c:b6:3d:
                    07:58:9e:be:56:05:dd:aa:75:db:48:44:6f:66:65:45:
                    e2:a9:cb:8d:78:af:c9:be:dd:b2:2c:3b:bf:0f:32:e5:
                    f4:2f:59:89:0a:37:2a:81:2d:4e:79:b0:e6:24:26:0b:
                    f1:41:99:1c:32:c6:41:f9:92:c7:43:d2:82:ef:4f:3a:
                    58:b7:2e:18:52:79:92:93:87:4a:a5:a3:0c:98:0b:cf:
                    69:62:82:d2:16:b4:e9:b6:6b:a5:7d:be:62:ca:1a:30:
                    01:30:16:2a:c0:ae:b6:67:3e:8f:b9:32:11:5f:79:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:43:03:0e:1f:41:77:d8:4e:c7:e4:f3:1a:35:cf:c7:
        3d:f4:45:e5:ad:e8:6c:38:c5:e1:67:f9:2f:db:83:c0:
        19:b3:96:76:af:0c:da:b6:75:e3:60:73:a6:14:8d:8b:
        ef:11:75:6c:ae:e1:28:2a:93:d2:15:9d:2a:72:95:00:
        61:e7:9f:cc:01:0e:7f:1c:a6:06:60:ca:98:16:1d:a6:
        35:8b:7f:87:57:e4:4e:27:83:d7:1b:a7:70:ca:6d:d7:
        28:dd:a5:44:d0:87:fc:33:f6:15:4c:17:88:71:81:18:
        d7:4e:bd:5d:fb:aa:5b:6f:4d:31:b6:2f:77:1a:ba:9d:
        a8:ca:a0:cb:be:39:62:61:0f:a1:74:14:86:e1:2d:b5:
        d7:c0:4e:2c:58:ab:aa:bc:3d:76:0e:0d:0d:99:db:e0:
        64:95:2c:4b:ab:4f:d6:32:7e:b1:b3:0e:2b:0b:da:8a:
        8e:cf:98:22:a4:f0:75:2b:11:68:ff:d7:36:59:58:dc:
        ee:09:5d:8b:23:cc:bd:66:55:a2:d3:4e:19:cd:17:a6:
        e2:06:20:48:11:d5:20:df:6d:20:a6:bb:49:0a:35:18:
        56:04:a0:13:b9:93:74:9d:5a:8c:64:de:70:93:4a:60:
        e4:ed:42:b9:46:dd:3a:c4:7b:09:69:cf:06:21:34:9a
    Fingerprint (SHA-256):
        BB:42:EF:08:1B:3E:64:84:DA:EE:39:00:B0:35:09:8D:03:EB:D8:91:AA:7F:7C:9D:B4:B2:9F:D9:CD:D7:EF:CF
    Fingerprint (SHA1):
        2A:90:2E:CA:82:0C:69:58:68:1D:D9:7A:66:C5:13:15:72:BC:1A:85
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9253: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:74
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:54 2017
            Not After : Thu Aug 10 12:23:54 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:d6:4c:d3:ee:bb:ec:90:91:58:eb:3c:19:aa:3f:ee:
                    83:c8:96:a1:cf:29:97:c5:c7:5e:9e:9c:71:52:ed:4b:
                    8d:c6:24:fb:b5:ea:89:92:2a:1f:4f:85:93:7c:12:00:
                    95:c1:f8:91:a5:ea:d2:9c:a1:80:ec:11:19:2e:f3:03:
                    cc:d4:5b:29:56:f9:65:70:62:d0:be:15:a6:68:2a:ff:
                    4a:71:87:0b:fa:8d:02:2b:b9:13:ff:35:57:91:65:5a:
                    49:a6:c9:67:01:76:87:25:f5:4f:da:f9:0e:6c:fc:4b:
                    04:c5:48:c1:39:6e:ed:59:e9:ed:72:f2:68:92:e3:f9:
                    91:26:f1:a6:b4:3e:a0:15:16:47:1d:78:d0:32:75:0b:
                    43:c0:32:9e:fb:a6:66:6f:2f:3b:b9:fd:99:da:61:2d:
                    f8:0e:ff:af:94:ae:ff:83:e9:f7:89:3b:ad:f1:4d:f3:
                    38:70:b4:a8:3d:98:75:8e:13:5c:c0:ca:92:fe:51:cb:
                    bf:68:86:7e:1b:ce:65:de:e0:99:dd:b6:5d:73:77:f6:
                    a5:f3:e0:6a:6f:24:45:b8:3d:c1:86:d5:84:bd:b6:cc:
                    d8:68:cd:4c:9a:1e:c7:c9:2a:48:cf:ad:31:8f:e9:d5:
                    3e:2f:74:1f:fa:c9:4b:eb:c5:6c:b7:9a:89:df:f0:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4a:1b:d1:fb:dc:55:3d:43:74:f1:a5:14:19:9d:dc:9e:
        69:91:43:16:b3:cc:2c:4a:51:f1:7e:eb:95:af:b0:bc:
        9d:d4:b9:67:bf:c8:41:7d:5c:d6:95:4e:72:5d:1e:4f:
        74:3f:7d:9d:c2:9b:ac:03:35:27:52:a0:b6:46:65:e5:
        c5:67:60:80:5d:24:aa:35:1d:33:4e:1f:9c:0d:48:21:
        f8:23:3a:c3:43:76:66:83:0c:82:48:bb:45:55:52:7a:
        c6:6c:bf:fe:d6:88:32:4c:ca:2e:81:71:19:bd:0f:a3:
        3b:03:86:a6:cc:0c:4b:ec:de:0b:bc:0c:22:d1:b9:1d:
        7d:6b:10:47:7d:35:c4:95:3d:d2:00:7b:70:c2:51:d5:
        95:63:62:5c:ce:0a:86:6b:c2:ee:c5:e3:e0:cb:b5:a8:
        60:23:e7:28:f4:7e:30:ff:b4:74:cd:9c:5c:d1:31:6c:
        92:c0:3c:52:08:f9:ae:41:ae:8f:c1:b5:11:a8:36:0e:
        ae:46:8c:12:cc:4a:d8:b6:87:f2:2e:b3:5a:53:cd:df:
        5f:72:45:e0:bd:aa:b6:97:e6:ac:23:ff:95:8e:b7:4b:
        c4:f7:5a:4b:88:82:40:35:0c:5a:06:7f:20:ea:73:92:
        4c:a0:90:19:ee:4d:0a:56:16:af:03:de:90:27:68:ca
    Fingerprint (SHA-256):
        18:96:A0:21:8E:84:58:2D:34:94:C3:CE:5F:E9:55:6A:D5:98:92:8E:9B:0D:6A:CC:47:51:E5:62:E0:87:E6:49
    Fingerprint (SHA1):
        9F:DD:C1:8A:01:B7:A8:C3:BC:77:A3:6C:F9:77:0D:F1:F7:61:05:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9254: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:76
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:56 2017
            Not After : Thu Aug 10 12:23:56 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:33:58:00:63:bd:81:09:b2:3f:ff:20:de:59:dc:58:
                    8b:4f:50:1f:f7:4e:b2:2a:11:21:60:e4:b7:34:82:76:
                    bc:1c:4a:32:31:cf:62:11:a7:f9:55:50:b0:96:6a:54:
                    37:0b:bf:18:32:b1:65:8e:4c:47:dd:70:c0:2f:3d:f8:
                    9d:41:d0:4a:2e:7f:43:3d:9b:50:b2:15:cc:18:5a:30:
                    fd:78:fd:bb:b4:7e:c2:03:89:c7:4c:fc:0c:2c:49:b9:
                    1b:c1:74:5c:5f:c8:a0:11:93:f5:ed:31:ab:fd:cb:b6:
                    9b:f0:60:13:53:0f:77:28:0e:59:3a:ec:d2:2b:99:0f:
                    5a:66:50:c3:60:64:72:90:90:86:b3:8e:50:ec:5e:cc:
                    3a:84:d6:91:d3:cb:f2:ff:5e:05:12:c1:56:66:3c:00:
                    f6:8f:f2:e7:35:81:b3:7d:84:0e:59:fa:38:23:63:f1:
                    3d:2a:f5:1b:9a:84:8b:18:eb:48:af:ba:61:03:a5:1e:
                    11:8e:53:37:98:bc:1e:ce:9f:db:70:58:9c:b7:9e:28:
                    62:2b:33:f7:91:42:50:b9:33:1f:0f:3c:40:66:12:51:
                    4a:7d:09:ce:b8:82:0e:95:3e:59:d9:9c:35:8f:03:d7:
                    d4:28:5c:d0:c4:5a:66:cb:92:f9:7d:82:6f:d8:88:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:89:1b:5d:17:99:fb:65:9a:fe:af:f3:76:d0:c9:98:
        ab:10:da:df:1f:77:d4:93:db:4e:5b:09:53:48:e4:29:
        0e:d5:c3:c3:b3:a2:13:81:fd:21:cc:e0:71:32:b0:50:
        70:18:44:b4:de:7e:d0:f3:93:2a:85:34:c3:e6:50:08:
        a2:31:55:01:7c:71:eb:40:73:d9:90:9e:d2:4a:ae:c4:
        69:74:da:55:2c:2e:e5:dc:14:c7:bf:fa:49:12:e4:8e:
        83:23:44:d4:47:5d:08:81:84:24:76:9e:2a:12:7a:90:
        4d:fd:e0:cd:58:9d:48:b2:7d:9b:04:90:6b:9d:c9:7d:
        58:6c:35:74:59:87:db:e8:c1:48:74:60:ee:e3:38:26:
        ec:ce:2c:f9:03:ac:b2:56:fb:ae:2c:a2:95:64:d0:e2:
        a2:bb:45:ba:2b:9f:0d:62:b6:66:3e:94:54:c8:42:c3:
        9e:cc:de:f3:d5:6a:2a:e8:64:e0:22:c2:10:ad:e1:79:
        dd:76:2a:e1:a1:e6:f4:81:6d:ab:37:45:31:e2:6f:7f:
        32:95:11:f8:bf:0a:ce:07:05:7d:bc:37:2f:2f:6a:91:
        d2:29:57:56:1f:dd:69:ba:85:04:98:53:18:7a:35:e1:
        c8:98:a8:6e:28:52:44:26:8a:6f:77:00:08:fc:c7:d3
    Fingerprint (SHA-256):
        F7:94:A2:1C:94:DC:0F:40:3A:65:E6:EB:CF:7A:E4:48:11:3B:7B:21:1A:48:F2:35:0C:C6:20:F9:2D:2B:80:86
    Fingerprint (SHA1):
        E9:0F:3C:86:10:95:5C:E2:EC:0D:BC:84:A8:FF:45:27:CF:AD:ED:C5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9255: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:7a
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:58 2017
            Not After : Thu Aug 10 12:23:58 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:9c:55:da:67:38:8c:b2:e4:8a:3d:51:95:3d:2e:d9:
                    55:4a:45:f2:95:b9:13:1f:58:93:1b:18:04:d2:d8:f5:
                    ce:6a:fb:de:c7:c7:df:ea:85:ab:3b:e6:d4:f8:e6:d0:
                    89:30:5c:0b:0a:cc:79:8a:57:4e:20:55:7e:8f:4c:e0:
                    07:cb:ad:8a:6d:32:a5:c5:79:2b:4a:c3:4e:ec:c2:df:
                    2a:aa:e7:97:3d:0c:45:15:03:47:65:d9:18:f7:6b:53:
                    28:e3:e3:84:4e:33:ab:8c:fe:75:04:0e:48:7a:61:95:
                    d4:0f:73:f3:18:64:d6:9d:0d:68:55:d9:a0:5d:92:e8:
                    dc:a1:d7:6b:93:76:2d:b7:fd:dd:7b:fc:4a:b9:76:8c:
                    41:4f:9e:7d:0a:0c:2d:c0:bd:28:5e:71:fe:57:ab:cd:
                    e8:46:35:f0:68:7c:9e:bb:6d:75:9a:20:4c:ef:df:7c:
                    d5:43:67:4e:86:b6:f8:6d:ec:5b:0c:86:1c:cb:6b:55:
                    b5:ef:2b:6a:3d:7b:b5:3c:0c:31:a1:ae:c2:c2:28:27:
                    8b:29:ef:24:ea:a4:0f:5a:89:6b:b6:16:28:2f:1d:38:
                    f6:ab:3d:5e:69:58:b3:00:5c:b0:bf:af:45:41:f8:41:
                    ec:48:66:49:4b:b5:51:02:93:45:ae:01:42:1c:22:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:39:fc:64:5a:50:d3:f0:26:7b:d9:7a:8d:fd:4b:d7:
        70:9e:b6:e8:78:2f:5c:ae:c5:72:c1:e6:13:d7:3b:10:
        bf:2f:6b:0e:1f:99:3b:bd:0b:02:16:ba:ff:c1:de:81:
        cc:08:2f:3a:f9:33:c5:e1:a8:01:a2:5c:76:ff:a4:61:
        89:79:4d:f1:48:5e:2a:31:06:85:7a:31:5a:55:b0:6d:
        45:71:a3:64:62:4b:15:54:98:ec:6c:43:db:59:18:4d:
        5e:8a:b8:d0:a5:3d:88:59:5d:a9:ca:9a:fe:cc:85:16:
        02:aa:3c:12:66:e5:b9:2d:54:68:be:00:14:2b:47:74:
        f8:ee:19:0d:e9:0c:9a:15:0e:6b:30:d5:53:0a:86:87:
        a5:59:72:75:34:77:5a:df:67:61:ae:cf:7b:ba:87:a8:
        76:6f:d9:9a:b7:6b:01:77:d4:90:96:c7:b1:82:28:1b:
        d8:00:75:4f:bb:05:33:65:4e:21:b6:ed:e5:40:38:52:
        96:36:fe:91:67:45:68:e3:8e:65:50:a8:16:14:12:06:
        86:37:3e:99:01:dc:ea:6c:da:3c:4e:54:8f:14:a1:62:
        91:1d:2b:51:ba:49:01:04:28:ef:6e:46:41:23:d6:7b:
        9d:e5:29:cd:08:e2:09:f9:df:64:de:d8:4b:5c:e0:54
    Fingerprint (SHA-256):
        F7:B9:95:2C:46:B7:94:19:FA:9B:58:C6:80:08:EF:90:A3:B4:51:CE:21:DE:16:B3:7C:E4:4D:83:32:04:D3:43
    Fingerprint (SHA1):
        11:FB:83:5E:47:94:55:8A:1D:E9:27:C1:93:76:5A:58:AA:53:6B:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9256: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:7d
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:23:59 2017
            Not After : Thu Aug 10 12:23:59 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:80:72:df:11:93:b8:05:ab:8a:fa:94:d2:92:d9:9a:
                    52:60:83:64:d5:b0:cf:0d:05:4c:ee:89:8c:da:7d:9e:
                    5e:7a:21:c5:d9:40:55:07:42:ae:25:fc:cb:01:26:a8:
                    bc:22:89:26:50:f8:f3:26:a4:9c:bb:38:4a:38:c9:9a:
                    23:51:2f:9d:fa:61:cd:87:28:64:a7:d9:bc:15:c6:35:
                    33:06:09:8d:b0:7c:4e:f3:14:1b:d4:c0:5f:4d:c8:d0:
                    97:42:20:ca:55:bf:81:83:6a:48:5b:db:31:4c:4f:f2:
                    4a:d8:e0:07:bf:ba:32:0c:fb:78:9a:c6:90:23:ba:46:
                    ff:f9:11:aa:02:29:93:77:1f:df:f6:e2:e4:41:6e:8d:
                    38:57:be:c4:2a:41:8b:20:fe:44:49:b1:59:b0:99:bd:
                    51:18:90:0e:37:19:29:23:e2:af:e7:41:c4:e6:75:58:
                    dd:81:e9:c2:b5:92:41:69:7c:15:c3:50:da:4c:62:22:
                    e8:0a:9d:65:eb:ba:4a:74:6c:60:fb:cb:0f:66:27:1d:
                    ac:56:14:1c:5a:d7:e7:2e:1c:9d:83:c1:e1:45:ab:35:
                    6f:4a:29:52:c0:b8:4b:5d:93:06:41:28:4c:fe:f8:27:
                    d0:ef:97:c0:d1:2b:cb:bb:82:31:e4:89:ce:b2:b8:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:1c:22:f6:e7:95:83:a0:ac:d8:99:13:6d:38:36:f9:
        e2:1f:34:f2:b6:6a:a1:81:c5:c7:bc:bd:55:4c:a4:dd:
        5d:2e:ed:34:a3:84:b3:16:a7:bd:10:10:4f:50:30:56:
        7b:0b:64:5b:df:fa:f5:ce:fb:5b:8b:de:c8:28:1f:d8:
        a8:1a:42:5a:fe:89:95:70:ba:19:e8:08:e4:9e:ce:52:
        61:8e:20:96:7c:1f:b9:5e:10:20:87:ea:4f:65:95:0e:
        0a:de:c5:22:22:7f:2f:75:94:e5:8c:fc:90:34:74:d4:
        6f:87:6e:e3:ef:5a:da:8b:60:c8:ee:5b:fe:66:b4:1a:
        12:0a:36:02:ba:5d:a2:46:cd:f4:4e:c8:30:88:f5:9e:
        36:aa:6d:72:f6:b5:76:5d:f4:69:c3:00:3f:ba:57:24:
        41:40:81:1c:49:61:44:a4:68:4c:54:f9:6c:a2:8c:5f:
        b4:ee:10:58:46:1d:b7:64:a4:9b:d4:7f:df:2a:dd:77:
        a4:df:eb:ea:77:49:31:a9:f5:a1:32:c5:63:98:86:67:
        12:48:d0:23:c5:dc:6d:c7:26:84:f1:2f:76:12:b7:04:
        6d:dc:d9:b0:9b:3f:b4:87:f5:a2:00:e8:df:cc:8c:96:
        28:15:2a:28:8c:55:64:fa:27:72:b1:9e:f9:79:39:7f
    Fingerprint (SHA-256):
        C6:D5:1B:0E:EA:8E:5A:EE:EC:5D:72:C8:1A:D3:14:7B:06:89:68:27:EA:64:CF:35:A5:90:47:FD:2A:7E:E9:C6
    Fingerprint (SHA1):
        1B:F6:53:B3:43:2D:F9:D6:B5:FC:3C:21:61:30:2E:43:E7:6F:20:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9257: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:7f
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:24:00 2017
            Not After : Thu Aug 10 12:24:00 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:ea:a0:e8:d4:03:2b:81:08:83:6e:d8:d2:93:52:55:
                    01:78:b5:0c:78:bb:5f:97:4a:ce:c7:05:11:f8:64:4e:
                    4e:78:bb:8c:eb:f1:cc:85:9e:67:a7:2d:b1:0d:7b:af:
                    59:41:15:02:6a:6f:04:42:05:46:7a:46:1f:6a:df:0b:
                    33:0b:fb:7e:41:89:12:25:10:eb:85:7f:c7:c6:01:96:
                    0f:fa:b6:3c:33:d7:5e:9c:bf:d2:0c:33:10:7d:89:c4:
                    21:84:f2:53:ca:d8:79:2d:0c:d4:68:22:a1:8e:ad:18:
                    94:ca:a7:9a:8b:fd:47:64:4e:99:f2:df:d7:f6:0b:7a:
                    74:cf:e9:7e:b9:50:45:c4:ef:d9:c7:14:9d:6c:52:c1:
                    6e:92:ea:df:20:ca:ba:10:c5:a2:bb:a7:40:ac:9c:a5:
                    63:28:82:44:94:c6:57:88:19:4a:05:db:01:09:f9:2e:
                    5e:b2:db:73:e3:28:ce:70:83:40:b2:2f:a5:5d:84:46:
                    0b:9f:10:b2:0b:67:25:f9:25:68:93:e7:7d:29:60:5b:
                    f8:d2:84:e5:a9:85:73:62:24:58:eb:a9:93:43:28:1c:
                    5b:c0:18:d1:e1:7a:3c:aa:08:d0:14:4a:e4:d7:d0:ac:
                    d6:01:87:ba:10:6d:53:b7:0c:ca:b2:ce:40:a9:44:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a5:97:ca:6f:cb:f8:e9:57:3d:86:d6:96:01:70:df:70:
        e8:16:d1:bd:ef:f8:d5:9a:97:61:86:bd:80:4c:3b:f5:
        46:22:c0:86:58:10:9b:59:29:5b:3d:7b:ed:2b:03:c3:
        66:d4:b7:1e:9b:aa:95:59:6c:fb:ac:2a:08:7a:c9:49:
        3e:ef:56:2c:8a:eb:fd:e1:19:70:03:76:ad:04:79:16:
        1e:ac:50:f7:85:9b:8d:17:10:de:b5:ee:9a:ba:08:58:
        e1:f6:27:83:34:16:57:c9:d4:46:f2:fd:76:25:2b:5e:
        7e:ad:2f:59:1b:38:34:97:7e:3d:ac:26:2d:08:ef:fb:
        bf:f8:b2:e5:67:a2:67:98:c3:17:2c:fe:20:ff:5a:3a:
        01:45:46:ac:23:b5:27:16:ee:7b:fe:74:54:53:7a:cd:
        ef:43:9d:f6:f8:ed:ef:93:a5:84:3f:df:e7:88:82:1d:
        a9:f4:99:69:7a:57:9a:a3:8e:cc:46:99:02:f2:13:0c:
        96:4c:52:1b:b3:88:e5:be:8f:cc:e6:d3:d9:28:49:05:
        45:07:31:cd:40:49:67:08:4b:11:36:ff:b8:db:45:57:
        e2:b9:45:dd:fa:6c:bd:6a:bc:21:0a:7e:35:5c:c8:fd:
        53:c3:03:13:64:6d:b7:44:9d:f3:6f:dc:1a:85:01:8e
    Fingerprint (SHA-256):
        57:C8:BC:22:0D:D0:16:F5:4D:6A:07:84:C0:B9:5E:66:28:45:40:DB:6A:DB:E6:B7:DD:F3:15:37:86:0E:FC:62
    Fingerprint (SHA1):
        39:50:5F:45:A9:88:A1:03:81:4C:B2:AA:07:39:BD:76:6F:7C:8F:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9258: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:82
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:24:01 2017
            Not After : Thu Aug 10 12:24:01 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:2d:0d:82:18:dd:b7:a0:3b:a5:d9:5d:54:a3:e3:8b:
                    7d:22:7f:b2:bf:19:2a:0a:36:f8:ad:71:49:ef:ab:3d:
                    de:7d:69:e8:60:01:1a:51:0b:3e:86:23:a0:74:96:d7:
                    23:cc:4d:2a:36:ba:2c:9b:69:ff:99:ba:f0:f3:7a:22:
                    ba:43:0f:4b:ee:07:dc:72:13:de:a6:f5:5b:64:fb:ca:
                    f6:92:a1:62:1a:b5:f1:45:8f:c4:dc:a0:4e:3b:af:26:
                    89:82:87:a6:93:bf:34:fb:b0:d7:e9:10:e3:bd:39:74:
                    25:11:63:9b:06:40:96:88:aa:b0:0a:ef:bd:0d:6e:8c:
                    3b:10:65:80:35:60:e5:33:aa:b4:7d:d5:65:13:62:a6:
                    fa:ba:6a:8b:6f:74:da:55:22:6d:03:73:25:9a:ef:95:
                    83:01:cb:af:46:2c:82:08:2a:45:23:5b:f0:be:43:0c:
                    55:e2:f6:64:ad:22:a6:b8:05:a2:4e:43:2d:83:99:f8:
                    7b:83:49:bc:61:b7:97:98:7a:03:05:8c:9f:61:f6:e1:
                    e2:67:d7:d0:0a:89:f7:fa:43:16:ed:e7:d5:59:ba:73:
                    3f:78:f7:77:0a:89:5a:a9:6b:e4:ef:2f:ea:48:19:41:
                    c6:a2:f4:d6:b0:d6:23:08:70:99:b4:a4:be:b0:3b:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:48:8f:64:ed:f6:25:5d:20:9e:69:e3:96:dd:b4:e2:
        6b:ac:86:8c:4a:55:4e:0b:99:ec:15:55:75:73:47:dc:
        5a:53:bd:86:2a:df:9f:e8:f7:7f:dc:b2:68:e1:4a:18:
        05:01:9f:be:5f:a9:a3:c6:e2:67:07:68:64:a4:75:58:
        d8:e8:9c:49:64:6c:ab:f6:4a:a5:c7:ed:4e:60:e6:e8:
        96:a2:40:a2:ff:e0:44:30:4b:74:8c:9d:2e:4a:2b:bb:
        8e:28:c1:28:7e:53:a4:12:08:22:b0:9d:b5:ee:55:65:
        1f:75:f7:4c:06:c2:f4:eb:7b:2b:fe:0b:31:99:a4:4f:
        10:ab:2b:ab:5e:09:2c:1f:19:c9:17:42:48:86:d4:db:
        e2:f7:80:e0:6f:45:9e:5d:a6:87:e0:b8:24:f8:7b:62:
        90:a9:34:b7:d6:0a:09:ea:90:9f:d1:70:f7:4d:89:58:
        b4:bf:99:cc:f1:d8:73:9a:b3:5f:51:c7:8d:9d:84:ec:
        9d:b7:d4:e6:22:f3:9e:d7:19:72:0d:fc:44:93:03:d1:
        d7:a0:e7:87:b4:97:b2:8a:2d:b7:55:82:b0:ad:a9:23:
        4c:fb:cf:3c:7d:95:c4:63:15:62:fd:96:07:85:06:c0:
        fe:2f:b9:8b:cb:e8:ac:a8:b0:e6:ad:5c:6a:7a:f3:db
    Fingerprint (SHA-256):
        31:30:27:41:10:92:5E:90:E4:0D:07:77:34:9A:DC:50:FA:3D:C7:E4:52:1B:C3:49:48:E2:13:DE:F6:C4:19:7E
    Fingerprint (SHA1):
        7A:11:FB:CA:06:A6:38:93:78:47:B0:98:32:9E:11:01:DE:06:8A:FF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9259: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:85
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Wed May 10 12:24:02 2017
            Not After : Thu Aug 10 12:24:02 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:5a:79:92:d4:ba:c4:72:a0:6b:90:37:ed:8a:84:fa:
                    ed:e7:2e:2f:c8:76:db:c0:60:91:5a:6b:e7:58:2a:4c:
                    6e:13:66:f4:fd:a9:44:ae:80:86:07:a8:e7:bb:4d:37:
                    14:36:ef:fa:6a:a4:d2:0d:6b:c6:7b:bc:45:c4:b6:1a:
                    fa:54:c2:82:57:55:03:05:87:4a:37:f6:76:b4:d5:9f:
                    cd:1d:d0:2c:75:7f:25:6a:a9:1e:f5:ef:56:dd:b5:53:
                    d9:f8:70:aa:36:38:f4:8f:d6:67:40:67:e6:46:50:3b:
                    0c:62:5a:97:02:37:16:a6:10:a9:71:52:b4:47:c4:31:
                    c7:32:75:62:2d:c9:52:c3:04:53:ab:85:0a:d6:af:69:
                    89:29:d7:56:33:bc:80:09:05:20:d0:85:53:a9:6e:38:
                    92:0d:4d:e1:57:c4:bb:71:56:c1:29:6c:78:f4:38:30:
                    3d:ef:c3:c9:e9:d7:5a:c2:aa:8e:80:bf:0b:be:22:cf:
                    1a:0e:1b:ce:ad:24:ed:86:16:a1:2d:4a:27:cb:b1:50:
                    d3:c3:ca:20:38:b5:9b:4e:2a:8e:05:09:a5:09:c3:c3:
                    73:ad:d5:6f:7d:d7:f9:a4:c0:04:52:68:d6:1f:af:3b:
                    c3:6d:04:52:a6:f6:ea:4d:bb:e7:b4:13:10:8e:72:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:e5:a3:ff:86:da:8b:7e:f8:37:2f:53:3f:28:db:7e:
        c4:c9:52:4e:1b:67:e8:d8:38:ff:5a:fb:92:49:75:1c:
        c8:a1:c7:87:61:e7:db:38:be:85:84:93:bc:a9:c5:e5:
        7c:39:06:a4:8c:35:b2:ed:be:e1:94:f5:0d:36:8a:56:
        44:6e:d5:a2:a5:24:41:15:00:8e:c1:c8:1d:23:37:b0:
        ee:46:52:7f:45:98:e9:e6:70:6e:77:4c:a3:11:2b:63:
        d1:2a:3a:59:12:3c:3d:05:dc:e0:35:21:1c:f2:ad:ad:
        56:c8:e9:64:b3:c8:ef:e8:da:0a:46:91:7d:58:d2:e9:
        6f:a1:1c:5f:13:e8:fe:d6:c9:6c:99:fc:6e:9f:50:89:
        fb:15:db:ef:31:25:1d:ff:38:ee:14:73:5b:a5:51:cb:
        91:a3:1e:76:9a:bd:4b:8e:d1:f1:3f:24:7e:be:0c:1d:
        51:94:fe:8b:b1:0e:18:43:07:6e:24:47:85:d4:56:2e:
        ef:57:d0:66:79:fe:aa:0f:19:45:45:8a:96:03:bb:e3:
        bd:8a:07:8a:d0:08:4e:fc:68:bd:af:6a:b4:e4:8b:04:
        46:cb:03:9b:de:18:d1:a6:6d:79:ec:8d:2c:3c:f7:9c:
        1b:87:ad:0d:47:cb:64:09:83:93:11:d6:e6:8c:e9:42
    Fingerprint (SHA-256):
        4C:A7:9F:10:E7:E2:63:CD:07:34:7F:CC:19:E5:26:57:0B:7A:33:CA:98:3F:9D:C4:64:FD:C0:0E:9B:F0:01:46
    Fingerprint (SHA1):
        65:88:DF:52:E5:B1:B7:79:E1:75:87:24:8E:3D:8B:7E:35:44:42:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9260: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9261: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9262: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #9263: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:89
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 12:24:06 2017
            Not After : Thu Aug 10 12:24:06 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:ce:45:0e:31:f4:23:b8:79:d9:b6:c1:d5:8b:47:e2:
                    14:47:f0:f6:24:83:98:79:fa:e4:b5:75:82:5c:d6:83:
                    67:66:b8:72:bb:7f:e9:57:00:1d:25:02:6d:3b:e7:cc:
                    4d:80:85:08:6a:a6:0f:a3:a5:0d:74:de:d7:4f:f2:62:
                    41:0e:de:ba:8b:05:a7:d0:39:20:76:48:10:5e:2f:ca:
                    bd:d5:f3:6c:7e:18:36:fa:78:81:1c:65:1b:37:9c:8c:
                    aa:af:fe:04:71:18:61:fa:73:c6:32:ec:91:8f:3e:1f:
                    59:bc:07:2e:cc:cf:35:48:63:cc:2a:9d:3a:23:f4:a1:
                    0c:80:f2:ab:6e:c8:ca:53:b3:20:9c:07:64:bb:89:40:
                    63:77:ea:f1:84:73:a3:95:8a:60:f5:ed:6d:a7:b9:52:
                    cb:3f:f1:5f:cb:86:f5:64:1a:72:e6:43:65:54:a7:73:
                    3f:c3:65:a0:07:20:50:1c:9d:f5:35:8a:97:d6:e7:65:
                    59:2c:e9:e1:23:5c:af:3c:49:00:7c:ce:1e:54:45:1e:
                    69:0a:8b:8e:a3:af:f9:71:66:0a:c8:da:91:7f:ac:5f:
                    1f:0f:8a:19:a6:d6:52:23:e6:ab:97:eb:24:5b:91:3a:
                    66:06:3f:fa:50:2d:de:1a:84:7d:07:1c:ca:44:f5:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:45:19:f2:6d:f3:2c:c0:f5:97:dd:bf:e2:be:83:51:
        d9:be:57:db:f6:b4:49:e5:8b:14:60:71:fb:c2:d9:9e:
        05:58:d3:86:2d:79:6a:38:2f:8f:8a:25:5c:f4:3b:53:
        d2:3c:b9:2f:97:b1:13:e2:0c:b4:91:02:67:20:95:e0:
        f7:62:56:34:5c:b7:4b:12:a7:c0:28:24:00:a7:da:3b:
        19:cf:e3:26:ca:32:9b:36:88:0b:6d:6b:c4:95:ba:e0:
        dd:6a:88:52:00:ec:c4:25:e2:dd:2c:14:d4:03:ec:e2:
        c0:33:d6:36:94:a0:9a:b1:01:3a:8d:5d:fc:53:3a:25:
        8a:35:80:4f:e5:a6:3a:ea:02:40:0f:57:6b:f4:e7:4f:
        c2:09:4a:9e:26:3f:0e:de:f3:58:46:07:9c:85:5f:84:
        76:55:f8:0d:7e:85:d6:c4:68:5f:02:63:55:6b:63:a7:
        f3:95:e9:5e:2e:5f:9a:cf:7e:c1:33:68:c5:e7:5b:95:
        25:ae:a5:ab:2b:92:1b:2f:7e:2c:10:b1:6c:d8:6f:bb:
        65:94:72:0d:67:05:a2:be:81:f3:31:aa:c6:14:0c:25:
        a5:48:20:48:93:84:7b:42:6e:dd:ba:ec:f3:4f:ed:fa:
        21:6a:bc:14:74:98:4a:49:9d:99:ef:44:8b:47:35:00
    Fingerprint (SHA-256):
        65:58:29:6C:0E:02:AF:02:DF:E9:9C:5D:0C:C0:BD:00:7D:25:04:55:8F:E4:76:50:AB:EB:F5:5A:D8:A2:93:27
    Fingerprint (SHA1):
        07:3F:C0:A3:C1:0B:4E:7C:6D:B4:EB:56:40:CB:45:52:53:7C:79:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9264: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #9265: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9266: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9267: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9268: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9269: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9270: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #9271: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:e5:51:94
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Wed May 10 12:24:10 2017
            Not After : Thu Aug 10 12:24:10 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:d5:c0:b3:b0:1f:f3:4d:07:c8:af:8e:51:e4:c1:25:
                    26:b3:a7:c0:89:ac:fd:01:60:7f:b9:ac:8e:41:f4:c8:
                    5e:8d:8a:a8:81:45:0a:8c:16:3a:d1:88:6f:e7:a8:74:
                    07:7b:2c:19:96:55:d2:56:af:a0:27:1f:95:5d:26:85:
                    1c:60:af:f1:86:33:38:43:83:f9:60:4a:2e:9b:f3:82:
                    f4:30:2a:d3:2b:71:02:d2:ee:a9:a3:d4:e5:3c:7f:83:
                    51:3a:2d:5b:ec:64:ec:c3:ae:fb:a0:94:89:cc:1f:4c:
                    12:2e:74:0e:df:a2:ec:d9:45:a0:d3:7f:c7:c2:1a:53:
                    e5:09:92:59:79:cd:da:a3:fc:cb:df:7d:98:96:bf:a4:
                    78:77:52:3d:12:12:06:be:42:6a:9c:e3:84:1d:a5:e4:
                    79:80:ad:e2:59:4c:36:7e:9c:77:ea:5e:68:f5:01:6f:
                    7e:f7:8d:c0:2e:9a:85:c7:92:6a:1f:8c:ae:5e:91:3d:
                    8e:98:42:f1:22:dd:00:99:04:df:2d:55:9f:73:3c:a8:
                    84:c8:51:f5:35:77:40:e0:b2:61:05:e1:40:c3:3f:a2:
                    fb:1f:24:60:c5:9c:51:42:4c:b9:c3:a3:dd:78:0a:09:
                    b9:73:fd:cf:ab:75:3e:43:4b:d9:9d:20:89:2f:df:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:76:0c:ba:8d:46:84:b1:c6:f2:e6:bb:2b:0d:47:5f:
        9d:60:da:b2:64:04:32:c1:1c:9c:eb:59:57:82:eb:da:
        33:38:29:cb:2b:cc:1c:99:ac:5f:ad:60:09:0d:5a:e1:
        b3:cb:5e:7a:f1:22:41:7e:81:83:c9:19:1f:02:b9:c0:
        c7:31:84:60:09:cc:bc:77:b0:83:af:80:34:0f:4d:43:
        b5:8d:97:d7:96:bf:8b:fc:1a:ba:9a:c8:3b:4f:5e:b0:
        6b:9b:5e:1d:d7:cc:bc:2f:f0:34:e7:02:90:4c:1e:37:
        dc:88:53:10:5c:3e:0f:2f:09:a3:31:46:ff:f1:24:6a:
        1a:3a:4a:0e:89:86:0e:07:35:37:2c:a3:40:c5:1a:ce:
        55:c7:71:36:76:8b:e8:34:c4:f2:9a:ee:13:40:2c:a0:
        52:86:d2:b3:c4:38:e6:2d:ef:5d:6e:73:98:ca:bd:de:
        7b:f9:d1:04:d3:c3:19:89:65:3d:7b:c7:3e:a2:29:b4:
        62:24:ef:1e:2e:33:7d:7b:06:13:ab:55:d1:c0:dd:a1:
        ef:73:75:54:f9:b2:b8:51:7f:84:cd:f8:15:86:a0:88:
        0d:37:7a:47:9e:90:53:a7:45:93:e1:e6:c8:b3:b8:25:
        18:c5:6f:fc:5a:da:fc:e4:6d:04:f5:e6:37:87:1e:ac
    Fingerprint (SHA-256):
        2A:D8:82:84:D1:CD:ED:C5:1A:20:3D:46:D3:42:28:58:9F:AC:A0:02:2A:74:32:4A:EF:C5:E0:A7:C6:D6:C7:A9
    Fingerprint (SHA1):
        24:BF:E1:3B:F5:2F:5B:57:14:0D:B4:83:94:3E:6A:13:3E:6A:C2:86
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9272: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9273: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9274: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #9275: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9276: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9277: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #9278: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #9279: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9280: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #9281: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9282: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9283: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #9284: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9285: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #9286: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9287: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #9288: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9289: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9290: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #9291: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9292: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9293: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #9294: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9295: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9296: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #9297: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9298: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9299: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #9300: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9301: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9302: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #9303: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #9304: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #9305: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9306: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #9307: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9308: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9309: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9310: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9311: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9312: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9313: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9314: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9315: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9316: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9317: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9318: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9319: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9320: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #9321: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9322: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #9323: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9324: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9325: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #9326: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9327: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9328: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #9329: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9330: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9331: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #9332: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9333: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9334: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #9335: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9336: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9337: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #9338: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9339: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9340: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #9341: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9342: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9343: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #9344: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9345: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9346: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #9347: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9348: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9349: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #9350: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9351: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9352: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #9353: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9354: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9355: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #9356: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9357: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9358: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #9359: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9360: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9361: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #9362: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9363: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9364: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #9365: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9366: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9367: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #9368: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9369: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9370: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #9371: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9372: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9373: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #9374: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9375: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9376: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #9377: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9378: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9379: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #9380: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9381: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9382: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #9383: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9384: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9385: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #9386: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9387: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9388: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #9389: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9390: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9391: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #9392: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9393: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9394: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #9395: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9396: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9397: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #9398: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9399: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9400: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #9401: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9402: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9403: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #9404: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9405: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9406: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #9407: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9408: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9409: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #9410: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9411: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9412: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #9413: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9414: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9415: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #9416: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9417: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9418: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #9419: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9420: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9421: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #9422: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9423: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9424: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #9425: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9426: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9427: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #9428: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9429: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9430: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #9431: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9432: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9433: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #9434: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9435: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9436: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #9437: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9438: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9439: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #9440: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9441: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9442: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #9443: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9444: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9445: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #9446: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9447: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9448: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #9449: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9450: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9451: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #9452: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9453: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9454: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #9455: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9456: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9457: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #9458: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9459: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9460: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #9461: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9462: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9463: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #9464: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9465: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9466: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #9467: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9468: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9469: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #9470: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9471: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9472: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #9473: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9474: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9475: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #9476: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9477: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9478: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #9479: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9480: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9481: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #9482: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9483: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9484: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #9485: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9486: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9487: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #9488: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9489: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9490: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #9491: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9492: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9493: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #9494: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9495: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9496: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #9497: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9498: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9499: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #9500: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9501: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9502: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #9503: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9504: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9505: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #9506: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9507: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9508: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #9509: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9510: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9511: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #9512: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9513: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9514: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #9515: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9516: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #9517: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #9518: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #9519: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #9520: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #9521: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #9522: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9523: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9524: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #9525: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #9526: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #9527: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #9528: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #9529: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9530: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #9531: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9532: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #9533: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Wed May 10 12:25:28 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Wed May 10 12:25:28 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9534: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9535: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #9536: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9537: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9538: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9539: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9540: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9541: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #9542: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #9543: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9544: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9545: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9546: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir
-r--r-----. 1 mockbuild mockbuild   1221 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1425 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    577 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 233472 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r--------. 1 mockbuild mockbuild 131072 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r--------. 1 mockbuild mockbuild    630 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r-----. 1 mockbuild mockbuild    393 May 10 12:25 /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #9547: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:22 2017
            Not After : Tue May 10 12:23:22 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:7b:07:1d:21:8a:13:a1:e7:33:5d:f9:11:89:a8:45:
                    ba:7f:4b:54:f2:25:30:7b:00:c4:c3:84:61:fd:be:e5:
                    80:5c:d5:66:e6:52:1f:a3:79:1e:cb:48:a6:4b:9f:6c:
                    37:e6:c9:55:26:dc:f7:21:cc:52:4d:e2:52:10:4a:06:
                    7d:7b:71:1e:13:03:5d:79:a3:fe:30:4d:fc:9d:c3:86:
                    c5:f1:1b:6e:db:f0:48:04:20:68:f4:9f:89:1d:48:df:
                    7e:9e:71:1a:fd:0a:d1:1c:ac:ba:3e:4c:f1:06:68:d8:
                    14:da:03:c0:86:7b:c3:0a:b0:18:95:91:69:6b:49:60:
                    ed:01:a1:a8:ec:cd:87:10:dc:e1:1e:aa:5b:4d:4e:29:
                    f8:d3:a8:c2:9b:82:7d:8d:b3:47:30:34:d2:7d:94:54:
                    27:a8:01:18:6f:fa:a7:f5:6a:4d:27:cd:51:18:61:26:
                    09:f2:8d:a9:e7:e0:2e:7d:77:82:d1:f9:39:de:27:1e:
                    7c:c8:80:67:8c:ac:2a:91:14:fe:f1:9c:43:2c:b4:b2:
                    96:36:74:88:42:8e:68:8c:dc:56:9c:22:65:ab:37:a6:
                    49:bd:cd:69:40:c1:ca:b0:10:c9:66:3f:4c:a6:cd:b2:
                    47:2d:27:c6:84:f6:a9:1e:03:bf:b1:1f:55:c0:d3:df
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:e1:39:81:03:61:68:18:7f:4b:83:c2:95:e6:c3:8b:
        9b:fa:93:ad:e4:56:6d:b6:9c:72:62:39:95:42:44:58:
        76:69:fa:de:ff:d5:de:0d:4a:e0:30:1a:c0:0a:37:48:
        e5:93:c5:b8:c1:ad:85:93:06:f0:da:f8:42:ac:21:19:
        e2:e2:09:51:09:12:56:73:a4:55:f0:27:d9:ee:73:af:
        be:19:28:a5:99:fe:f7:d1:dd:10:f2:43:80:7e:f2:c4:
        26:85:41:7b:9b:01:bd:1b:e2:de:58:32:4e:66:a6:6e:
        30:7a:99:50:d5:b4:f3:55:d2:33:ab:f4:bf:62:c7:27:
        c3:50:cc:98:2a:6c:e5:87:fc:9a:ff:15:4a:cf:91:cc:
        a1:aa:2d:a5:16:6c:de:3f:28:f1:22:2d:a6:ca:b7:b9:
        2f:32:50:4a:51:31:40:cf:68:aa:c6:06:ce:f7:9e:c0:
        0e:e4:3a:26:36:da:7c:4e:69:6f:71:ae:bd:79:7c:99:
        8d:02:6d:4e:1e:9e:b6:ed:7c:65:b8:12:87:9a:e6:91:
        cc:4b:1d:de:5f:81:2e:ef:40:f4:28:01:01:d1:d6:49:
        ac:9a:7c:a8:2f:8a:23:1d:f3:ba:8c:0a:0f:ed:f9:f8:
        40:fd:5f:74:83:3c:b4:5a:1a:70:33:c0:83:f7:ad:86
    Fingerprint (SHA-256):
        81:32:81:2D:99:29:FF:59:7D:E4:7B:B2:E1:7B:E3:12:96:4E:2C:B5:E4:40:C8:1E:73:DB:5D:67:1D:B1:31:70
    Fingerprint (SHA1):
        89:E6:B8:B2:4D:AB:E1:F1:78:23:4D:8F:96:1F:6D:6C:5C:DA:98:B7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #9548: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Wed May 10 12:25:30 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Wed May 10 12:25:30 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9549: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                55:48:92:37:df:cb:33:22:5c:bb:56:02:7e:59:64:28
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9550: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9551: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9552: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9553: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4c:bd:b3:b3:ea:77:8e:42:6f:9b:8b:39:80:92:ac:37
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 12:22:41 2017
            Not After : Tue May 10 12:22:41 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:a9:dd:55:bf:b6:35:2e:81:e5:88:0b:5f:ff:3d:
                    ac:0f:77:db:ff:3d:1a:d9:e0:f3:8a:16:ab:1d:34:bf:
                    e3:de:18:0e:09:71:ad:bb:76:85:34:b7:bc:11:51:d3:
                    44:f0:b6:1d:5b:bd:b7:ee:90:07:ce:2c:85:46:22:63:
                    ed:1f:f0:00:6a:e6:ce:cc:0a:f0:60:fe:e5:62:ec:d0:
                    90:2e:70:20:7e:5a:00:45:ae:48:75:81:1b:ae:0c:9e:
                    b4:49:95:fb:a8:1a:f4:a7:8d:1f:13:74:d9:b1:5d:d2:
                    2a:2a:fe:cd:95:90:b9:9e:07:f0:ff:1c:c9:1c:98:53:
                    c4:66:08:32:ed
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:96:f6:8f:44:e0:de:b9:ac:f2:71:
        13:1e:9e:10:79:f8:44:72:fa:ba:e9:89:15:40:69:e3:
        bf:59:c9:e8:df:84:8f:b3:c2:47:1c:c0:7d:f3:e9:9c:
        97:0c:0f:03:00:2f:9f:eb:4b:8c:13:8d:b5:6d:89:3b:
        4e:68:e4:3b:e2:4d:96:02:42:01:45:26:a8:95:0a:7d:
        51:50:20:7a:10:e3:01:5c:46:a3:fd:2a:2b:73:d2:57:
        05:45:64:23:c4:d9:2e:b6:a0:3a:f8:ff:ed:65:e3:8e:
        f3:ce:5c:ad:3d:36:78:e4:02:82:4d:24:ff:3d:af:55:
        8e:a9:06:87:86:7c:3e:7c:b9:fb:73
    Fingerprint (SHA-256):
        BE:69:6C:B8:98:57:DB:4E:55:BD:20:CF:58:4C:59:19:67:88:1E:35:52:DD:6A:24:89:E6:8B:75:89:7C:08:B6
    Fingerprint (SHA1):
        60:45:3B:E7:54:27:56:E6:CC:00:6F:37:C1:BA:69:AD:3C:87:CC:CB
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Wed May 10 12:23:19 2017
            Not After : Tue May 10 12:23:19 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:c3:27:8a:7d:eb:d7:81:09:3d:e9:dc:19:e7:38:f7:
                    2b:48:bb:46:24:4f:7c:65:4f:a2:10:1b:5f:2a:d3:75:
                    ee:a3:37:1b:bb:a4:78:c2:6a:5b:d1:7c:17:5b:73:47:
                    18:4b:26:51:30:e2:93:20:3c:f4:c3:01:25:8e:13:8a:
                    34:5e:16:4d:cf:e4:08:cd:f8:a7:4a:e8:84:d4:e7:ea:
                    2c:96:84:a4:15:a6:d2:c9:9b:aa:3d:46:fc:9c:a3:da:
                    6a
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:37:7c:c8:bd:6b:1b:d2:06:e9:b7:ce:
        42:d8:bf:48:5d:f0:26:e6:b8:62:84:ac:91:53:88:6a:
        7c:ad:bc:2d:37:e7:2b:a7:74:cd:41:24:d7:42:22:8b:
        43:29:ff:68:fa:ed:13:2d:c1:c3:3d:db:de:ad:fc:9e:
        9e:3c:47:35:e7:99:02:42:01:f1:da:cb:b5:b6:db:a5:
        1b:a9:56:20:d2:93:a4:39:96:82:34:aa:50:f9:5a:c6:
        b5:86:79:35:5a:53:18:44:dd:6f:5a:67:7c:0f:29:fe:
        0a:0f:85:de:fe:45:be:61:14:35:cd:18:cf:6d:75:03:
        34:a1:1b:c7:9e:67:98:15:0b:92
    Fingerprint (SHA-256):
        A1:EF:6A:3B:C4:00:A0:D9:89:42:59:FD:41:AB:4C:48:3F:1F:9A:BF:80:BE:45:BF:F4:76:F2:63:1A:08:96:62
    Fingerprint (SHA1):
        71:2D:1E:30:DE:96:A5:52:93:29:F2:67:EB:E7:FC:66:09:B8:31:DC
    Friendly Name: Alice-ec
tools.sh: #9554: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9555: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                dc:0a:9e:33:5d:01:8b:9b:da:1a:25:10:2e:48:91:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9556: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9557: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9558: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                6b:cf:43:6a:53:ab:49:c8:d4:ea:54:c0:eb:31:e5:04
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9559: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9560: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9561: Exporting with [RC2-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                63:82:e1:1d:3b:b0:0c:90:9f:0d:53:69:f6:a9:81:3b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9562: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9563: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9564: Exporting with [RC2-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                17:b0:25:33:a7:04:d2:db:66:5c:ab:51:27:db:f5:66
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9565: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9566: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9567: Exporting with [RC2-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                db:d2:69:b3:9b:2d:bf:fd:d7:62:7a:dc:22:4d:b1:36
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9568: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9569: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9570: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                06:fd:37:75:3f:aa:bb:cd:c3:6a:20:ea:1d:10:da:db
            Iteration Count: 2000 (0x7d0)
tools.sh: #9571: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9572: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9573: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4b:cc:fb:ec:f6:79:23:d8:5c:93:91:6f:88:dd:68:35
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9574: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9575: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9576: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2f:69:96:ce:1b:21:71:46:dc:22:75:6e:39:9d:28:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9577: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9578: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9579: Exporting with [DES-EDE3-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ed:65:1c:07:bc:ef:6b:73:4a:2c:30:2a:a2:0e:ee:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9580: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9581: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9582: Exporting with [DES-EDE3-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d6:1f:c5:04:cb:20:c8:75:e5:78:cc:bd:1f:7c:41:c0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9583: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9584: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9585: Exporting with [DES-EDE3-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                69:8b:5d:27:de:8e:99:c8:c2:3a:11:ae:5c:2e:3a:89
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9586: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9587: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9588: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7e:b9:22:d9:b0:ed:bb:f4:1a:1a:56:31:25:62:7d:f3
            Iteration Count: 2000 (0x7d0)
tools.sh: #9589: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9590: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9591: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b9:29:f4:f1:bf:39:41:df:d7:6b:f5:fe:88:51:8f:69
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:6a:17:9f:ea:b5:e3:50:b8:71:10:9a:ed:69:93:
                    72:fc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9592: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9593: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9594: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5b:e5:33:54:a9:17:58:89:ab:b6:6b:53:30:12:0f:57
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:bc:51:77:9e:54:de:1b:80:76:00:68:0d:64:a3:
                    16:87
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9595: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9596: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9597: Exporting with [AES-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ea:d2:7e:a4:60:35:5f:c0:51:8f:26:72:73:06:fd:a7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:bf:86:83:18:80:37:ad:bf:c3:80:2e:a1:c8:e3:
                    32:72
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9598: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9599: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9600: Exporting with [AES-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1e:4b:fb:91:ba:0e:9c:e7:7d:aa:3e:f8:55:da:7c:77
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:c7:6f:21:ab:f7:ae:a5:21:21:3c:45:d6:67:fa:
                    c9:e3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9601: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9602: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9603: Exporting with [AES-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        24:62:e6:e7:8f:81:92:ac:27:39:e9:40:4f:04:00:42
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:0f:d7:c9:54:ef:1b:dc:59:38:97:6b:5b:31:08:
                    da:61
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9604: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9605: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9606: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3c:b3:97:38:c6:a3:58:ea:ba:7e:80:e6:f5:5e:1f:3f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 16 (0x10)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:ec:76:a9:c5:88:7a:fe:28:ce:db:3d:25:c5:1f:
                    7d:70
tools.sh: #9607: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9608: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9609: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e1:e2:d6:64:14:ad:6c:5f:37:8e:d2:ef:47:6f:6b:e4
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:af:7d:8a:98:02:08:1d:89:27:ea:2a:c8:de:5e:
                    a2:29
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9610: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9611: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9612: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7c:c8:19:cb:f6:a0:61:88:fd:08:c6:91:15:ee:3b:92
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:ef:a4:2f:45:bc:7f:39:e8:09:bc:16:c8:ed:e9:
                    d7:93
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9613: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9614: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9615: Exporting with [AES-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        19:62:4f:60:b3:50:82:db:ae:60:7b:98:3a:08:fb:3a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:f7:4a:dd:da:6f:80:79:40:16:ca:81:f1:ee:a8:
                    8d:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9616: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9617: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9618: Exporting with [AES-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ff:81:9a:84:dc:07:43:db:88:b1:8e:3d:45:76:41:a3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:3e:77:2f:29:ea:85:f6:a3:2b:64:c0:47:da:16:
                    7f:31
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9619: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9620: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9621: Exporting with [AES-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8d:99:f6:88:50:9a:c3:13:1f:28:26:2f:29:62:55:ab
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:d6:54:e8:f1:d2:8f:c1:7b:32:e3:38:db:3d:dd:
                    32:dd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9622: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9623: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9624: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        93:98:f0:19:08:4d:0d:0e:1d:96:b5:4c:b2:25:20:01
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 24 (0x18)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:63:87:10:20:c2:a1:ed:2c:82:2f:a9:06:f0:eb:
                    80:10
tools.sh: #9625: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9626: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9627: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        7a:96:97:8d:e2:a3:4f:08:31:9c:8c:5d:86:2d:9b:43
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:08:45:61:80:79:d5:12:d8:f8:f2:00:e7:62:27:
                    62:41
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9628: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9629: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9630: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:83:b7:1a:31:d5:5e:c2:eb:78:e5:d2:58:b8:38:c0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:b7:dd:d2:4c:42:9a:71:9f:df:52:a9:cf:d8:88:
                    51:83
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9631: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9632: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9633: Exporting with [AES-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bd:68:1b:ac:3f:8c:e5:a5:ac:d3:2d:12:a5:ae:b6:62
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:03:db:60:6c:0a:0a:00:a9:3d:44:1d:56:40:72:
                    10:d6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9634: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9635: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9636: Exporting with [AES-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        63:00:a4:97:9b:7a:b9:d9:31:e8:0b:a4:8d:6f:03:a5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:0c:1c:64:05:c9:dc:71:a0:98:00:b6:a8:52:3c:
                    45:ba
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9637: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9638: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9639: Exporting with [AES-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        da:49:d5:51:48:0d:5e:f5:51:08:84:1c:4e:af:46:86
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:37:fc:17:35:44:3f:23:c3:23:77:ed:2d:4f:d5:
                    13:6a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9640: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9641: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9642: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d5:22:4d:84:d4:c7:85:23:d7:4d:e9:f1:5a:e0:5f:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:3b:1d:17:7e:e0:20:88:c9:98:b0:6c:ee:29:4a:
                    12:ea
tools.sh: #9643: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9644: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9645: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6a:42:e7:72:a0:a1:f9:5a:fb:35:d6:49:d9:f5:08:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:bf:5a:48:06:c8:83:26:43:93:bb:b6:d5:26:f3:
                    5d:4e
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9646: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9647: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9648: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        3c:90:96:e2:8c:c7:30:dd:6f:14:df:99:1c:a4:8b:da
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:8e:20:04:7a:d7:43:f5:b2:b2:b3:fb:67:8f:3c:
                    a2:60
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9649: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9650: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9651: Exporting with [CAMELLIA-128-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        91:a6:89:1f:ae:11:20:47:3a:be:98:89:40:02:0f:98
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:87:d7:f6:38:b4:cd:37:ad:2a:9b:d6:0a:93:56:
                    c6:38
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9652: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9653: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9654: Exporting with [CAMELLIA-128-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e7:5f:1e:ad:e1:f3:a2:2c:d3:8f:de:de:ff:3b:7d:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:b2:8d:51:d3:ab:17:de:7e:05:02:d8:05:aa:f9:
                    8a:13
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9655: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9656: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9657: Exporting with [CAMELLIA-128-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e0:9e:bf:97:63:61:a0:a1:80:55:3a:7c:92:48:86:a6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:e6:0a:c8:e2:fb:fa:9c:06:11:1d:ec:4c:a3:65:
                    be:64
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9658: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9659: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9660: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a9:1b:cc:36:c2:7d:28:71:74:af:23:de:c6:c5:ff:8e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:e3:6d:82:86:3c:c4:91:13:04:1c:1f:80:24:84:
                    9e:f1
tools.sh: #9661: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9662: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9663: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d8:cf:a4:fd:b1:82:11:0b:c7:2b:31:73:db:0c:b5:46
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:67:20:b8:8e:2e:6c:37:43:c2:bf:45:70:c4:eb:
                    37:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9664: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9665: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9666: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5c:1f:99:2f:b4:0f:73:ec:b6:ad:72:ad:87:3f:a0:6f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:25:f0:37:cc:ff:b0:b3:e1:52:95:23:9a:24:93:
                    c0:f6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9667: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9668: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9669: Exporting with [CAMELLIA-192-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ee:eb:8b:f7:89:cd:13:9c:f4:f1:70:af:8e:83:cc:8a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:03:1c:2a:e9:eb:a2:4a:76:66:d8:34:15:1a:cd:
                    c3:04
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9670: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9671: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9672: Exporting with [CAMELLIA-192-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        57:07:1d:99:38:75:39:95:14:93:24:3e:5d:1f:b8:17
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:23:e4:78:fa:83:57:8a:e4:06:b5:e2:3d:99:c9:
                    bb:88
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9673: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9674: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9675: Exporting with [CAMELLIA-192-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:62:bb:98:d2:cf:52:c4:fe:23:60:70:f4:c6:79:5d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:45:37:ef:07:d5:21:85:49:2d:85:a3:e9:a8:82:
                    f6:0d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9676: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9677: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9678: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5f:09:55:e1:58:ea:90:d6:36:fc:53:5e:12:cb:9f:b3
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:ea:19:1c:99:99:a2:4d:bc:fb:93:f0:85:1e:ca:
                    1f:18
tools.sh: #9679: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9680: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9681: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b2:6b:ac:f4:9a:ad:91:e4:5d:0f:1b:c0:a6:c8:48:b1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:94:9f:84:2e:a5:ae:d6:67:4d:01:0b:49:a6:2f:
                    61:0d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9682: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9683: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9684: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        72:81:29:42:0e:b1:c0:15:db:ea:6e:18:b5:d3:f5:f1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:76:e1:cc:96:3b:52:b1:81:78:84:2e:c1:84:97:
                    57:dc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9685: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9686: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-128-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9687: Exporting with [CAMELLIA-256-CBC:AES-128-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1f:7f:3c:b5:62:a0:4e:68:41:f2:76:55:d8:56:97:e7
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:f6:0f:db:bf:38:65:dd:b3:8b:eb:41:9d:e9:b7:
                    77:ce
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9688: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9689: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-192-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9690: Exporting with [CAMELLIA-256-CBC:AES-192-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        75:63:de:d4:28:fd:0e:fc:37:be:8d:ad:42:9a:93:70
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:85:93:aa:39:53:f0:a9:89:24:ce:af:60:ce:71:
                    66:99
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9691: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9692: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C AES-256-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9693: Exporting with [CAMELLIA-256-CBC:AES-256-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8b:86:15:d8:f2:11:c0:40:a5:39:2c:ad:83:fe:98:55
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:15:3c:b6:54:c6:cb:0c:64:a8:50:e3:8c:da:e8:
                    ea:97
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9694: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9695: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9696: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6c:84:40:90:fb:8b:46:0a:bd:7b:9f:3c:13:c5:40:e1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:a2:e8:61:ca:3a:e1:e6:35:9a:6a:99:41:c6:c9:
                    c3:e9
tools.sh: #9697: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9698: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9699: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c2:a7:c0:27:0e:58:71:75:86:e8:58:c7:4e:bb:39:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9700: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9701: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9702: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                18:78:f5:f8:91:d8:45:df:08:3f:39:d8:c4:45:f9:f0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9703: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9704: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9705: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                0b:ed:1e:88:cb:01:9d:80:38:65:81:18:52:62:2a:80
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9706: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9707: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9708: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                c8:5c:4e:3f:a0:ea:72:b1:bc:85:66:4d:1e:0e:46:75
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9709: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9710: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9711: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                b4:4e:87:16:73:b8:d6:62:5f:6a:3c:18:f6:56:87:1a
            Iteration Count: 2000 (0x7d0)
tools.sh: #9712: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9713: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9714: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                56:b3:24:f3:e8:84:50:e2:b7:8c:35:78:4d:06:c6:5a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9715: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9716: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9717: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                2a:b7:0b:02:1a:4e:9b:88:95:68:1d:7a:c0:91:82:13
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9718: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9719: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9720: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                fc:1f:e4:fb:0e:cc:16:cc:e6:ba:7f:8b:6a:94:7b:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9721: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9722: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9723: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                26:0d:f1:13:e7:ba:f7:14:e5:3c:25:a2:cf:12:03:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9724: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9725: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9726: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b5:ab:22:6c:58:b4:9a:8b:4c:6b:e7:47:98:99:32:4e
            Iteration Count: 2000 (0x7d0)
tools.sh: #9727: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9728: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9729: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                83:10:20:5b:eb:1c:d2:aa:57:a7:f8:1b:58:3c:60:bd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9730: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9731: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9732: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                d2:a1:9b:81:e0:6b:f5:dc:96:12:4c:ed:b0:3c:8f:1d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9733: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9734: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9735: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                47:51:34:63:f6:81:7f:e2:b9:62:5b:19:c8:28:ab:20
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9736: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9737: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9738: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                c8:01:78:53:88:86:10:1f:4a:b1:b3:71:f9:71:b8:0e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9739: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9740: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9741: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                77:ce:02:1a:dc:d2:c2:a3:c9:d9:ce:1c:5e:f1:05:0b
            Iteration Count: 2000 (0x7d0)
tools.sh: #9742: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9743: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9744: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e1:0f:d0:48:58:d8:7a:e7:1d:22:36:24:40:74:44:b7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9745: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9746: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9747: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6c:0d:b5:29:b5:b5:ae:62:f3:b0:5e:20:a0:15:b9:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9748: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9749: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9750: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                30:9b:cb:84:fd:68:25:9a:ff:4b:31:09:5c:b6:29:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9751: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9752: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9753: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4e:b5:48:22:a0:f2:47:31:73:4b:b8:eb:1a:56:85:44
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9754: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9755: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9756: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                6b:87:1f:cc:dc:9c:65:af:88:2c:98:27:68:06:6e:d9
            Iteration Count: 2000 (0x7d0)
tools.sh: #9757: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9758: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9759: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e9:fe:a4:d7:e3:52:68:0b:8c:29:99:ef:58:e9:e1:ad
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9760: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9761: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9762: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                66:1c:98:b1:cd:26:32:36:e9:e4:aa:18:39:3d:1c:5d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9763: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9764: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9765: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8a:e9:c8:e3:ea:ae:d5:d3:71:ad:d0:96:17:51:2c:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9766: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9767: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9768: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e6:a2:e8:03:04:3d:35:e9:ce:10:a4:6b:41:58:1a:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9769: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9770: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9771: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                21:36:1f:36:27:07:cb:c8:75:ec:e6:12:7f:54:b0:41
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9772: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9773: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9774: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                1c:31:79:7d:63:77:02:fb:fb:0b:6f:d0:2f:43:1a:f1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9775: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9776: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9777: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                85:e2:d7:d2:ca:2c:67:28:11:4c:72:47:5f:61:6b:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9778: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9779: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9780: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a3:7e:c3:75:41:b4:fb:dd:99:83:c8:ec:57:60:04:71
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9781: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9782: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9783: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                90:dc:fa:4c:c8:6b:50:e3:b5:3c:d7:65:ea:69:b2:3b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9784: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9785: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9786: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c7:52:bd:ba:dc:04:8a:bb:dd:76:35:8c:e2:67:63:fd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:22:30 2017
            Not After : Tue May 10 12:22:30 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c4:94:4f:b5:bd:d4:b3:19:b4:13:cb:b4:fb:c4:81:
                    c8:14:25:f4:a8:cc:4e:86:30:3e:e1:40:e1:2a:4d:7c:
                    fa:11:40:66:8a:76:f9:dd:96:20:87:6f:e9:16:f5:b6:
                    92:ed:e0:f2:56:88:19:d6:a5:c9:24:a5:be:05:1e:38:
                    74:35:fc:9e:c0:03:2d:e4:4b:1d:6c:82:4e:03:97:d1:
                    e1:0b:2a:ea:ef:5d:88:70:71:1e:dd:00:b5:10:c3:70:
                    2a:b5:b1:4b:3f:0e:24:4f:e3:d9:59:5b:ab:48:37:a8:
                    48:28:13:54:56:c2:3b:12:c9:4a:f4:bd:e7:15:20:18:
                    e2:cb:b0:dc:83:f9:d1:1a:9e:bf:1a:11:88:fc:b1:3d:
                    07:ee:d1:c2:8b:83:6b:1a:8d:c9:60:7e:e4:e0:a8:ce:
                    6e:d5:87:68:05:9f:0e:3a:ff:8d:3d:62:2b:16:4c:6b:
                    ae:6b:52:de:f1:47:05:49:29:ea:b6:39:0c:5d:7b:08:
                    d3:72:b4:56:9f:b5:3a:21:13:55:e0:f2:49:48:5b:f1:
                    4e:4c:47:e1:39:98:37:89:c7:d1:5b:19:fe:af:09:a8:
                    a5:91:d2:e1:62:b8:79:33:61:d2:cb:77:f7:54:04:b7:
                    ce:06:d3:a9:27:ba:43:9c:ab:3f:50:93:20:a9:e6:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        45:d5:46:4a:14:fe:2d:27:63:57:16:b4:e9:4f:f6:48:
        90:0e:5b:59:b9:f7:01:f3:2a:6a:58:a2:1a:6f:8a:95:
        84:11:3c:72:25:70:61:b2:7e:9d:a7:07:36:5e:24:12:
        1b:1a:f4:59:55:9d:17:3c:e5:c8:df:9c:0e:4c:83:5b:
        b0:64:2d:4d:6b:c7:3e:02:37:64:d0:1b:ce:ba:88:d3:
        c0:99:9d:e6:d2:a7:09:77:b6:76:3d:8c:7d:20:3f:48:
        db:f4:ed:de:3b:8b:26:58:13:49:c5:dc:ab:a8:a0:df:
        fa:8c:02:2d:46:bd:2e:ef:55:be:20:89:1f:ea:57:2b:
        9d:cc:b5:a8:22:76:23:7b:d5:4f:a7:4b:52:90:f7:f0:
        f0:91:aa:ad:e5:33:c9:9b:46:d5:10:ec:fc:5d:33:6d:
        b4:51:12:c3:94:d1:5f:c9:7f:37:b7:7a:cd:c1:67:d1:
        16:4d:3c:da:e5:70:53:a8:0c:79:4d:05:ca:c2:52:76:
        81:19:f5:80:7b:f0:01:d3:00:5b:cf:17:3c:d9:9a:6d:
        a9:23:26:d1:7c:76:bb:a2:1a:4b:c7:3b:83:19:82:00:
        54:68:69:22:ae:10:1f:62:4d:bf:90:ce:82:9b:63:26:
        a8:db:12:6a:0d:1f:46:dc:31:6c:dd:13:ac:45:dd:47
    Fingerprint (SHA-256):
        FD:08:73:09:38:D4:B1:0B:B5:C5:45:98:6D:14:F9:20:35:0A:25:1A:D5:67:A0:43:CF:2C:4B:39:18:D1:01:E6
    Fingerprint (SHA1):
        13:79:03:07:1E:5F:DE:07:80:90:39:F0:32:D7:DB:35:4C:D9:E1:0F
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:23:16 2017
            Not After : Tue May 10 12:23:16 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:62:ce:ad:aa:b6:dc:b5:66:24:09:f2:6b:ec:6a:61:
                    7a:fc:bf:53:92:bd:97:ca:80:52:38:2f:3a:de:e1:68:
                    9f:35:39:84:81:34:36:11:1e:e6:20:44:29:61:c3:fb:
                    d8:38:6f:20:ef:14:5c:26:5f:92:14:5d:f8:3b:d0:a3:
                    e3:bc:d0:b6:33:fc:44:3e:90:57:6c:1b:a5:ef:73:7f:
                    70:a8:93:7c:d7:aa:7e:5c:4b:5d:59:8e:84:ab:c3:29:
                    e4:a5:a3:10:67:81:cd:9a:4d:a1:d0:8e:79:41:19:77:
                    cd:22:dd:ae:3e:87:13:5c:5f:12:86:30:65:0a:5c:b4:
                    a3:fe:0a:0d:62:fc:06:7a:6b:8b:d3:90:be:6b:53:3f:
                    ec:ca:b5:f7:d6:0e:7a:ba:1d:15:db:89:6a:93:bd:13:
                    76:b9:d1:9d:34:07:e9:c6:92:23:55:a9:50:97:6d:75:
                    b2:7d:94:c1:ad:48:94:82:ea:f1:49:1f:13:3d:a7:94:
                    80:3b:20:7c:5d:47:bb:64:2c:61:65:5d:16:df:fc:c1:
                    e3:52:c0:e9:23:4e:90:58:13:4f:13:b1:81:ba:d3:d7:
                    1a:61:92:e7:18:87:36:bb:e6:fa:a8:97:c0:59:d4:e6:
                    9a:aa:57:4e:57:ff:e2:17:c8:33:4a:80:a8:7a:6d:ad
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:11:c4:ee:fb:76:d8:c0:df:70:23:18:68:5b:a5:1e:
        ec:cf:14:73:87:db:19:bb:04:02:2c:92:e4:9e:a4:11:
        cd:26:44:63:6b:09:a8:29:a4:dd:8d:56:cf:62:b7:03:
        49:6c:7f:fd:dd:63:9c:30:47:6e:d4:00:c0:56:13:bf:
        10:50:f2:3f:ce:ee:b3:3c:ed:89:f1:a0:3a:6f:18:e7:
        97:83:7a:11:e2:a4:b7:0b:65:4f:a1:b3:29:f1:57:45:
        07:4f:12:ef:3c:fd:a3:f8:df:1d:77:16:96:d5:59:a8:
        2b:75:ed:a9:d9:8a:1c:4e:72:0b:f8:3a:84:1d:2b:92:
        43:9e:37:fb:50:75:48:2b:39:81:54:0a:12:a6:06:24:
        e0:16:6e:68:be:29:52:b8:0f:0d:20:0f:f7:02:58:cd:
        da:bf:29:09:a4:e0:7c:fd:99:17:78:87:20:aa:15:05:
        35:b7:72:db:25:be:10:2b:05:49:92:fe:cf:9a:a1:54:
        f5:a7:ac:f5:2b:80:e5:48:56:2b:f3:74:48:66:d3:52:
        bb:72:a7:08:72:01:6c:7d:2a:0a:82:90:be:b1:8d:7e:
        b9:74:f7:7e:bf:8f:77:4d:93:f6:25:92:7d:61:2e:b6:
        6d:24:17:0b:9a:eb:c9:9a:32:e2:ed:e1:ab:47:6a:de
    Fingerprint (SHA-256):
        30:50:DE:84:32:A9:5A:0D:B3:25:7B:E6:8A:B6:05:29:49:3A:28:44:1E:DF:F4:81:6C:08:D0:32:E2:D1:B5:74
    Fingerprint (SHA1):
        1F:61:48:D1:AF:38:93:55:57:B6:13:98:E3:9A:7C:12:5B:FE:5D:F5
    Friendly Name: Alice
tools.sh: #9787: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9788: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9789: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9790: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9791: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 37%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #9792: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9793: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9794: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> sign.html
--> signjs.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 30%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 37%)
tree "../tools/html" signed successfully
tools.sh: #9795: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   sign.html
        verified   signjs.html
tools.sh: #9796: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9797: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Wed May 10 12:26:09 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Wed May 10 12:26:09 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9798: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9799: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      311de8ddc4668a1d4a33e73767e3fa73cd855207   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #9800: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9801: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9802: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9803: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9804: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9805: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9806: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9807: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9808: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9809: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9810: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      311de8ddc4668a1d4a33e73767e3fa73cd855207   FIPS_PUB_140_Test_Certificate
fips.sh: #9811: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9812: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9813: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9814: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9815: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      311de8ddc4668a1d4a33e73767e3fa73cd855207   FIPS_PUB_140_Test_Certificate
fips.sh: #9816: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9817: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9818: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x00042d00 (273664): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9819: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Wed May 10 12:26:34 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Wed May 10 12:26:34 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9820: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9821: CMMF test . - PASSED
TIMESTAMP crmf END: Wed May 10 12:26:34 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Wed May 10 12:26:34 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9822: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9823: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9824: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9825: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9826: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9827: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9828: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9829: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9830: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9831: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9832: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9833: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9834: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9835: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9836: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9837: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9838: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9839: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9840: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9841: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9842: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9843: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9844: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9845: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9846: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9847: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9848: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9849: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9850: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9851: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9852: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9853: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9854: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9855: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9856: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9857: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9858: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9859: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9860: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9861: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9862: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9863: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9864: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9865: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9866: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9867: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9868: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9869: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9870: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9871: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9872: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9873: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9874: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9875: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9876: Decode Encrypted-Data . - PASSED
smime.sh: #9877: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9878: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9879: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9880: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9881: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9882: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Wed May 10 12:26:42 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Wed May 10 12:26:43 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16043 >/dev/null 2>/dev/null
selfserv_9505 with PID 16043 found at Wed May 10 12:26:43 UTC 2017
selfserv_9505 with PID 16043 started at Wed May 10 12:26:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9883: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16043 at Wed May 10 12:26:43 UTC 2017
kill -USR1 16043
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16043 killed at Wed May 10 12:26:43 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16099 >/dev/null 2>/dev/null
selfserv_9505 with PID 16099 found at Wed May 10 12:26:43 UTC 2017
selfserv_9505 with PID 16099 started at Wed May 10 12:26:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9884: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16099 at Wed May 10 12:26:44 UTC 2017
kill -USR1 16099
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16099 killed at Wed May 10 12:26:44 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16155 >/dev/null 2>/dev/null
selfserv_9505 with PID 16155 found at Wed May 10 12:26:44 UTC 2017
selfserv_9505 with PID 16155 started at Wed May 10 12:26:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9885: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16155 at Wed May 10 12:26:44 UTC 2017
kill -USR1 16155
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16155 killed at Wed May 10 12:26:44 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16223 >/dev/null 2>/dev/null
selfserv_9505 with PID 16223 found at Wed May 10 12:26:44 UTC 2017
selfserv_9505 with PID 16223 started at Wed May 10 12:26:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9886: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16223 at Wed May 10 12:26:45 UTC 2017
kill -USR1 16223
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16223 killed at Wed May 10 12:26:45 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16279 >/dev/null 2>/dev/null
selfserv_9505 with PID 16279 found at Wed May 10 12:26:45 UTC 2017
selfserv_9505 with PID 16279 started at Wed May 10 12:26:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9887: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16279 at Wed May 10 12:26:45 UTC 2017
kill -USR1 16279
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16279 killed at Wed May 10 12:26:45 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16335 >/dev/null 2>/dev/null
selfserv_9505 with PID 16335 found at Wed May 10 12:26:45 UTC 2017
selfserv_9505 with PID 16335 started at Wed May 10 12:26:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9888: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16335 at Wed May 10 12:26:46 UTC 2017
kill -USR1 16335
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16335 killed at Wed May 10 12:26:46 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16403 >/dev/null 2>/dev/null
selfserv_9505 with PID 16403 found at Wed May 10 12:26:46 UTC 2017
selfserv_9505 with PID 16403 started at Wed May 10 12:26:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9889: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16403 at Wed May 10 12:26:46 UTC 2017
kill -USR1 16403
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16403 killed at Wed May 10 12:26:46 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16459 >/dev/null 2>/dev/null
selfserv_9505 with PID 16459 found at Wed May 10 12:26:46 UTC 2017
selfserv_9505 with PID 16459 started at Wed May 10 12:26:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9890: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16459 at Wed May 10 12:26:47 UTC 2017
kill -USR1 16459
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16459 killed at Wed May 10 12:26:47 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16515 >/dev/null 2>/dev/null
selfserv_9505 with PID 16515 found at Wed May 10 12:26:47 UTC 2017
selfserv_9505 with PID 16515 started at Wed May 10 12:26:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9891: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16515 at Wed May 10 12:26:47 UTC 2017
kill -USR1 16515
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16515 killed at Wed May 10 12:26:47 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16583 >/dev/null 2>/dev/null
selfserv_9505 with PID 16583 found at Wed May 10 12:26:48 UTC 2017
selfserv_9505 with PID 16583 started at Wed May 10 12:26:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9892: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16583 at Wed May 10 12:26:48 UTC 2017
kill -USR1 16583
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16583 killed at Wed May 10 12:26:48 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16639 >/dev/null 2>/dev/null
selfserv_9505 with PID 16639 found at Wed May 10 12:26:48 UTC 2017
selfserv_9505 with PID 16639 started at Wed May 10 12:26:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9893: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16639 at Wed May 10 12:26:48 UTC 2017
kill -USR1 16639
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16639 killed at Wed May 10 12:26:48 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16695 >/dev/null 2>/dev/null
selfserv_9505 with PID 16695 found at Wed May 10 12:26:49 UTC 2017
selfserv_9505 with PID 16695 started at Wed May 10 12:26:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9894: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16695 at Wed May 10 12:26:49 UTC 2017
kill -USR1 16695
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16695 killed at Wed May 10 12:26:49 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16763 >/dev/null 2>/dev/null
selfserv_9505 with PID 16763 found at Wed May 10 12:26:49 UTC 2017
selfserv_9505 with PID 16763 started at Wed May 10 12:26:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9895: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16763 at Wed May 10 12:26:50 UTC 2017
kill -USR1 16763
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16763 killed at Wed May 10 12:26:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16819 >/dev/null 2>/dev/null
selfserv_9505 with PID 16819 found at Wed May 10 12:26:50 UTC 2017
selfserv_9505 with PID 16819 started at Wed May 10 12:26:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9896: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16819 at Wed May 10 12:26:50 UTC 2017
kill -USR1 16819
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16819 killed at Wed May 10 12:26:50 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16875 >/dev/null 2>/dev/null
selfserv_9505 with PID 16875 found at Wed May 10 12:26:50 UTC 2017
selfserv_9505 with PID 16875 started at Wed May 10 12:26:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9897: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16875 at Wed May 10 12:26:51 UTC 2017
kill -USR1 16875
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16875 killed at Wed May 10 12:26:51 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16943 >/dev/null 2>/dev/null
selfserv_9505 with PID 16943 found at Wed May 10 12:26:51 UTC 2017
selfserv_9505 with PID 16943 started at Wed May 10 12:26:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9898: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 16943 at Wed May 10 12:26:51 UTC 2017
kill -USR1 16943
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16943 killed at Wed May 10 12:26:51 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 16999 >/dev/null 2>/dev/null
selfserv_9505 with PID 16999 found at Wed May 10 12:26:51 UTC 2017
selfserv_9505 with PID 16999 started at Wed May 10 12:26:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9899: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 16999 at Wed May 10 12:26:52 UTC 2017
kill -USR1 16999
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 16999 killed at Wed May 10 12:26:52 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17055 >/dev/null 2>/dev/null
selfserv_9505 with PID 17055 found at Wed May 10 12:26:52 UTC 2017
selfserv_9505 with PID 17055 started at Wed May 10 12:26:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9900: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17055 at Wed May 10 12:26:52 UTC 2017
kill -USR1 17055
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17055 killed at Wed May 10 12:26:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17123 >/dev/null 2>/dev/null
selfserv_9505 with PID 17123 found at Wed May 10 12:26:52 UTC 2017
selfserv_9505 with PID 17123 started at Wed May 10 12:26:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9901: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17123 at Wed May 10 12:26:53 UTC 2017
kill -USR1 17123
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17123 killed at Wed May 10 12:26:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17179 >/dev/null 2>/dev/null
selfserv_9505 with PID 17179 found at Wed May 10 12:26:53 UTC 2017
selfserv_9505 with PID 17179 started at Wed May 10 12:26:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9902: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17179 at Wed May 10 12:26:53 UTC 2017
kill -USR1 17179
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17179 killed at Wed May 10 12:26:53 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17235 >/dev/null 2>/dev/null
selfserv_9505 with PID 17235 found at Wed May 10 12:26:53 UTC 2017
selfserv_9505 with PID 17235 started at Wed May 10 12:26:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9903: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17235 at Wed May 10 12:26:54 UTC 2017
kill -USR1 17235
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17235 killed at Wed May 10 12:26:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17303 >/dev/null 2>/dev/null
selfserv_9505 with PID 17303 found at Wed May 10 12:26:54 UTC 2017
selfserv_9505 with PID 17303 started at Wed May 10 12:26:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9904: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17303 at Wed May 10 12:26:54 UTC 2017
kill -USR1 17303
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17303 killed at Wed May 10 12:26:54 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17359 >/dev/null 2>/dev/null
selfserv_9505 with PID 17359 found at Wed May 10 12:26:54 UTC 2017
selfserv_9505 with PID 17359 started at Wed May 10 12:26:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9905: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17359 at Wed May 10 12:26:55 UTC 2017
kill -USR1 17359
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17359 killed at Wed May 10 12:26:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17415 >/dev/null 2>/dev/null
selfserv_9505 with PID 17415 found at Wed May 10 12:26:55 UTC 2017
selfserv_9505 with PID 17415 started at Wed May 10 12:26:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9906: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17415 at Wed May 10 12:26:55 UTC 2017
kill -USR1 17415
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17415 killed at Wed May 10 12:26:55 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17483 >/dev/null 2>/dev/null
selfserv_9505 with PID 17483 found at Wed May 10 12:26:55 UTC 2017
selfserv_9505 with PID 17483 started at Wed May 10 12:26:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9907: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17483 at Wed May 10 12:26:56 UTC 2017
kill -USR1 17483
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17483 killed at Wed May 10 12:26:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17539 >/dev/null 2>/dev/null
selfserv_9505 with PID 17539 found at Wed May 10 12:26:56 UTC 2017
selfserv_9505 with PID 17539 started at Wed May 10 12:26:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9908: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 17539 at Wed May 10 12:26:56 UTC 2017
kill -USR1 17539
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17539 killed at Wed May 10 12:26:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:26:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17595 >/dev/null 2>/dev/null
selfserv_9505 with PID 17595 found at Wed May 10 12:26:56 UTC 2017
selfserv_9505 with PID 17595 started at Wed May 10 12:26:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9909: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17595 at Wed May 10 12:26:57 UTC 2017
kill -USR1 17595
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17595 killed at Wed May 10 12:26:57 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17663 >/dev/null 2>/dev/null
selfserv_9505 with PID 17663 found at Wed May 10 12:26:57 UTC 2017
selfserv_9505 with PID 17663 started at Wed May 10 12:26:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9910: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17663 at Wed May 10 12:26:57 UTC 2017
kill -USR1 17663
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17663 killed at Wed May 10 12:26:57 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17719 >/dev/null 2>/dev/null
selfserv_9505 with PID 17719 found at Wed May 10 12:26:57 UTC 2017
selfserv_9505 with PID 17719 started at Wed May 10 12:26:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9911: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17719 at Wed May 10 12:26:58 UTC 2017
kill -USR1 17719
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17719 killed at Wed May 10 12:26:58 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:26:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17775 >/dev/null 2>/dev/null
selfserv_9505 with PID 17775 found at Wed May 10 12:26:58 UTC 2017
selfserv_9505 with PID 17775 started at Wed May 10 12:26:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9912: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17775 at Wed May 10 12:26:59 UTC 2017
kill -USR1 17775
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17775 killed at Wed May 10 12:26:59 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17843 >/dev/null 2>/dev/null
selfserv_9505 with PID 17843 found at Wed May 10 12:26:59 UTC 2017
selfserv_9505 with PID 17843 started at Wed May 10 12:26:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9913: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17843 at Wed May 10 12:26:59 UTC 2017
kill -USR1 17843
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17843 killed at Wed May 10 12:26:59 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:26:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:26:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17899 >/dev/null 2>/dev/null
selfserv_9505 with PID 17899 found at Wed May 10 12:26:59 UTC 2017
selfserv_9505 with PID 17899 started at Wed May 10 12:26:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9914: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17899 at Wed May 10 12:27:00 UTC 2017
kill -USR1 17899
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17899 killed at Wed May 10 12:27:00 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 17957 >/dev/null 2>/dev/null
selfserv_9505 with PID 17957 found at Wed May 10 12:27:00 UTC 2017
selfserv_9505 with PID 17957 started at Wed May 10 12:27:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9915: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 17957 at Wed May 10 12:27:00 UTC 2017
kill -USR1 17957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 17957 killed at Wed May 10 12:27:00 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18025 >/dev/null 2>/dev/null
selfserv_9505 with PID 18025 found at Wed May 10 12:27:00 UTC 2017
selfserv_9505 with PID 18025 started at Wed May 10 12:27:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9916: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 18025 at Wed May 10 12:27:01 UTC 2017
kill -USR1 18025
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18025 killed at Wed May 10 12:27:01 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18083 >/dev/null 2>/dev/null
selfserv_9505 with PID 18083 found at Wed May 10 12:27:01 UTC 2017
selfserv_9505 with PID 18083 started at Wed May 10 12:27:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9917: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18083 at Wed May 10 12:27:01 UTC 2017
kill -USR1 18083
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18083 killed at Wed May 10 12:27:01 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18139 >/dev/null 2>/dev/null
selfserv_9505 with PID 18139 found at Wed May 10 12:27:01 UTC 2017
selfserv_9505 with PID 18139 started at Wed May 10 12:27:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9918: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 18139 at Wed May 10 12:27:02 UTC 2017
kill -USR1 18139
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18139 killed at Wed May 10 12:27:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18207 >/dev/null 2>/dev/null
selfserv_9505 with PID 18207 found at Wed May 10 12:27:02 UTC 2017
selfserv_9505 with PID 18207 started at Wed May 10 12:27:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9919: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18207 at Wed May 10 12:27:02 UTC 2017
kill -USR1 18207
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18207 killed at Wed May 10 12:27:02 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18263 >/dev/null 2>/dev/null
selfserv_9505 with PID 18263 found at Wed May 10 12:27:02 UTC 2017
selfserv_9505 with PID 18263 started at Wed May 10 12:27:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9920: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18263 at Wed May 10 12:27:03 UTC 2017
kill -USR1 18263
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18263 killed at Wed May 10 12:27:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18319 >/dev/null 2>/dev/null
selfserv_9505 with PID 18319 found at Wed May 10 12:27:03 UTC 2017
selfserv_9505 with PID 18319 started at Wed May 10 12:27:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9921: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18319 at Wed May 10 12:27:03 UTC 2017
kill -USR1 18319
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18319 killed at Wed May 10 12:27:03 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18387 >/dev/null 2>/dev/null
selfserv_9505 with PID 18387 found at Wed May 10 12:27:03 UTC 2017
selfserv_9505 with PID 18387 started at Wed May 10 12:27:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9922: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18387 at Wed May 10 12:27:04 UTC 2017
kill -USR1 18387
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18387 killed at Wed May 10 12:27:04 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18443 >/dev/null 2>/dev/null
selfserv_9505 with PID 18443 found at Wed May 10 12:27:04 UTC 2017
selfserv_9505 with PID 18443 started at Wed May 10 12:27:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9923: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18443 at Wed May 10 12:27:05 UTC 2017
kill -USR1 18443
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18443 killed at Wed May 10 12:27:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18499 >/dev/null 2>/dev/null
selfserv_9505 with PID 18499 found at Wed May 10 12:27:05 UTC 2017
selfserv_9505 with PID 18499 started at Wed May 10 12:27:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9924: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18499 at Wed May 10 12:27:05 UTC 2017
kill -USR1 18499
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18499 killed at Wed May 10 12:27:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18567 >/dev/null 2>/dev/null
selfserv_9505 with PID 18567 found at Wed May 10 12:27:05 UTC 2017
selfserv_9505 with PID 18567 started at Wed May 10 12:27:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9925: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18567 at Wed May 10 12:27:06 UTC 2017
kill -USR1 18567
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18567 killed at Wed May 10 12:27:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18623 >/dev/null 2>/dev/null
selfserv_9505 with PID 18623 found at Wed May 10 12:27:06 UTC 2017
selfserv_9505 with PID 18623 started at Wed May 10 12:27:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9926: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 18623 at Wed May 10 12:27:06 UTC 2017
kill -USR1 18623
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18623 killed at Wed May 10 12:27:06 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18679 >/dev/null 2>/dev/null
selfserv_9505 with PID 18679 found at Wed May 10 12:27:06 UTC 2017
selfserv_9505 with PID 18679 started at Wed May 10 12:27:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9927: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18679 at Wed May 10 12:27:07 UTC 2017
kill -USR1 18679
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18679 killed at Wed May 10 12:27:07 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18747 >/dev/null 2>/dev/null
selfserv_9505 with PID 18747 found at Wed May 10 12:27:07 UTC 2017
selfserv_9505 with PID 18747 started at Wed May 10 12:27:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9928: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18747 at Wed May 10 12:27:08 UTC 2017
kill -USR1 18747
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18747 killed at Wed May 10 12:27:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18803 >/dev/null 2>/dev/null
selfserv_9505 with PID 18803 found at Wed May 10 12:27:08 UTC 2017
selfserv_9505 with PID 18803 started at Wed May 10 12:27:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9929: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18803 at Wed May 10 12:27:08 UTC 2017
kill -USR1 18803
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18803 killed at Wed May 10 12:27:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18859 >/dev/null 2>/dev/null
selfserv_9505 with PID 18859 found at Wed May 10 12:27:08 UTC 2017
selfserv_9505 with PID 18859 started at Wed May 10 12:27:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9930: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18859 at Wed May 10 12:27:09 UTC 2017
kill -USR1 18859
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18859 killed at Wed May 10 12:27:09 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18927 >/dev/null 2>/dev/null
selfserv_9505 with PID 18927 found at Wed May 10 12:27:09 UTC 2017
selfserv_9505 with PID 18927 started at Wed May 10 12:27:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9931: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18927 at Wed May 10 12:27:09 UTC 2017
kill -USR1 18927
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18927 killed at Wed May 10 12:27:09 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 18983 >/dev/null 2>/dev/null
selfserv_9505 with PID 18983 found at Wed May 10 12:27:09 UTC 2017
selfserv_9505 with PID 18983 started at Wed May 10 12:27:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9932: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 18983 at Wed May 10 12:27:10 UTC 2017
kill -USR1 18983
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 18983 killed at Wed May 10 12:27:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:10 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19040 >/dev/null 2>/dev/null
selfserv_9505 with PID 19040 found at Wed May 10 12:27:10 UTC 2017
selfserv_9505 with PID 19040 started at Wed May 10 12:27:10 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9933: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19040 at Wed May 10 12:27:10 UTC 2017
kill -USR1 19040
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19040 killed at Wed May 10 12:27:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19108 >/dev/null 2>/dev/null
selfserv_9505 with PID 19108 found at Wed May 10 12:27:11 UTC 2017
selfserv_9505 with PID 19108 started at Wed May 10 12:27:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9934: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19108 at Wed May 10 12:27:11 UTC 2017
kill -USR1 19108
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19108 killed at Wed May 10 12:27:11 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19164 >/dev/null 2>/dev/null
selfserv_9505 with PID 19164 found at Wed May 10 12:27:11 UTC 2017
selfserv_9505 with PID 19164 started at Wed May 10 12:27:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9935: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19164 at Wed May 10 12:27:12 UTC 2017
kill -USR1 19164
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19164 killed at Wed May 10 12:27:12 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19220 >/dev/null 2>/dev/null
selfserv_9505 with PID 19220 found at Wed May 10 12:27:12 UTC 2017
selfserv_9505 with PID 19220 started at Wed May 10 12:27:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9936: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19220 at Wed May 10 12:27:12 UTC 2017
kill -USR1 19220
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19220 killed at Wed May 10 12:27:12 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:12 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19288 >/dev/null 2>/dev/null
selfserv_9505 with PID 19288 found at Wed May 10 12:27:12 UTC 2017
selfserv_9505 with PID 19288 started at Wed May 10 12:27:12 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9937: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19288 at Wed May 10 12:27:13 UTC 2017
kill -USR1 19288
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19288 killed at Wed May 10 12:27:13 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:13 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19344 >/dev/null 2>/dev/null
selfserv_9505 with PID 19344 found at Wed May 10 12:27:13 UTC 2017
selfserv_9505 with PID 19344 started at Wed May 10 12:27:13 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9938: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19344 at Wed May 10 12:27:14 UTC 2017
kill -USR1 19344
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19344 killed at Wed May 10 12:27:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19400 >/dev/null 2>/dev/null
selfserv_9505 with PID 19400 found at Wed May 10 12:27:14 UTC 2017
selfserv_9505 with PID 19400 started at Wed May 10 12:27:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9939: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19400 at Wed May 10 12:27:14 UTC 2017
kill -USR1 19400
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19400 killed at Wed May 10 12:27:14 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:14 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19468 >/dev/null 2>/dev/null
selfserv_9505 with PID 19468 found at Wed May 10 12:27:14 UTC 2017
selfserv_9505 with PID 19468 started at Wed May 10 12:27:14 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9940: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19468 at Wed May 10 12:27:15 UTC 2017
kill -USR1 19468
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19468 killed at Wed May 10 12:27:15 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19524 >/dev/null 2>/dev/null
selfserv_9505 with PID 19524 found at Wed May 10 12:27:15 UTC 2017
selfserv_9505 with PID 19524 started at Wed May 10 12:27:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9941: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19524 at Wed May 10 12:27:15 UTC 2017
kill -USR1 19524
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19524 killed at Wed May 10 12:27:15 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:15 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19580 >/dev/null 2>/dev/null
selfserv_9505 with PID 19580 found at Wed May 10 12:27:15 UTC 2017
selfserv_9505 with PID 19580 started at Wed May 10 12:27:15 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9942: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19580 at Wed May 10 12:27:16 UTC 2017
kill -USR1 19580
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19580 killed at Wed May 10 12:27:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:16 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19648 >/dev/null 2>/dev/null
selfserv_9505 with PID 19648 found at Wed May 10 12:27:16 UTC 2017
selfserv_9505 with PID 19648 started at Wed May 10 12:27:16 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9943: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19648 at Wed May 10 12:27:17 UTC 2017
kill -USR1 19648
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19648 killed at Wed May 10 12:27:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19704 >/dev/null 2>/dev/null
selfserv_9505 with PID 19704 found at Wed May 10 12:27:17 UTC 2017
selfserv_9505 with PID 19704 started at Wed May 10 12:27:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9944: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 19704 at Wed May 10 12:27:17 UTC 2017
kill -USR1 19704
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19704 killed at Wed May 10 12:27:17 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:17 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19760 >/dev/null 2>/dev/null
selfserv_9505 with PID 19760 found at Wed May 10 12:27:17 UTC 2017
selfserv_9505 with PID 19760 started at Wed May 10 12:27:17 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9945: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19760 at Wed May 10 12:27:18 UTC 2017
kill -USR1 19760
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19760 killed at Wed May 10 12:27:18 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:18 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19828 >/dev/null 2>/dev/null
selfserv_9505 with PID 19828 found at Wed May 10 12:27:18 UTC 2017
selfserv_9505 with PID 19828 started at Wed May 10 12:27:18 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9946: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19828 at Wed May 10 12:27:19 UTC 2017
kill -USR1 19828
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19828 killed at Wed May 10 12:27:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19884 >/dev/null 2>/dev/null
selfserv_9505 with PID 19884 found at Wed May 10 12:27:19 UTC 2017
selfserv_9505 with PID 19884 started at Wed May 10 12:27:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9947: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19884 at Wed May 10 12:27:19 UTC 2017
kill -USR1 19884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19884 killed at Wed May 10 12:27:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 19940 >/dev/null 2>/dev/null
selfserv_9505 with PID 19940 found at Wed May 10 12:27:19 UTC 2017
selfserv_9505 with PID 19940 started at Wed May 10 12:27:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9948: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 19940 at Wed May 10 12:27:20 UTC 2017
kill -USR1 19940
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 19940 killed at Wed May 10 12:27:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20008 >/dev/null 2>/dev/null
selfserv_9505 with PID 20008 found at Wed May 10 12:27:20 UTC 2017
selfserv_9505 with PID 20008 started at Wed May 10 12:27:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9949: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20008 at Wed May 10 12:27:20 UTC 2017
kill -USR1 20008
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20008 killed at Wed May 10 12:27:20 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20064 >/dev/null 2>/dev/null
selfserv_9505 with PID 20064 found at Wed May 10 12:27:20 UTC 2017
selfserv_9505 with PID 20064 started at Wed May 10 12:27:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9950: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20064 at Wed May 10 12:27:21 UTC 2017
kill -USR1 20064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20064 killed at Wed May 10 12:27:21 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:21 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20120 >/dev/null 2>/dev/null
selfserv_9505 with PID 20120 found at Wed May 10 12:27:21 UTC 2017
selfserv_9505 with PID 20120 started at Wed May 10 12:27:21 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9951: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20120 at Wed May 10 12:27:22 UTC 2017
kill -USR1 20120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20120 killed at Wed May 10 12:27:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20188 >/dev/null 2>/dev/null
selfserv_9505 with PID 20188 found at Wed May 10 12:27:22 UTC 2017
selfserv_9505 with PID 20188 started at Wed May 10 12:27:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9952: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20188 at Wed May 10 12:27:22 UTC 2017
kill -USR1 20188
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20188 killed at Wed May 10 12:27:22 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:22 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20244 >/dev/null 2>/dev/null
selfserv_9505 with PID 20244 found at Wed May 10 12:27:22 UTC 2017
selfserv_9505 with PID 20244 started at Wed May 10 12:27:22 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9953: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20244 at Wed May 10 12:27:23 UTC 2017
kill -USR1 20244
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20244 killed at Wed May 10 12:27:23 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:23 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20300 >/dev/null 2>/dev/null
selfserv_9505 with PID 20300 found at Wed May 10 12:27:23 UTC 2017
selfserv_9505 with PID 20300 started at Wed May 10 12:27:23 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9954: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20300 at Wed May 10 12:27:23 UTC 2017
kill -USR1 20300
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20300 killed at Wed May 10 12:27:23 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20368 >/dev/null 2>/dev/null
selfserv_9505 with PID 20368 found at Wed May 10 12:27:24 UTC 2017
selfserv_9505 with PID 20368 started at Wed May 10 12:27:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9955: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20368 at Wed May 10 12:27:24 UTC 2017
kill -USR1 20368
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20368 killed at Wed May 10 12:27:24 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:24 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20424 >/dev/null 2>/dev/null
selfserv_9505 with PID 20424 found at Wed May 10 12:27:24 UTC 2017
selfserv_9505 with PID 20424 started at Wed May 10 12:27:24 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9956: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20424 at Wed May 10 12:27:25 UTC 2017
kill -USR1 20424
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20424 killed at Wed May 10 12:27:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20480 >/dev/null 2>/dev/null
selfserv_9505 with PID 20480 found at Wed May 10 12:27:25 UTC 2017
selfserv_9505 with PID 20480 started at Wed May 10 12:27:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9957: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20480 at Wed May 10 12:27:25 UTC 2017
kill -USR1 20480
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20480 killed at Wed May 10 12:27:25 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20548 >/dev/null 2>/dev/null
selfserv_9505 with PID 20548 found at Wed May 10 12:27:25 UTC 2017
selfserv_9505 with PID 20548 started at Wed May 10 12:27:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9958: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20548 at Wed May 10 12:27:26 UTC 2017
kill -USR1 20548
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20548 killed at Wed May 10 12:27:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20604 >/dev/null 2>/dev/null
selfserv_9505 with PID 20604 found at Wed May 10 12:27:26 UTC 2017
selfserv_9505 with PID 20604 started at Wed May 10 12:27:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9959: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20604 at Wed May 10 12:27:26 UTC 2017
kill -USR1 20604
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20604 killed at Wed May 10 12:27:26 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:26 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20660 >/dev/null 2>/dev/null
selfserv_9505 with PID 20660 found at Wed May 10 12:27:26 UTC 2017
selfserv_9505 with PID 20660 started at Wed May 10 12:27:26 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9960: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20660 at Wed May 10 12:27:27 UTC 2017
kill -USR1 20660
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20660 killed at Wed May 10 12:27:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20728 >/dev/null 2>/dev/null
selfserv_9505 with PID 20728 found at Wed May 10 12:27:27 UTC 2017
selfserv_9505 with PID 20728 started at Wed May 10 12:27:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9961: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20728 at Wed May 10 12:27:27 UTC 2017
kill -USR1 20728
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20728 killed at Wed May 10 12:27:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:27 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20784 >/dev/null 2>/dev/null
selfserv_9505 with PID 20784 found at Wed May 10 12:27:27 UTC 2017
selfserv_9505 with PID 20784 started at Wed May 10 12:27:27 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9962: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 20784 at Wed May 10 12:27:28 UTC 2017
kill -USR1 20784
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20784 killed at Wed May 10 12:27:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20840 >/dev/null 2>/dev/null
selfserv_9505 with PID 20840 found at Wed May 10 12:27:28 UTC 2017
selfserv_9505 with PID 20840 started at Wed May 10 12:27:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9963: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20840 at Wed May 10 12:27:28 UTC 2017
kill -USR1 20840
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20840 killed at Wed May 10 12:27:28 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:28 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20908 >/dev/null 2>/dev/null
selfserv_9505 with PID 20908 found at Wed May 10 12:27:28 UTC 2017
selfserv_9505 with PID 20908 started at Wed May 10 12:27:28 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9964: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20908 at Wed May 10 12:27:29 UTC 2017
kill -USR1 20908
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20908 killed at Wed May 10 12:27:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:29 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 20964 >/dev/null 2>/dev/null
selfserv_9505 with PID 20964 found at Wed May 10 12:27:29 UTC 2017
selfserv_9505 with PID 20964 started at Wed May 10 12:27:29 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9965: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 20964 at Wed May 10 12:27:30 UTC 2017
kill -USR1 20964
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 20964 killed at Wed May 10 12:27:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9505 starting at Wed May 10 12:27:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21020 >/dev/null 2>/dev/null
selfserv_9505 with PID 21020 found at Wed May 10 12:27:30 UTC 2017
selfserv_9505 with PID 21020 started at Wed May 10 12:27:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9966: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21020 at Wed May 10 12:27:30 UTC 2017
kill -USR1 21020
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21020 killed at Wed May 10 12:27:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21088 >/dev/null 2>/dev/null
selfserv_9505 with PID 21088 found at Wed May 10 12:27:30 UTC 2017
selfserv_9505 with PID 21088 started at Wed May 10 12:27:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9967: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21088 at Wed May 10 12:27:31 UTC 2017
kill -USR1 21088
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21088 killed at Wed May 10 12:27:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21144 >/dev/null 2>/dev/null
selfserv_9505 with PID 21144 found at Wed May 10 12:27:31 UTC 2017
selfserv_9505 with PID 21144 started at Wed May 10 12:27:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9968: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21144 at Wed May 10 12:27:31 UTC 2017
kill -USR1 21144
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21144 killed at Wed May 10 12:27:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21200 >/dev/null 2>/dev/null
selfserv_9505 with PID 21200 found at Wed May 10 12:27:31 UTC 2017
selfserv_9505 with PID 21200 started at Wed May 10 12:27:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9969: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21200 at Wed May 10 12:27:32 UTC 2017
kill -USR1 21200
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21200 killed at Wed May 10 12:27:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21268 >/dev/null 2>/dev/null
selfserv_9505 with PID 21268 found at Wed May 10 12:27:32 UTC 2017
selfserv_9505 with PID 21268 started at Wed May 10 12:27:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9970: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21268 at Wed May 10 12:27:32 UTC 2017
kill -USR1 21268
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21268 killed at Wed May 10 12:27:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21324 >/dev/null 2>/dev/null
selfserv_9505 with PID 21324 found at Wed May 10 12:27:32 UTC 2017
selfserv_9505 with PID 21324 started at Wed May 10 12:27:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9971: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21324 at Wed May 10 12:27:33 UTC 2017
kill -USR1 21324
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21324 killed at Wed May 10 12:27:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:33 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21380 >/dev/null 2>/dev/null
selfserv_9505 with PID 21380 found at Wed May 10 12:27:33 UTC 2017
selfserv_9505 with PID 21380 started at Wed May 10 12:27:33 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9972: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 21380 at Wed May 10 12:27:34 UTC 2017
kill -USR1 21380
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21380 killed at Wed May 10 12:27:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21457 >/dev/null 2>/dev/null
selfserv_9505 with PID 21457 found at Wed May 10 12:27:34 UTC 2017
selfserv_9505 with PID 21457 started at Wed May 10 12:27:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9973: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21457 at Wed May 10 12:27:34 UTC 2017
kill -USR1 21457
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21457 killed at Wed May 10 12:27:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:34 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21513 >/dev/null 2>/dev/null
selfserv_9505 with PID 21513 found at Wed May 10 12:27:34 UTC 2017
selfserv_9505 with PID 21513 started at Wed May 10 12:27:34 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9974: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21513 at Wed May 10 12:27:35 UTC 2017
kill -USR1 21513
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21513 killed at Wed May 10 12:27:35 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21569 >/dev/null 2>/dev/null
selfserv_9505 with PID 21569 found at Wed May 10 12:27:35 UTC 2017
selfserv_9505 with PID 21569 started at Wed May 10 12:27:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9975: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21569 at Wed May 10 12:27:35 UTC 2017
kill -USR1 21569
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21569 killed at Wed May 10 12:27:35 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:35 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21637 >/dev/null 2>/dev/null
selfserv_9505 with PID 21637 found at Wed May 10 12:27:35 UTC 2017
selfserv_9505 with PID 21637 started at Wed May 10 12:27:35 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9976: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 21637 at Wed May 10 12:27:36 UTC 2017
kill -USR1 21637
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21637 killed at Wed May 10 12:27:36 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21693 >/dev/null 2>/dev/null
selfserv_9505 with PID 21693 found at Wed May 10 12:27:36 UTC 2017
selfserv_9505 with PID 21693 started at Wed May 10 12:27:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9977: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 21693 at Wed May 10 12:27:36 UTC 2017
kill -USR1 21693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21693 killed at Wed May 10 12:27:36 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:36 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21749 >/dev/null 2>/dev/null
selfserv_9505 with PID 21749 found at Wed May 10 12:27:36 UTC 2017
selfserv_9505 with PID 21749 started at Wed May 10 12:27:36 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9978: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 21749 at Wed May 10 12:27:37 UTC 2017
kill -USR1 21749
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21749 killed at Wed May 10 12:27:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21817 >/dev/null 2>/dev/null
selfserv_9505 with PID 21817 found at Wed May 10 12:27:37 UTC 2017
selfserv_9505 with PID 21817 started at Wed May 10 12:27:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9979: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 21817 at Wed May 10 12:27:37 UTC 2017
kill -USR1 21817
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21817 killed at Wed May 10 12:27:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:37 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:37 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21873 >/dev/null 2>/dev/null
selfserv_9505 with PID 21873 found at Wed May 10 12:27:38 UTC 2017
selfserv_9505 with PID 21873 started at Wed May 10 12:27:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9980: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 21873 at Wed May 10 12:27:38 UTC 2017
kill -USR1 21873
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21873 killed at Wed May 10 12:27:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:38 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21929 >/dev/null 2>/dev/null
selfserv_9505 with PID 21929 found at Wed May 10 12:27:38 UTC 2017
selfserv_9505 with PID 21929 started at Wed May 10 12:27:38 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9981: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 21929 at Wed May 10 12:27:38 UTC 2017
kill -USR1 21929
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21929 killed at Wed May 10 12:27:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 21997 >/dev/null 2>/dev/null
selfserv_9505 with PID 21997 found at Wed May 10 12:27:39 UTC 2017
selfserv_9505 with PID 21997 started at Wed May 10 12:27:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9982: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 21997 at Wed May 10 12:27:39 UTC 2017
kill -USR1 21997
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 21997 killed at Wed May 10 12:27:39 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22053 >/dev/null 2>/dev/null
selfserv_9505 with PID 22053 found at Wed May 10 12:27:39 UTC 2017
selfserv_9505 with PID 22053 started at Wed May 10 12:27:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9983: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22053 at Wed May 10 12:27:40 UTC 2017
kill -USR1 22053
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22053 killed at Wed May 10 12:27:40 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22109 >/dev/null 2>/dev/null
selfserv_9505 with PID 22109 found at Wed May 10 12:27:40 UTC 2017
selfserv_9505 with PID 22109 started at Wed May 10 12:27:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9984: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22109 at Wed May 10 12:27:40 UTC 2017
kill -USR1 22109
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22109 killed at Wed May 10 12:27:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:40 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22177 >/dev/null 2>/dev/null
selfserv_9505 with PID 22177 found at Wed May 10 12:27:40 UTC 2017
selfserv_9505 with PID 22177 started at Wed May 10 12:27:40 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9985: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22177 at Wed May 10 12:27:41 UTC 2017
kill -USR1 22177
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22177 killed at Wed May 10 12:27:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22233 >/dev/null 2>/dev/null
selfserv_9505 with PID 22233 found at Wed May 10 12:27:41 UTC 2017
selfserv_9505 with PID 22233 started at Wed May 10 12:27:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9986: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22233 at Wed May 10 12:27:41 UTC 2017
kill -USR1 22233
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22233 killed at Wed May 10 12:27:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22289 >/dev/null 2>/dev/null
selfserv_9505 with PID 22289 found at Wed May 10 12:27:41 UTC 2017
selfserv_9505 with PID 22289 started at Wed May 10 12:27:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9987: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22289 at Wed May 10 12:27:42 UTC 2017
kill -USR1 22289
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22289 killed at Wed May 10 12:27:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22357 >/dev/null 2>/dev/null
selfserv_9505 with PID 22357 found at Wed May 10 12:27:42 UTC 2017
selfserv_9505 with PID 22357 started at Wed May 10 12:27:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9988: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22357 at Wed May 10 12:27:42 UTC 2017
kill -USR1 22357
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22357 killed at Wed May 10 12:27:42 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:42 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22413 >/dev/null 2>/dev/null
selfserv_9505 with PID 22413 found at Wed May 10 12:27:42 UTC 2017
selfserv_9505 with PID 22413 started at Wed May 10 12:27:42 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9989: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22413 at Wed May 10 12:27:43 UTC 2017
kill -USR1 22413
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22413 killed at Wed May 10 12:27:43 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:43 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22469 >/dev/null 2>/dev/null
selfserv_9505 with PID 22469 found at Wed May 10 12:27:43 UTC 2017
selfserv_9505 with PID 22469 started at Wed May 10 12:27:43 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9990: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22469 at Wed May 10 12:27:44 UTC 2017
kill -USR1 22469
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22469 killed at Wed May 10 12:27:44 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22537 >/dev/null 2>/dev/null
selfserv_9505 with PID 22537 found at Wed May 10 12:27:44 UTC 2017
selfserv_9505 with PID 22537 started at Wed May 10 12:27:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9991: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22537 at Wed May 10 12:27:44 UTC 2017
kill -USR1 22537
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22537 killed at Wed May 10 12:27:44 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22593 >/dev/null 2>/dev/null
selfserv_9505 with PID 22593 found at Wed May 10 12:27:44 UTC 2017
selfserv_9505 with PID 22593 started at Wed May 10 12:27:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9992: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22593 at Wed May 10 12:27:45 UTC 2017
kill -USR1 22593
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22593 killed at Wed May 10 12:27:45 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22649 >/dev/null 2>/dev/null
selfserv_9505 with PID 22649 found at Wed May 10 12:27:45 UTC 2017
selfserv_9505 with PID 22649 started at Wed May 10 12:27:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9993: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22649 at Wed May 10 12:27:45 UTC 2017
kill -USR1 22649
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22649 killed at Wed May 10 12:27:45 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:45 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22717 >/dev/null 2>/dev/null
selfserv_9505 with PID 22717 found at Wed May 10 12:27:45 UTC 2017
selfserv_9505 with PID 22717 started at Wed May 10 12:27:45 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9994: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22717 at Wed May 10 12:27:46 UTC 2017
kill -USR1 22717
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22717 killed at Wed May 10 12:27:46 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22773 >/dev/null 2>/dev/null
selfserv_9505 with PID 22773 found at Wed May 10 12:27:46 UTC 2017
selfserv_9505 with PID 22773 started at Wed May 10 12:27:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9995: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22773 at Wed May 10 12:27:46 UTC 2017
kill -USR1 22773
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22773 killed at Wed May 10 12:27:46 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:46 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22829 >/dev/null 2>/dev/null
selfserv_9505 with PID 22829 found at Wed May 10 12:27:46 UTC 2017
selfserv_9505 with PID 22829 started at Wed May 10 12:27:46 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9996: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 22829 at Wed May 10 12:27:47 UTC 2017
kill -USR1 22829
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22829 killed at Wed May 10 12:27:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22897 >/dev/null 2>/dev/null
selfserv_9505 with PID 22897 found at Wed May 10 12:27:47 UTC 2017
selfserv_9505 with PID 22897 started at Wed May 10 12:27:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9997: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22897 at Wed May 10 12:27:47 UTC 2017
kill -USR1 22897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22897 killed at Wed May 10 12:27:47 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:47 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 22953 >/dev/null 2>/dev/null
selfserv_9505 with PID 22953 found at Wed May 10 12:27:47 UTC 2017
selfserv_9505 with PID 22953 started at Wed May 10 12:27:47 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9998: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 22953 at Wed May 10 12:27:48 UTC 2017
kill -USR1 22953
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 22953 killed at Wed May 10 12:27:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23009 >/dev/null 2>/dev/null
selfserv_9505 with PID 23009 found at Wed May 10 12:27:48 UTC 2017
selfserv_9505 with PID 23009 started at Wed May 10 12:27:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9999: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23009 at Wed May 10 12:27:48 UTC 2017
kill -USR1 23009
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23009 killed at Wed May 10 12:27:48 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:48 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:48 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23077 >/dev/null 2>/dev/null
selfserv_9505 with PID 23077 found at Wed May 10 12:27:48 UTC 2017
selfserv_9505 with PID 23077 started at Wed May 10 12:27:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10000: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23077 at Wed May 10 12:27:49 UTC 2017
kill -USR1 23077
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23077 killed at Wed May 10 12:27:49 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:49 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23133 >/dev/null 2>/dev/null
selfserv_9505 with PID 23133 found at Wed May 10 12:27:49 UTC 2017
selfserv_9505 with PID 23133 started at Wed May 10 12:27:49 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10001: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23133 at Wed May 10 12:27:50 UTC 2017
kill -USR1 23133
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23133 killed at Wed May 10 12:27:50 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23189 >/dev/null 2>/dev/null
selfserv_9505 with PID 23189 found at Wed May 10 12:27:50 UTC 2017
selfserv_9505 with PID 23189 started at Wed May 10 12:27:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10002: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23189 at Wed May 10 12:27:50 UTC 2017
kill -USR1 23189
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23189 killed at Wed May 10 12:27:50 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23257 >/dev/null 2>/dev/null
selfserv_9505 with PID 23257 found at Wed May 10 12:27:50 UTC 2017
selfserv_9505 with PID 23257 started at Wed May 10 12:27:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10003: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23257 at Wed May 10 12:27:51 UTC 2017
kill -USR1 23257
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23257 killed at Wed May 10 12:27:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:51 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23313 >/dev/null 2>/dev/null
selfserv_9505 with PID 23313 found at Wed May 10 12:27:51 UTC 2017
selfserv_9505 with PID 23313 started at Wed May 10 12:27:51 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10004: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23313 at Wed May 10 12:27:52 UTC 2017
kill -USR1 23313
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23313 killed at Wed May 10 12:27:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23369 >/dev/null 2>/dev/null
selfserv_9505 with PID 23369 found at Wed May 10 12:27:52 UTC 2017
selfserv_9505 with PID 23369 started at Wed May 10 12:27:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10005: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23369 at Wed May 10 12:27:52 UTC 2017
kill -USR1 23369
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23369 killed at Wed May 10 12:27:52 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23438 >/dev/null 2>/dev/null
selfserv_9505 with PID 23438 found at Wed May 10 12:27:52 UTC 2017
selfserv_9505 with PID 23438 started at Wed May 10 12:27:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10006: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23438 at Wed May 10 12:27:53 UTC 2017
kill -USR1 23438
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23438 killed at Wed May 10 12:27:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23494 >/dev/null 2>/dev/null
selfserv_9505 with PID 23494 found at Wed May 10 12:27:53 UTC 2017
selfserv_9505 with PID 23494 started at Wed May 10 12:27:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10007: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23494 at Wed May 10 12:27:53 UTC 2017
kill -USR1 23494
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23494 killed at Wed May 10 12:27:53 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:53 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23550 >/dev/null 2>/dev/null
selfserv_9505 with PID 23550 found at Wed May 10 12:27:53 UTC 2017
selfserv_9505 with PID 23550 started at Wed May 10 12:27:53 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10008: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23550 at Wed May 10 12:27:54 UTC 2017
kill -USR1 23550
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23550 killed at Wed May 10 12:27:54 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:54 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23618 >/dev/null 2>/dev/null
selfserv_9505 with PID 23618 found at Wed May 10 12:27:54 UTC 2017
selfserv_9505 with PID 23618 started at Wed May 10 12:27:54 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10009: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23618 at Wed May 10 12:27:55 UTC 2017
kill -USR1 23618
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23618 killed at Wed May 10 12:27:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23674 >/dev/null 2>/dev/null
selfserv_9505 with PID 23674 found at Wed May 10 12:27:55 UTC 2017
selfserv_9505 with PID 23674 started at Wed May 10 12:27:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10010: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23674 at Wed May 10 12:27:55 UTC 2017
kill -USR1 23674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23674 killed at Wed May 10 12:27:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:55 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23731 >/dev/null 2>/dev/null
selfserv_9505 with PID 23731 found at Wed May 10 12:27:55 UTC 2017
selfserv_9505 with PID 23731 started at Wed May 10 12:27:55 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10011: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23731 at Wed May 10 12:27:56 UTC 2017
kill -USR1 23731
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23731 killed at Wed May 10 12:27:56 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:56 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23799 >/dev/null 2>/dev/null
selfserv_9505 with PID 23799 found at Wed May 10 12:27:56 UTC 2017
selfserv_9505 with PID 23799 started at Wed May 10 12:27:56 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10012: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23799 at Wed May 10 12:27:57 UTC 2017
kill -USR1 23799
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23799 killed at Wed May 10 12:27:57 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23855 >/dev/null 2>/dev/null
selfserv_9505 with PID 23855 found at Wed May 10 12:27:57 UTC 2017
selfserv_9505 with PID 23855 started at Wed May 10 12:27:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10013: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 23855 at Wed May 10 12:27:57 UTC 2017
kill -USR1 23855
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23855 killed at Wed May 10 12:27:57 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:27:57 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23911 >/dev/null 2>/dev/null
selfserv_9505 with PID 23911 found at Wed May 10 12:27:57 UTC 2017
selfserv_9505 with PID 23911 started at Wed May 10 12:27:57 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10014: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23911 at Wed May 10 12:27:58 UTC 2017
kill -USR1 23911
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23911 killed at Wed May 10 12:27:58 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:58 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 23980 >/dev/null 2>/dev/null
selfserv_9505 with PID 23980 found at Wed May 10 12:27:58 UTC 2017
selfserv_9505 with PID 23980 started at Wed May 10 12:27:58 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10015: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 23980 at Wed May 10 12:27:59 UTC 2017
kill -USR1 23980
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 23980 killed at Wed May 10 12:27:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24036 >/dev/null 2>/dev/null
selfserv_9505 with PID 24036 found at Wed May 10 12:27:59 UTC 2017
selfserv_9505 with PID 24036 started at Wed May 10 12:27:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10016: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24036 at Wed May 10 12:27:59 UTC 2017
kill -USR1 24036
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24036 killed at Wed May 10 12:27:59 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:27:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:27:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24092 >/dev/null 2>/dev/null
selfserv_9505 with PID 24092 found at Wed May 10 12:27:59 UTC 2017
selfserv_9505 with PID 24092 started at Wed May 10 12:27:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10017: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24092 at Wed May 10 12:28:00 UTC 2017
kill -USR1 24092
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24092 killed at Wed May 10 12:28:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24160 >/dev/null 2>/dev/null
selfserv_9505 with PID 24160 found at Wed May 10 12:28:00 UTC 2017
selfserv_9505 with PID 24160 started at Wed May 10 12:28:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10018: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24160 at Wed May 10 12:28:00 UTC 2017
kill -USR1 24160
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24160 killed at Wed May 10 12:28:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:00 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24216 >/dev/null 2>/dev/null
selfserv_9505 with PID 24216 found at Wed May 10 12:28:00 UTC 2017
selfserv_9505 with PID 24216 started at Wed May 10 12:28:00 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10019: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 24216 at Wed May 10 12:28:01 UTC 2017
kill -USR1 24216
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24216 killed at Wed May 10 12:28:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:01 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24272 >/dev/null 2>/dev/null
selfserv_9505 with PID 24272 found at Wed May 10 12:28:01 UTC 2017
selfserv_9505 with PID 24272 started at Wed May 10 12:28:01 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10020: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24272 at Wed May 10 12:28:02 UTC 2017
kill -USR1 24272
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24272 killed at Wed May 10 12:28:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:28:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24340 >/dev/null 2>/dev/null
selfserv_9505 with PID 24340 found at Wed May 10 12:28:02 UTC 2017
selfserv_9505 with PID 24340 started at Wed May 10 12:28:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10021: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 24340 at Wed May 10 12:28:02 UTC 2017
kill -USR1 24340
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24340 killed at Wed May 10 12:28:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:28:02 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24396 >/dev/null 2>/dev/null
selfserv_9505 with PID 24396 found at Wed May 10 12:28:02 UTC 2017
selfserv_9505 with PID 24396 started at Wed May 10 12:28:02 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10022: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 24396 at Wed May 10 12:28:03 UTC 2017
kill -USR1 24396
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24396 killed at Wed May 10 12:28:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:28:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24453 >/dev/null 2>/dev/null
selfserv_9505 with PID 24453 found at Wed May 10 12:28:03 UTC 2017
selfserv_9505 with PID 24453 started at Wed May 10 12:28:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10023: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 24453 at Wed May 10 12:28:03 UTC 2017
kill -USR1 24453
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24453 killed at Wed May 10 12:28:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:03 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24521 >/dev/null 2>/dev/null
selfserv_9505 with PID 24521 found at Wed May 10 12:28:03 UTC 2017
selfserv_9505 with PID 24521 started at Wed May 10 12:28:03 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10024: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24521 at Wed May 10 12:28:04 UTC 2017
kill -USR1 24521
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24521 killed at Wed May 10 12:28:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24577 >/dev/null 2>/dev/null
selfserv_9505 with PID 24577 found at Wed May 10 12:28:04 UTC 2017
selfserv_9505 with PID 24577 started at Wed May 10 12:28:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10025: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 24577 at Wed May 10 12:28:05 UTC 2017
kill -USR1 24577
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24577 killed at Wed May 10 12:28:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24633 >/dev/null 2>/dev/null
selfserv_9505 with PID 24633 found at Wed May 10 12:28:05 UTC 2017
selfserv_9505 with PID 24633 started at Wed May 10 12:28:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10026: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24633 at Wed May 10 12:28:05 UTC 2017
kill -USR1 24633
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24633 killed at Wed May 10 12:28:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:28:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24701 >/dev/null 2>/dev/null
selfserv_9505 with PID 24701 found at Wed May 10 12:28:05 UTC 2017
selfserv_9505 with PID 24701 started at Wed May 10 12:28:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10027: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24701 at Wed May 10 12:28:06 UTC 2017
kill -USR1 24701
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24701 killed at Wed May 10 12:28:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:28:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24757 >/dev/null 2>/dev/null
selfserv_9505 with PID 24757 found at Wed May 10 12:28:06 UTC 2017
selfserv_9505 with PID 24757 started at Wed May 10 12:28:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10028: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24757 at Wed May 10 12:28:06 UTC 2017
kill -USR1 24757
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24757 killed at Wed May 10 12:28:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9505 starting at Wed May 10 12:28:06 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24813 >/dev/null 2>/dev/null
selfserv_9505 with PID 24813 found at Wed May 10 12:28:06 UTC 2017
selfserv_9505 with PID 24813 started at Wed May 10 12:28:06 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #10029: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24813 at Wed May 10 12:28:07 UTC 2017
kill -USR1 24813
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24813 killed at Wed May 10 12:28:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24881 >/dev/null 2>/dev/null
selfserv_9505 with PID 24881 found at Wed May 10 12:28:07 UTC 2017
selfserv_9505 with PID 24881 started at Wed May 10 12:28:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10030: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24881 at Wed May 10 12:28:07 UTC 2017
kill -USR1 24881
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24881 killed at Wed May 10 12:28:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:07 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24937 >/dev/null 2>/dev/null
selfserv_9505 with PID 24937 found at Wed May 10 12:28:07 UTC 2017
selfserv_9505 with PID 24937 started at Wed May 10 12:28:07 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10031: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9505 with PID 24937 at Wed May 10 12:28:08 UTC 2017
kill -USR1 24937
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24937 killed at Wed May 10 12:28:08 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:08 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 24994 >/dev/null 2>/dev/null
selfserv_9505 with PID 24994 found at Wed May 10 12:28:08 UTC 2017
selfserv_9505 with PID 24994 started at Wed May 10 12:28:08 UTC 2017
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #10032: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 24994 at Wed May 10 12:28:09 UTC 2017
kill -USR1 24994
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 24994 killed at Wed May 10 12:28:09 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9505 starting at Wed May 10 12:28:09 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:09 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:09 UTC 2017
selfserv_9505 with PID 25057 started at Wed May 10 12:28:09 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:09 UTC 2017
ssl.sh: #10033: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:09 UTC 2017
ssl.sh: #10034: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:10 UTC 2017
ssl.sh: #10035: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:10 UTC 2017
ssl.sh: #10036: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:10 UTC 2017
ssl.sh: #10037: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:10 UTC 2017
ssl.sh: #10038: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:11 UTC 2017
ssl.sh: #10039: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:11 UTC 2017
ssl.sh: #10040: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:11 UTC 2017
ssl.sh: #10041: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:12 UTC 2017
ssl.sh: #10042: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:12 UTC 2017
ssl.sh: #10043: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:12 UTC 2017
ssl.sh: #10044: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:12 UTC 2017
ssl.sh: #10045: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10046: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:13 UTC 2017
ssl.sh: #10047: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:13 UTC 2017
ssl.sh: #10048: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:13 UTC 2017
ssl.sh: #10049: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:14 UTC 2017
ssl.sh: #10050: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:14 UTC 2017
ssl.sh: #10051: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:14 UTC 2017
ssl.sh: #10052: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:14 UTC 2017
ssl.sh: #10053: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:15 UTC 2017
ssl.sh: #10054: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:15 UTC 2017
ssl.sh: #10055: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:15 UTC 2017
ssl.sh: #10056: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:16 UTC 2017
ssl.sh: #10057: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:16 UTC 2017
ssl.sh: #10058: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:16 UTC 2017
ssl.sh: #10059: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10060: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:17 UTC 2017
ssl.sh: #10061: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:17 UTC 2017
ssl.sh: #10062: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:17 UTC 2017
ssl.sh: #10063: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:17 UTC 2017
ssl.sh: #10064: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:18 UTC 2017
ssl.sh: #10065: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:18 UTC 2017
ssl.sh: #10066: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:18 UTC 2017
ssl.sh: #10067: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:18 UTC 2017
ssl.sh: #10068: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:19 UTC 2017
ssl.sh: #10069: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:19 UTC 2017
ssl.sh: #10070: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:19 UTC 2017
ssl.sh: #10071: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:19 UTC 2017
ssl.sh: #10072: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25057 >/dev/null 2>/dev/null
selfserv_9505 with PID 25057 found at Wed May 10 12:28:20 UTC 2017
ssl.sh: #10073: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 25057 at Wed May 10 12:28:20 UTC 2017
kill -USR1 25057
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 25057 killed at Wed May 10 12:28:20 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:20 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:20 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:20 UTC 2017
selfserv_9505 with PID 26479 started at Wed May 10 12:28:20 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:20 UTC 2017
ssl.sh: #10074: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:20 UTC 2017
ssl.sh: #10075: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:21 UTC 2017
ssl.sh: #10076: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:21 UTC 2017
ssl.sh: #10077: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:21 UTC 2017
ssl.sh: #10078: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:21 UTC 2017
ssl.sh: #10079: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:22 UTC 2017
ssl.sh: #10080: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:22 UTC 2017
ssl.sh: #10081: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:22 UTC 2017
ssl.sh: #10082: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:22 UTC 2017
ssl.sh: #10083: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:23 UTC 2017
ssl.sh: #10084: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:23 UTC 2017
ssl.sh: #10085: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:23 UTC 2017
ssl.sh: #10086: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10087: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:23 UTC 2017
ssl.sh: #10088: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:24 UTC 2017
ssl.sh: #10089: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:24 UTC 2017
ssl.sh: #10090: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:24 UTC 2017
ssl.sh: #10091: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:24 UTC 2017
ssl.sh: #10092: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:25 UTC 2017
ssl.sh: #10093: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:25 UTC 2017
ssl.sh: #10094: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:25 UTC 2017
ssl.sh: #10095: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:25 UTC 2017
ssl.sh: #10096: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:26 UTC 2017
ssl.sh: #10097: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:26 UTC 2017
ssl.sh: #10098: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:26 UTC 2017
ssl.sh: #10099: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:26 UTC 2017
ssl.sh: #10100: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10101: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:27 UTC 2017
ssl.sh: #10102: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:27 UTC 2017
ssl.sh: #10103: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:27 UTC 2017
ssl.sh: #10104: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:28 UTC 2017
ssl.sh: #10105: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:28 UTC 2017
ssl.sh: #10106: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:28 UTC 2017
ssl.sh: #10107: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:28 UTC 2017
ssl.sh: #10108: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:28 UTC 2017
ssl.sh: #10109: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:29 UTC 2017
ssl.sh: #10110: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:29 UTC 2017
ssl.sh: #10111: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:29 UTC 2017
ssl.sh: #10112: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:29 UTC 2017
ssl.sh: #10113: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26479 >/dev/null 2>/dev/null
selfserv_9505 with PID 26479 found at Wed May 10 12:28:30 UTC 2017
ssl.sh: #10114: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 26479 at Wed May 10 12:28:30 UTC 2017
kill -USR1 26479
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 26479 killed at Wed May 10 12:28:30 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:30 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:30 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:30 UTC 2017
selfserv_9505 with PID 27901 started at Wed May 10 12:28:30 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:30 UTC 2017
ssl.sh: #10115: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:31 UTC 2017
ssl.sh: #10116: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:31 UTC 2017
ssl.sh: #10117: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:31 UTC 2017
ssl.sh: #10118: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:31 UTC 2017
ssl.sh: #10119: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:32 UTC 2017
ssl.sh: #10120: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:32 UTC 2017
ssl.sh: #10121: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:32 UTC 2017
ssl.sh: #10122: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:32 UTC 2017
ssl.sh: #10123: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:33 UTC 2017
ssl.sh: #10124: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:33 UTC 2017
ssl.sh: #10125: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:33 UTC 2017
ssl.sh: #10126: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:34 UTC 2017
ssl.sh: #10127: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10128: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:34 UTC 2017
ssl.sh: #10129: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:34 UTC 2017
ssl.sh: #10130: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:35 UTC 2017
ssl.sh: #10131: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:35 UTC 2017
ssl.sh: #10132: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:35 UTC 2017
ssl.sh: #10133: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:36 UTC 2017
ssl.sh: #10134: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:36 UTC 2017
ssl.sh: #10135: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:36 UTC 2017
ssl.sh: #10136: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:36 UTC 2017
ssl.sh: #10137: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:37 UTC 2017
ssl.sh: #10138: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:37 UTC 2017
ssl.sh: #10139: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:37 UTC 2017
ssl.sh: #10140: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:38 UTC 2017
ssl.sh: #10141: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10142: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:38 UTC 2017
ssl.sh: #10143: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:38 UTC 2017
ssl.sh: #10144: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:39 UTC 2017
ssl.sh: #10145: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:39 UTC 2017
ssl.sh: #10146: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:39 UTC 2017
ssl.sh: #10147: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:39 UTC 2017
ssl.sh: #10148: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:40 UTC 2017
ssl.sh: #10149: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:40 UTC 2017
ssl.sh: #10150: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:40 UTC 2017
ssl.sh: #10151: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:41 UTC 2017
ssl.sh: #10152: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:41 UTC 2017
ssl.sh: #10153: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:41 UTC 2017
ssl.sh: #10154: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27901 >/dev/null 2>/dev/null
selfserv_9505 with PID 27901 found at Wed May 10 12:28:41 UTC 2017
ssl.sh: #10155: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 27901 at Wed May 10 12:28:41 UTC 2017
kill -USR1 27901
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 27901 killed at Wed May 10 12:28:41 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:41 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:41 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:41 UTC 2017
selfserv_9505 with PID 29323 started at Wed May 10 12:28:41 UTC 2017
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:42 UTC 2017
ssl.sh: #10156: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:42 UTC 2017
ssl.sh: #10157: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:42 UTC 2017
ssl.sh: #10158: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:43 UTC 2017
ssl.sh: #10159: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:43 UTC 2017
ssl.sh: #10160: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:43 UTC 2017
ssl.sh: #10161: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:43 UTC 2017
ssl.sh: #10162: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:44 UTC 2017
ssl.sh: #10163: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:44 UTC 2017
ssl.sh: #10164: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:44 UTC 2017
ssl.sh: #10165: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:44 UTC 2017
ssl.sh: #10166: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:45 UTC 2017
ssl.sh: #10167: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:45 UTC 2017
ssl.sh: #10168: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10169: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:46 UTC 2017
ssl.sh: #10170: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:46 UTC 2017
ssl.sh: #10171: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:46 UTC 2017
ssl.sh: #10172: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:46 UTC 2017
ssl.sh: #10173: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:47 UTC 2017
ssl.sh: #10174: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:47 UTC 2017
ssl.sh: #10175: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:47 UTC 2017
ssl.sh: #10176: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:47 UTC 2017
ssl.sh: #10177: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:48 UTC 2017
ssl.sh: #10178: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:48 UTC 2017
ssl.sh: #10179: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:48 UTC 2017
ssl.sh: #10180: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:48 UTC 2017
ssl.sh: #10181: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:49 UTC 2017
ssl.sh: #10182: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10183: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:49 UTC 2017
ssl.sh: #10184: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:49 UTC 2017
ssl.sh: #10185: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:50 UTC 2017
ssl.sh: #10186: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:50 UTC 2017
ssl.sh: #10187: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:50 UTC 2017
ssl.sh: #10188: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:50 UTC 2017
ssl.sh: #10189: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:51 UTC 2017
ssl.sh: #10190: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:51 UTC 2017
ssl.sh: #10191: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:51 UTC 2017
ssl.sh: #10192: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:51 UTC 2017
ssl.sh: #10193: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:52 UTC 2017
ssl.sh: #10194: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:52 UTC 2017
ssl.sh: #10195: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29323 >/dev/null 2>/dev/null
selfserv_9505 with PID 29323 found at Wed May 10 12:28:52 UTC 2017
ssl.sh: #10196: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9505 with PID 29323 at Wed May 10 12:28:52 UTC 2017
kill -USR1 29323
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 29323 killed at Wed May 10 12:28:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:28:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30746 >/dev/null 2>/dev/null
selfserv_9505 with PID 30746 found at Wed May 10 12:28:52 UTC 2017
selfserv_9505 with PID 30746 started at Wed May 10 12:28:52 UTC 2017
trying to kill selfserv_9505 with PID 30746 at Wed May 10 12:28:52 UTC 2017
kill -USR1 30746
./ssl.sh: line 183: 30746 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30746 killed at Wed May 10 12:28:52 UTC 2017
selfserv_9505 starting at Wed May 10 12:28:52 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:28:52 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:52 UTC 2017
selfserv_9505 with PID 30780 started at Wed May 10 12:28:52 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:53 UTC 2017
ssl.sh: #10197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:53 UTC 2017
ssl.sh: #10198: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:53 UTC 2017
ssl.sh: #10199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:54 UTC 2017
ssl.sh: #10200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:54 UTC 2017
ssl.sh: #10201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:54 UTC 2017
ssl.sh: #10202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:55 UTC 2017
ssl.sh: #10203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:55 UTC 2017
ssl.sh: #10204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:55 UTC 2017
ssl.sh: #10205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:56 UTC 2017
ssl.sh: #10206: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:56 UTC 2017
ssl.sh: #10207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:56 UTC 2017
ssl.sh: #10208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:57 UTC 2017
ssl.sh: #10209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10210: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:57 UTC 2017
ssl.sh: #10211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:58 UTC 2017
ssl.sh: #10212: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:58 UTC 2017
ssl.sh: #10213: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:58 UTC 2017
ssl.sh: #10214: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:58 UTC 2017
ssl.sh: #10215: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:59 UTC 2017
ssl.sh: #10216: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:59 UTC 2017
ssl.sh: #10217: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:28:59 UTC 2017
ssl.sh: #10218: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:00 UTC 2017
ssl.sh: #10219: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:00 UTC 2017
ssl.sh: #10220: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:00 UTC 2017
ssl.sh: #10221: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:01 UTC 2017
ssl.sh: #10222: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:01 UTC 2017
ssl.sh: #10223: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10224: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:02 UTC 2017
ssl.sh: #10225: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:02 UTC 2017
ssl.sh: #10226: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:02 UTC 2017
ssl.sh: #10227: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:03 UTC 2017
ssl.sh: #10228: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:03 UTC 2017
ssl.sh: #10229: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:03 UTC 2017
ssl.sh: #10230: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:03 UTC 2017
ssl.sh: #10231: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:04 UTC 2017
ssl.sh: #10232: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:04 UTC 2017
ssl.sh: #10233: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:04 UTC 2017
ssl.sh: #10234: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:05 UTC 2017
ssl.sh: #10235: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:05 UTC 2017
ssl.sh: #10236: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30780 >/dev/null 2>/dev/null
selfserv_9505 with PID 30780 found at Wed May 10 12:29:05 UTC 2017
ssl.sh: #10237: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 30780 at Wed May 10 12:29:05 UTC 2017
kill -USR1 30780
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 30780 killed at Wed May 10 12:29:05 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:29:05 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:29:05 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:05 UTC 2017
selfserv_9505 with PID 32202 started at Wed May 10 12:29:05 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:06 UTC 2017
ssl.sh: #10238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:06 UTC 2017
ssl.sh: #10239: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:07 UTC 2017
ssl.sh: #10240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:07 UTC 2017
ssl.sh: #10241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:07 UTC 2017
ssl.sh: #10242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:08 UTC 2017
ssl.sh: #10243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:08 UTC 2017
ssl.sh: #10244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:08 UTC 2017
ssl.sh: #10245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:09 UTC 2017
ssl.sh: #10246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:09 UTC 2017
ssl.sh: #10247: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:09 UTC 2017
ssl.sh: #10248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:10 UTC 2017
ssl.sh: #10249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:10 UTC 2017
ssl.sh: #10250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10251: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:11 UTC 2017
ssl.sh: #10252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:11 UTC 2017
ssl.sh: #10253: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:11 UTC 2017
ssl.sh: #10254: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:12 UTC 2017
ssl.sh: #10255: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:12 UTC 2017
ssl.sh: #10256: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:12 UTC 2017
ssl.sh: #10257: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:13 UTC 2017
ssl.sh: #10258: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:13 UTC 2017
ssl.sh: #10259: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:13 UTC 2017
ssl.sh: #10260: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:14 UTC 2017
ssl.sh: #10261: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:14 UTC 2017
ssl.sh: #10262: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:14 UTC 2017
ssl.sh: #10263: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:15 UTC 2017
ssl.sh: #10264: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:15 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10265: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:15 UTC 2017
ssl.sh: #10266: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:16 UTC 2017
ssl.sh: #10267: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:16 UTC 2017
ssl.sh: #10268: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:16 UTC 2017
ssl.sh: #10269: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:17 UTC 2017
ssl.sh: #10270: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:17 UTC 2017
ssl.sh: #10271: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:17 UTC 2017
ssl.sh: #10272: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:18 UTC 2017
ssl.sh: #10273: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:18 UTC 2017
ssl.sh: #10274: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:18 UTC 2017
ssl.sh: #10275: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:18 UTC 2017
ssl.sh: #10276: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:19 UTC 2017
ssl.sh: #10277: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9505 with PID 32202 found at Wed May 10 12:29:19 UTC 2017
ssl.sh: #10278: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 32202 at Wed May 10 12:29:19 UTC 2017
kill -USR1 32202
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 32202 killed at Wed May 10 12:29:19 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:29:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:29:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:19 UTC 2017
selfserv_9505 with PID 1240 started at Wed May 10 12:29:19 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:20 UTC 2017
ssl.sh: #10279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:20 UTC 2017
ssl.sh: #10280: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:20 UTC 2017
ssl.sh: #10281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:21 UTC 2017
ssl.sh: #10282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:21 UTC 2017
ssl.sh: #10283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:21 UTC 2017
ssl.sh: #10284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:21 UTC 2017
ssl.sh: #10285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:22 UTC 2017
ssl.sh: #10286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:22 UTC 2017
ssl.sh: #10287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:22 UTC 2017
ssl.sh: #10288: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:22 UTC 2017
ssl.sh: #10289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:23 UTC 2017
ssl.sh: #10290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:23 UTC 2017
ssl.sh: #10291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10292: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:24 UTC 2017
ssl.sh: #10293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:24 UTC 2017
ssl.sh: #10294: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:24 UTC 2017
ssl.sh: #10295: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:24 UTC 2017
ssl.sh: #10296: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:25 UTC 2017
ssl.sh: #10297: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:25 UTC 2017
ssl.sh: #10298: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:25 UTC 2017
ssl.sh: #10299: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:25 UTC 2017
ssl.sh: #10300: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:26 UTC 2017
ssl.sh: #10301: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:26 UTC 2017
ssl.sh: #10302: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:26 UTC 2017
ssl.sh: #10303: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:27 UTC 2017
ssl.sh: #10304: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:27 UTC 2017
ssl.sh: #10305: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10306: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:27 UTC 2017
ssl.sh: #10307: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:28 UTC 2017
ssl.sh: #10308: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:28 UTC 2017
ssl.sh: #10309: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:28 UTC 2017
ssl.sh: #10310: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:29 UTC 2017
ssl.sh: #10311: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:29 UTC 2017
ssl.sh: #10312: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:29 UTC 2017
ssl.sh: #10313: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:29 UTC 2017
ssl.sh: #10314: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:30 UTC 2017
ssl.sh: #10315: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:30 UTC 2017
ssl.sh: #10316: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:30 UTC 2017
ssl.sh: #10317: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:30 UTC 2017
ssl.sh: #10318: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9505 with PID 1240 found at Wed May 10 12:29:31 UTC 2017
ssl.sh: #10319: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 1240 at Wed May 10 12:29:31 UTC 2017
kill -USR1 1240
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 1240 killed at Wed May 10 12:29:31 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:29:31 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:29:31 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:31 UTC 2017
selfserv_9505 with PID 2662 started at Wed May 10 12:29:31 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:31 UTC 2017
ssl.sh: #10320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:32 UTC 2017
ssl.sh: #10321: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:32 UTC 2017
ssl.sh: #10322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:32 UTC 2017
ssl.sh: #10323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:33 UTC 2017
ssl.sh: #10324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:33 UTC 2017
ssl.sh: #10325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:33 UTC 2017
ssl.sh: #10326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:34 UTC 2017
ssl.sh: #10327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:34 UTC 2017
ssl.sh: #10328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:34 UTC 2017
ssl.sh: #10329: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:35 UTC 2017
ssl.sh: #10330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:35 UTC 2017
ssl.sh: #10331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:35 UTC 2017
ssl.sh: #10332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10333: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:36 UTC 2017
ssl.sh: #10334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:36 UTC 2017
ssl.sh: #10335: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:37 UTC 2017
ssl.sh: #10336: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:37 UTC 2017
ssl.sh: #10337: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:37 UTC 2017
ssl.sh: #10338: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:38 UTC 2017
ssl.sh: #10339: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:38 UTC 2017
ssl.sh: #10340: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:38 UTC 2017
ssl.sh: #10341: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:38 UTC 2017
ssl.sh: #10342: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:39 UTC 2017
ssl.sh: #10343: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:39 UTC 2017
ssl.sh: #10344: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:39 UTC 2017
ssl.sh: #10345: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:40 UTC 2017
ssl.sh: #10346: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10347: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:40 UTC 2017
ssl.sh: #10348: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:41 UTC 2017
ssl.sh: #10349: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:41 UTC 2017
ssl.sh: #10350: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:41 UTC 2017
ssl.sh: #10351: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:42 UTC 2017
ssl.sh: #10352: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:42 UTC 2017
ssl.sh: #10353: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:42 UTC 2017
ssl.sh: #10354: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:43 UTC 2017
ssl.sh: #10355: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:43 UTC 2017
ssl.sh: #10356: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:43 UTC 2017
ssl.sh: #10357: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:44 UTC 2017
ssl.sh: #10358: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:44 UTC 2017
ssl.sh: #10359: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2662 >/dev/null 2>/dev/null
selfserv_9505 with PID 2662 found at Wed May 10 12:29:44 UTC 2017
ssl.sh: #10360: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 2662 at Wed May 10 12:29:44 UTC 2017
kill -USR1 2662
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 2662 killed at Wed May 10 12:29:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:29:44 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:29:44 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:44 UTC 2017
selfserv_9505 with PID 4096 started at Wed May 10 12:29:44 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:45 UTC 2017
ssl.sh: #10361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:45 UTC 2017
ssl.sh: #10362: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:46 UTC 2017
ssl.sh: #10363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:46 UTC 2017
ssl.sh: #10364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:46 UTC 2017
ssl.sh: #10365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:47 UTC 2017
ssl.sh: #10366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:47 UTC 2017
ssl.sh: #10367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:47 UTC 2017
ssl.sh: #10368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:48 UTC 2017
ssl.sh: #10369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:48 UTC 2017
ssl.sh: #10370: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:49 UTC 2017
ssl.sh: #10371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:49 UTC 2017
ssl.sh: #10372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:49 UTC 2017
ssl.sh: #10373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10374: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:50 UTC 2017
ssl.sh: #10375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:50 UTC 2017
ssl.sh: #10376: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:51 UTC 2017
ssl.sh: #10377: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:51 UTC 2017
ssl.sh: #10378: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:51 UTC 2017
ssl.sh: #10379: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:52 UTC 2017
ssl.sh: #10380: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:52 UTC 2017
ssl.sh: #10381: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:52 UTC 2017
ssl.sh: #10382: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:53 UTC 2017
ssl.sh: #10383: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:53 UTC 2017
ssl.sh: #10384: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:53 UTC 2017
ssl.sh: #10385: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:54 UTC 2017
ssl.sh: #10386: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:54 UTC 2017
ssl.sh: #10387: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10388: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:55 UTC 2017
ssl.sh: #10389: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:55 UTC 2017
ssl.sh: #10390: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:55 UTC 2017
ssl.sh: #10391: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:56 UTC 2017
ssl.sh: #10392: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:56 UTC 2017
ssl.sh: #10393: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:56 UTC 2017
ssl.sh: #10394: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:57 UTC 2017
ssl.sh: #10395: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:57 UTC 2017
ssl.sh: #10396: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:57 UTC 2017
ssl.sh: #10397: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:58 UTC 2017
ssl.sh: #10398: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:58 UTC 2017
ssl.sh: #10399: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:58 UTC 2017
ssl.sh: #10400: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4096 >/dev/null 2>/dev/null
selfserv_9505 with PID 4096 found at Wed May 10 12:29:59 UTC 2017
ssl.sh: #10401: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 4096 at Wed May 10 12:29:59 UTC 2017
kill -USR1 4096
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 4096 killed at Wed May 10 12:29:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:29:59 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:29:59 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:29:59 UTC 2017
selfserv_9505 with PID 5518 started at Wed May 10 12:29:59 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:29:59 UTC 2017
ssl.sh: #10402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:00 UTC 2017
ssl.sh: #10403: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:00 UTC 2017
ssl.sh: #10404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:00 UTC 2017
ssl.sh: #10405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:01 UTC 2017
ssl.sh: #10406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:01 UTC 2017
ssl.sh: #10407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:01 UTC 2017
ssl.sh: #10408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:01 UTC 2017
ssl.sh: #10409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:02 UTC 2017
ssl.sh: #10410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:02 UTC 2017
ssl.sh: #10411: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:02 UTC 2017
ssl.sh: #10412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:03 UTC 2017
ssl.sh: #10413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:03 UTC 2017
ssl.sh: #10414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10415: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:04 UTC 2017
ssl.sh: #10416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:04 UTC 2017
ssl.sh: #10417: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:04 UTC 2017
ssl.sh: #10418: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:04 UTC 2017
ssl.sh: #10419: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:05 UTC 2017
ssl.sh: #10420: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:05 UTC 2017
ssl.sh: #10421: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:05 UTC 2017
ssl.sh: #10422: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:06 UTC 2017
ssl.sh: #10423: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:06 UTC 2017
ssl.sh: #10424: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:06 UTC 2017
ssl.sh: #10425: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:07 UTC 2017
ssl.sh: #10426: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:07 UTC 2017
ssl.sh: #10427: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:07 UTC 2017
ssl.sh: #10428: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10429: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:08 UTC 2017
ssl.sh: #10430: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:08 UTC 2017
ssl.sh: #10431: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:08 UTC 2017
ssl.sh: #10432: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:09 UTC 2017
ssl.sh: #10433: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:09 UTC 2017
ssl.sh: #10434: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:09 UTC 2017
ssl.sh: #10435: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:09 UTC 2017
ssl.sh: #10436: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:10 UTC 2017
ssl.sh: #10437: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:10 UTC 2017
ssl.sh: #10438: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:10 UTC 2017
ssl.sh: #10439: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:11 UTC 2017
ssl.sh: #10440: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:11 UTC 2017
ssl.sh: #10441: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5518 >/dev/null 2>/dev/null
selfserv_9505 with PID 5518 found at Wed May 10 12:30:11 UTC 2017
ssl.sh: #10442: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 5518 at Wed May 10 12:30:11 UTC 2017
kill -USR1 5518
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 5518 killed at Wed May 10 12:30:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:30:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:30:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6943 >/dev/null 2>/dev/null
selfserv_9505 with PID 6943 found at Wed May 10 12:30:11 UTC 2017
selfserv_9505 with PID 6943 started at Wed May 10 12:30:11 UTC 2017
trying to kill selfserv_9505 with PID 6943 at Wed May 10 12:30:11 UTC 2017
kill -USR1 6943
./ssl.sh: line 183:  6943 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6943 killed at Wed May 10 12:30:11 UTC 2017
selfserv_9505 starting at Wed May 10 12:30:11 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:30:11 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:11 UTC 2017
selfserv_9505 with PID 6977 started at Wed May 10 12:30:11 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:12 UTC 2017
ssl.sh: #10443: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:12 UTC 2017
ssl.sh: #10444: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:13 UTC 2017
ssl.sh: #10445: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:13 UTC 2017
ssl.sh: #10446: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:13 UTC 2017
ssl.sh: #10447: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:14 UTC 2017
ssl.sh: #10448: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:14 UTC 2017
ssl.sh: #10449: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:14 UTC 2017
ssl.sh: #10450: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:15 UTC 2017
ssl.sh: #10451: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:15 UTC 2017
ssl.sh: #10452: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:15 UTC 2017
ssl.sh: #10453: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:16 UTC 2017
ssl.sh: #10454: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:16 UTC 2017
ssl.sh: #10455: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10456: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:16 UTC 2017
ssl.sh: #10457: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:17 UTC 2017
ssl.sh: #10458: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:17 UTC 2017
ssl.sh: #10459: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:17 UTC 2017
ssl.sh: #10460: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:18 UTC 2017
ssl.sh: #10461: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:18 UTC 2017
ssl.sh: #10462: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:18 UTC 2017
ssl.sh: #10463: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:19 UTC 2017
ssl.sh: #10464: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:19 UTC 2017
ssl.sh: #10465: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:19 UTC 2017
ssl.sh: #10466: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:20 UTC 2017
ssl.sh: #10467: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:20 UTC 2017
ssl.sh: #10468: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:20 UTC 2017
ssl.sh: #10469: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10470: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:21 UTC 2017
ssl.sh: #10471: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:21 UTC 2017
ssl.sh: #10472: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:22 UTC 2017
ssl.sh: #10473: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:22 UTC 2017
ssl.sh: #10474: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:22 UTC 2017
ssl.sh: #10475: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:23 UTC 2017
ssl.sh: #10476: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:23 UTC 2017
ssl.sh: #10477: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:23 UTC 2017
ssl.sh: #10478: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:23 UTC 2017
ssl.sh: #10479: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:24 UTC 2017
ssl.sh: #10480: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:24 UTC 2017
ssl.sh: #10481: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:24 UTC 2017
ssl.sh: #10482: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6977 >/dev/null 2>/dev/null
selfserv_9505 with PID 6977 found at Wed May 10 12:30:25 UTC 2017
ssl.sh: #10483: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 6977 at Wed May 10 12:30:25 UTC 2017
kill -USR1 6977
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 6977 killed at Wed May 10 12:30:25 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:30:25 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:30:25 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:25 UTC 2017
selfserv_9505 with PID 8399 started at Wed May 10 12:30:25 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:25 UTC 2017
ssl.sh: #10484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:26 UTC 2017
ssl.sh: #10485: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:26 UTC 2017
ssl.sh: #10486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:26 UTC 2017
ssl.sh: #10487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:27 UTC 2017
ssl.sh: #10488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:27 UTC 2017
ssl.sh: #10489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:27 UTC 2017
ssl.sh: #10490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:28 UTC 2017
ssl.sh: #10491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:28 UTC 2017
ssl.sh: #10492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:28 UTC 2017
ssl.sh: #10493: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:29 UTC 2017
ssl.sh: #10494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:29 UTC 2017
ssl.sh: #10495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:29 UTC 2017
ssl.sh: #10496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10497: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:30 UTC 2017
ssl.sh: #10498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:30 UTC 2017
ssl.sh: #10499: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:31 UTC 2017
ssl.sh: #10500: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:31 UTC 2017
ssl.sh: #10501: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:31 UTC 2017
ssl.sh: #10502: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:32 UTC 2017
ssl.sh: #10503: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:32 UTC 2017
ssl.sh: #10504: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:32 UTC 2017
ssl.sh: #10505: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:33 UTC 2017
ssl.sh: #10506: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:33 UTC 2017
ssl.sh: #10507: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:33 UTC 2017
ssl.sh: #10508: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:34 UTC 2017
ssl.sh: #10509: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:34 UTC 2017
ssl.sh: #10510: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10511: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:35 UTC 2017
ssl.sh: #10512: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:35 UTC 2017
ssl.sh: #10513: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:35 UTC 2017
ssl.sh: #10514: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:36 UTC 2017
ssl.sh: #10515: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:36 UTC 2017
ssl.sh: #10516: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:36 UTC 2017
ssl.sh: #10517: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:37 UTC 2017
ssl.sh: #10518: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:37 UTC 2017
ssl.sh: #10519: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:37 UTC 2017
ssl.sh: #10520: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:38 UTC 2017
ssl.sh: #10521: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:38 UTC 2017
ssl.sh: #10522: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:38 UTC 2017
ssl.sh: #10523: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 8399 >/dev/null 2>/dev/null
selfserv_9505 with PID 8399 found at Wed May 10 12:30:39 UTC 2017
ssl.sh: #10524: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 8399 at Wed May 10 12:30:39 UTC 2017
kill -USR1 8399
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 8399 killed at Wed May 10 12:30:39 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:30:39 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:30:39 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:39 UTC 2017
selfserv_9505 with PID 9825 started at Wed May 10 12:30:39 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:39 UTC 2017
ssl.sh: #10525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:39 UTC 2017
ssl.sh: #10526: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:40 UTC 2017
ssl.sh: #10527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:40 UTC 2017
ssl.sh: #10528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:40 UTC 2017
ssl.sh: #10529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:40 UTC 2017
ssl.sh: #10530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:41 UTC 2017
ssl.sh: #10531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:41 UTC 2017
ssl.sh: #10532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:41 UTC 2017
ssl.sh: #10533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:42 UTC 2017
ssl.sh: #10534: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:42 UTC 2017
ssl.sh: #10535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:42 UTC 2017
ssl.sh: #10536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:42 UTC 2017
ssl.sh: #10537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:43 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10538: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:43 UTC 2017
ssl.sh: #10539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:43 UTC 2017
ssl.sh: #10540: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:44 UTC 2017
ssl.sh: #10541: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:44 UTC 2017
ssl.sh: #10542: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:44 UTC 2017
ssl.sh: #10543: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:44 UTC 2017
ssl.sh: #10544: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:45 UTC 2017
ssl.sh: #10545: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:45 UTC 2017
ssl.sh: #10546: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:45 UTC 2017
ssl.sh: #10547: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:46 UTC 2017
ssl.sh: #10548: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:46 UTC 2017
ssl.sh: #10549: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:46 UTC 2017
ssl.sh: #10550: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:46 UTC 2017
ssl.sh: #10551: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:47 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10552: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:47 UTC 2017
ssl.sh: #10553: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:47 UTC 2017
ssl.sh: #10554: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:47 UTC 2017
ssl.sh: #10555: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:48 UTC 2017
ssl.sh: #10556: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:48 UTC 2017
ssl.sh: #10557: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:48 UTC 2017
ssl.sh: #10558: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:49 UTC 2017
ssl.sh: #10559: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:49 UTC 2017
ssl.sh: #10560: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:49 UTC 2017
ssl.sh: #10561: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:49 UTC 2017
ssl.sh: #10562: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:50 UTC 2017
ssl.sh: #10563: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:50 UTC 2017
ssl.sh: #10564: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9825 >/dev/null 2>/dev/null
selfserv_9505 with PID 9825 found at Wed May 10 12:30:50 UTC 2017
ssl.sh: #10565: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 9825 at Wed May 10 12:30:50 UTC 2017
kill -USR1 9825
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 9825 killed at Wed May 10 12:30:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9505 starting at Wed May 10 12:30:50 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:30:50 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:50 UTC 2017
selfserv_9505 with PID 11251 started at Wed May 10 12:30:50 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:51 UTC 2017
ssl.sh: #10566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:51 UTC 2017
ssl.sh: #10567: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:52 UTC 2017
ssl.sh: #10568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:52 UTC 2017
ssl.sh: #10569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:52 UTC 2017
ssl.sh: #10570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:53 UTC 2017
ssl.sh: #10571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:53 UTC 2017
ssl.sh: #10572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:53 UTC 2017
ssl.sh: #10573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:54 UTC 2017
ssl.sh: #10574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:54 UTC 2017
ssl.sh: #10575: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:54 UTC 2017
ssl.sh: #10576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:55 UTC 2017
ssl.sh: #10577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:55 UTC 2017
ssl.sh: #10578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10579: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:56 UTC 2017
ssl.sh: #10580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:56 UTC 2017
ssl.sh: #10581: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:56 UTC 2017
ssl.sh: #10582: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:57 UTC 2017
ssl.sh: #10583: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:57 UTC 2017
ssl.sh: #10584: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:57 UTC 2017
ssl.sh: #10585: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:58 UTC 2017
ssl.sh: #10586: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:58 UTC 2017
ssl.sh: #10587: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:58 UTC 2017
ssl.sh: #10588: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:59 UTC 2017
ssl.sh: #10589: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:59 UTC 2017
ssl.sh: #10590: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:30:59 UTC 2017
ssl.sh: #10591: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:00 UTC 2017
ssl.sh: #10592: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10593: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:00 UTC 2017
ssl.sh: #10594: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:01 UTC 2017
ssl.sh: #10595: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:01 UTC 2017
ssl.sh: #10596: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:01 UTC 2017
ssl.sh: #10597: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:02 UTC 2017
ssl.sh: #10598: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:02 UTC 2017
ssl.sh: #10599: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:02 UTC 2017
ssl.sh: #10600: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:03 UTC 2017
ssl.sh: #10601: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:03 UTC 2017
ssl.sh: #10602: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:03 UTC 2017
ssl.sh: #10603: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:04 UTC 2017
ssl.sh: #10604: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:04 UTC 2017
ssl.sh: #10605: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11251 >/dev/null 2>/dev/null
selfserv_9505 with PID 11251 found at Wed May 10 12:31:04 UTC 2017
ssl.sh: #10606: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 11251 at Wed May 10 12:31:04 UTC 2017
kill -USR1 11251
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 11251 killed at Wed May 10 12:31:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:31:04 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:31:04 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:04 UTC 2017
selfserv_9505 with PID 12674 started at Wed May 10 12:31:04 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:05 UTC 2017
ssl.sh: #10607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:05 UTC 2017
ssl.sh: #10608: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:06 UTC 2017
ssl.sh: #10609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:06 UTC 2017
ssl.sh: #10610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:06 UTC 2017
ssl.sh: #10611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:07 UTC 2017
ssl.sh: #10612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:07 UTC 2017
ssl.sh: #10613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:07 UTC 2017
ssl.sh: #10614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:08 UTC 2017
ssl.sh: #10615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:08 UTC 2017
ssl.sh: #10616: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:08 UTC 2017
ssl.sh: #10617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:09 UTC 2017
ssl.sh: #10618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:09 UTC 2017
ssl.sh: #10619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10620: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:10 UTC 2017
ssl.sh: #10621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:10 UTC 2017
ssl.sh: #10622: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:11 UTC 2017
ssl.sh: #10623: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:11 UTC 2017
ssl.sh: #10624: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:11 UTC 2017
ssl.sh: #10625: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:12 UTC 2017
ssl.sh: #10626: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:12 UTC 2017
ssl.sh: #10627: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:12 UTC 2017
ssl.sh: #10628: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:13 UTC 2017
ssl.sh: #10629: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:13 UTC 2017
ssl.sh: #10630: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:13 UTC 2017
ssl.sh: #10631: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:14 UTC 2017
ssl.sh: #10632: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:14 UTC 2017
ssl.sh: #10633: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10634: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:15 UTC 2017
ssl.sh: #10635: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:15 UTC 2017
ssl.sh: #10636: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:15 UTC 2017
ssl.sh: #10637: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:16 UTC 2017
ssl.sh: #10638: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:16 UTC 2017
ssl.sh: #10639: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:17 UTC 2017
ssl.sh: #10640: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:17 UTC 2017
ssl.sh: #10641: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:17 UTC 2017
ssl.sh: #10642: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:18 UTC 2017
ssl.sh: #10643: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:18 UTC 2017
ssl.sh: #10644: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:18 UTC 2017
ssl.sh: #10645: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:19 UTC 2017
ssl.sh: #10646: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12674 >/dev/null 2>/dev/null
selfserv_9505 with PID 12674 found at Wed May 10 12:31:19 UTC 2017
ssl.sh: #10647: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 12674 at Wed May 10 12:31:19 UTC 2017
kill -USR1 12674
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 12674 killed at Wed May 10 12:31:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:31:19 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:31:19 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:19 UTC 2017
selfserv_9505 with PID 14099 started at Wed May 10 12:31:19 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:20 UTC 2017
ssl.sh: #10648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:20 UTC 2017
ssl.sh: #10649: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:20 UTC 2017
ssl.sh: #10650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:20 UTC 2017
ssl.sh: #10651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:21 UTC 2017
ssl.sh: #10652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:21 UTC 2017
ssl.sh: #10653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:21 UTC 2017
ssl.sh: #10654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:22 UTC 2017
ssl.sh: #10655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:22 UTC 2017
ssl.sh: #10656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:22 UTC 2017
ssl.sh: #10657: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:23 UTC 2017
ssl.sh: #10658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:23 UTC 2017
ssl.sh: #10659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:23 UTC 2017
ssl.sh: #10660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10661: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:24 UTC 2017
ssl.sh: #10662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:24 UTC 2017
ssl.sh: #10663: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:24 UTC 2017
ssl.sh: #10664: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:25 UTC 2017
ssl.sh: #10665: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:25 UTC 2017
ssl.sh: #10666: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:25 UTC 2017
ssl.sh: #10667: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:26 UTC 2017
ssl.sh: #10668: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:26 UTC 2017
ssl.sh: #10669: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:26 UTC 2017
ssl.sh: #10670: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:27 UTC 2017
ssl.sh: #10671: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:27 UTC 2017
ssl.sh: #10672: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:27 UTC 2017
ssl.sh: #10673: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:28 UTC 2017
ssl.sh: #10674: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:28 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10675: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:28 UTC 2017
ssl.sh: #10676: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:29 UTC 2017
ssl.sh: #10677: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:29 UTC 2017
ssl.sh: #10678: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:29 UTC 2017
ssl.sh: #10679: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:29 UTC 2017
ssl.sh: #10680: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:30 UTC 2017
ssl.sh: #10681: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:30 UTC 2017
ssl.sh: #10682: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:30 UTC 2017
ssl.sh: #10683: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:31 UTC 2017
ssl.sh: #10684: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:31 UTC 2017
ssl.sh: #10685: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:31 UTC 2017
ssl.sh: #10686: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:32 UTC 2017
ssl.sh: #10687: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9505 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14099 >/dev/null 2>/dev/null
selfserv_9505 with PID 14099 found at Wed May 10 12:31:32 UTC 2017
ssl.sh: #10688: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 14099 at Wed May 10 12:31:32 UTC 2017
kill -USR1 14099
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 14099 killed at Wed May 10 12:31:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9505 starting at Wed May 10 12:31:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:31:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15521 >/dev/null 2>/dev/null
selfserv_9505 with PID 15521 found at Wed May 10 12:31:32 UTC 2017
selfserv_9505 with PID 15521 started at Wed May 10 12:31:32 UTC 2017
trying to kill selfserv_9505 with PID 15521 at Wed May 10 12:31:32 UTC 2017
kill -USR1 15521
./ssl.sh: line 183: 15521 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9505 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15521 killed at Wed May 10 12:31:32 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9505 starting at Wed May 10 12:31:32 UTC 2017
selfserv_9505 -D -p 9505 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17937\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9505 at Wed May 10 12:31:32 UTC 2017
tstclnt -p 9505 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
kill -0 15556 >/dev/null 2>/dev/null
selfserv_9505 with PID 15556 found at Wed May 10 12:31:32 UTC 2017
selfserv_9505 with PID 15556 started at Wed May 10 12:31:32 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10689: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10690: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10691: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10692: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10693: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10694: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10695: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10696: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10697: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10698: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10699: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10700: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10701: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10702: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10703: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10704: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : PR_NOT_CONNECTED_ERROR: Network file descriptor is not connected
ssl.sh: #10705: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : PR_NOT_CONNECTED_ERROR: Network file descriptor is not connected
ssl.sh: #10706: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9505 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.30.2/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : PR_NOT_CONNECTED_ERROR: Network file descriptor is not connected
ssl.sh: #10707: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9505 with PID 15556 at Wed May 10 12:31:36 UTC 2017
kill -USR1 15556
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9505 -b -p 9505 2>/dev/null;
selfserv_9505 with PID 15556 killed at Wed May 10 12:31:36 UTC 2017
TIMESTAMP ssl END: Wed May 10 12:31:36 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Wed May 10 12:31:36 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v1.17937 -t "Test1"
sdr.sh: #10708: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v2.17937 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10709: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.17937 -t "1234567"
sdr.sh: #10710: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v1.17937 -t "Test1"
sdr.sh: #10711: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v2.17937 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10712: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.17937 -t "1234567"
sdr.sh: #10713: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.17937 -t Test2 -f ../tests.pw
merge.sh: #10714: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10715: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10716: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10717: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10718: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10719: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:24:44 2017
            Not After : Tue May 10 12:24:44 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:2d:eb:5f:ea:f4:b5:a4:30:a2:5b:60:3e:58:9f:79:
                    2a:6a:36:77:70:1b:00:d5:b6:0e:2a:08:9d:44:c3:8a:
                    1c:44:cc:c8:82:db:c4:f0:e4:73:17:a9:0d:c4:d9:61:
                    ca:f5:7e:16:7d:10:64:99:aa:ef:b3:cf:aa:9d:ef:38:
                    76:45:8f:a7:35:8f:9e:c0:b0:fc:fd:5e:c2:00:2a:d0:
                    25:3d:67:a0:41:18:c2:f1:7a:cd:5d:bb:98:d5:4f:ba:
                    65:78:f3:17:30:d4:7b:df:43:ea:ad:40:d0:45:1c:d4:
                    27:3b:cd:cd:85:38:57:6f:31:f9:bb:7a:49:cd:f1:85:
                    8d:0b:e4:a0:82:e2:03:24:69:11:b5:90:48:96:38:98:
                    4d:8b:63:d3:cf:f9:75:69:90:59:a8:ae:69:f9:3e:b0:
                    81:ec:6b:cf:4c:ad:56:b1:ae:33:69:c9:61:ad:f9:24:
                    5a:d3:c4:21:10:67:55:03:f8:ec:c5:57:4c:40:a2:68:
                    1d:14:84:47:18:7a:60:d2:3e:0f:78:fb:86:44:d2:be:
                    07:02:f7:e0:4c:15:cd:cb:70:b9:37:9a:96:6d:3d:12:
                    ef:0f:a7:29:ac:be:06:cd:ae:4f:11:29:67:13:e3:ee:
                    7a:9f:5d:ee:f3:65:ab:bf:a4:3a:e9:56:45:a2:0d:73
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:74:5a:71:ba:10:ed:7d:b3:9b:c2:4f:c4:7f:76:2d:
        95:7c:e6:80:c7:78:c3:36:e3:98:4c:a4:3c:26:c9:cf:
        a6:c4:d5:a6:db:6b:96:2c:ed:32:a3:69:eb:5c:a6:cd:
        60:ea:9f:95:f5:6d:6b:50:4a:4d:be:d5:7b:12:d7:9e:
        31:2c:fe:a4:cd:3f:8e:4b:8c:fa:91:b9:86:a4:75:01:
        eb:9a:1b:1b:80:cd:e3:36:f9:5c:3e:da:20:29:58:25:
        ef:93:a0:79:30:ab:31:36:c0:89:a9:4e:dd:07:f9:43:
        6a:1a:2d:21:69:44:63:79:ef:7d:ed:f9:52:e4:e0:30:
        f0:58:52:95:f3:e5:49:3a:4e:a9:ad:4d:be:90:cc:26:
        74:3b:c3:dc:02:44:82:f5:fa:38:c3:46:3a:22:f9:b0:
        86:3b:11:ef:45:ca:2f:d3:b0:39:c2:68:fb:aa:ed:6d:
        84:13:85:ef:85:6a:4c:36:38:13:c7:96:8f:a0:64:85:
        62:62:b1:e3:bb:0e:a8:d0:33:c3:b7:ba:ca:14:a5:77:
        1d:ca:ea:c1:f8:67:b5:5e:ed:38:b1:27:16:4f:11:7d:
        58:f2:9f:bc:1f:27:e6:56:c6:ec:11:9c:ac:f8:ef:69:
        14:72:0b:0b:34:3e:dd:88:f5:fb:56:a7:bc:42:3a:2b
    Fingerprint (SHA-256):
        AF:6D:2D:6F:68:56:33:A1:62:F6:4B:E6:E5:DC:44:B5:D6:F0:FD:C4:0B:6F:7D:EE:D0:24:13:D1:8E:22:A6:5A
    Fingerprint (SHA1):
        8F:52:E5:01:4D:BD:3F:F5:A3:99:A3:BF:96:2C:B1:AA:39:E6:F6:E0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10720: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed May 10 12:24:47 2017
            Not After : Tue May 10 12:24:47 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:d6:4a:58:13:70:08:df:7a:00:12:3e:db:81:58:96:
                    3c:f9:64:1a:44:c0:68:e2:cb:7a:ff:8a:c2:ac:d2:79:
                    55:22:35:9a:64:fb:4b:03:ca:55:51:ce:6d:4b:0c:2c:
                    6c:80:4d:26:3a:b2:62:7d:6f:9e:4f:cd:7c:a6:44:93:
                    6a:ed:e4:89:f5:c7:35:8c:d8:76:6a:c0:ce:eb:3c:ee:
                    79:f0:7a:ca:bb:69:25:13:07:e1:14:0b:3b:60:df:21:
                    e7:69:bc:69:ba:cc:50:52:0d:04:77:76:37:00:0e:15:
                    d2:32:9f:16:d2:20:04:21:a4:11:cb:74:e5:ad:b3:3c:
                    9b:22:22:c5:26:d1:88:c9:e4:07:64:b8:d1:07:d2:2c:
                    f7:9d:b6:14:47:e4:0c:32:10:b3:91:45:f3:c2:b3:f2:
                    b8:ce:ea:09:94:95:80:2c:67:02:04:1b:0c:f4:ee:fd:
                    ec:08:47:92:c3:0b:ee:d5:d2:e3:fd:12:7e:61:d1:51:
                    c0:59:ec:21:5d:9b:fe:97:84:1d:f6:54:35:de:55:0d:
                    5c:04:64:97:d6:a5:8d:b7:27:ad:5d:b4:d8:02:fb:37:
                    23:05:47:45:26:e2:62:2f:4f:90:06:bf:2e:c4:41:82:
                    aa:5e:a2:ca:31:a1:c2:6d:48:b6:94:b1:cc:77:15:ff
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:c4:c7:e2:b5:26:1a:1d:1e:dd:89:4e:cc:45:6f:d8:
        46:d3:de:a7:d1:b4:6b:df:d1:03:43:66:1b:c9:43:bd:
        4a:71:88:f4:17:bb:91:ab:61:92:67:76:13:75:92:29:
        01:f4:b1:6b:1b:d5:51:73:52:5d:a7:9a:8b:31:8a:6d:
        fb:89:ae:af:5b:28:ea:3f:e8:4e:86:c3:77:3a:33:34:
        7e:2a:2d:cc:16:03:63:81:93:b3:40:06:a9:6c:19:79:
        61:dd:6d:14:61:21:ab:24:23:c4:d2:ce:6d:7e:53:27:
        4d:dd:f9:b8:ad:f1:13:a7:09:f3:aa:5a:64:66:9e:46:
        ca:50:32:fb:c4:5e:bd:f0:f7:bb:c3:c4:3e:d9:69:4e:
        93:9a:94:6c:e9:db:b9:bc:fa:15:c8:0b:3b:34:ca:f6:
        95:d4:86:85:60:66:6a:a5:43:df:6f:ce:22:eb:01:62:
        9b:f2:c3:c2:ad:eb:41:b3:31:1d:9b:10:16:fb:80:ff:
        8b:e2:08:63:25:7c:4e:94:eb:df:6c:25:b3:fa:74:4d:
        af:85:8e:9a:3b:2c:4e:05:4e:50:61:a3:15:ad:32:8a:
        fc:92:9f:a5:db:fa:0f:97:d9:61:4e:29:32:66:f0:f3:
        88:81:5c:74:f6:7f:6b:dc:d4:7c:8c:dd:aa:b4:ec:08
    Fingerprint (SHA-256):
        36:D3:F2:AE:2E:BA:64:14:44:F5:21:ED:BC:66:CB:47:D1:1F:7C:0B:AA:1D:E2:56:51:E9:32:AA:50:1B:53:B6
    Fingerprint (SHA1):
        6A:BC:72:28:7E:0F:F0:A7:78:C0:91:03:FA:20:51:F9:43:34:51:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10721: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10722: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA-dsa                                                 T,C,C
chain-2-clientCA-dsa                                         ,,   
clientCA                                                     T,C,C
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-ec                                          ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA                                             ,,   
clientCA-ec                                                  T,C,C
chain-1-clientCA-dsa                                         ,,   
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v3.17937 -t Test2 -f ../tests.pw
merge.sh: #10723: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests.v1.17937 -t Test1 -f ../tests.pw
merge.sh: #10724: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10725: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10726: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10727: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Wed May 10 12:25:22 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:22:29 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Wed May 10 12:25:17 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10728: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Wed May 10 12:31:47 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Wed May 10 12:31:47 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #10729: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123148 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10730: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #10731: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10732: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #10733: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10734: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10735: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10736: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10737: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #10738: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10739: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10740: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10741: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10742: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #10743: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10744: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10745: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10746: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10747: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #10748: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10749: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10750: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10751: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #10752: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10753: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10754: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10755: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #10756: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10757: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10758: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10759: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #10760: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10761: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10762: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10763: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #10764: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10765: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10766: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10767: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #10768: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10769: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10770: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10771: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #10772: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10773: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10774: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10775: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #10776: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10777: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10778: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10779: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #10780: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10781: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10782: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10783: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #10784: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10785: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9515/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10786: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10787: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #10788: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10789: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9516
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10790: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10791: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510123210Z
nextupdate=20180510123210Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:32:10 2017
    Next Update: Thu May 10 12:32:10 2018
    CRL Extensions:
chains.sh: #10792: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170510123211Z
addcert 2 20170510123211Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Wed May 10 12:32:11 2017
    Next Update: Thu May 10 12:32:10 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:11 2017
    CRL Extensions:
chains.sh: #10793: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510123211Z
nextupdate=20180510123211Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:32:11 2017
    Next Update: Thu May 10 12:32:11 2018
    CRL Extensions:
chains.sh: #10794: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510123212Z
addcert 2 20170510123212Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:32:12 2017
    Next Update: Thu May 10 12:32:11 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:12 2017
    CRL Extensions:
chains.sh: #10795: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170510123213Z
addcert 4 20170510123213Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Wed May 10 12:32:13 2017
    Next Update: Thu May 10 12:32:11 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:12 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Wed May 10 12:32:13 2017
    CRL Extensions:
chains.sh: #10796: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510123213Z
nextupdate=20180510123213Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:32:13 2017
    Next Update: Thu May 10 12:32:13 2018
    CRL Extensions:
chains.sh: #10797: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510123214Z
addcert 2 20170510123214Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:32:14 2017
    Next Update: Thu May 10 12:32:13 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:14 2017
    CRL Extensions:
chains.sh: #10798: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170510123215Z
addcert 3 20170510123215Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Wed May 10 12:32:15 2017
    Next Update: Thu May 10 12:32:13 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:14 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:32:15 2017
    CRL Extensions:
chains.sh: #10799: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510123215Z
nextupdate=20180510123215Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:32:15 2017
    Next Update: Thu May 10 12:32:15 2018
    CRL Extensions:
chains.sh: #10800: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510123216Z
addcert 2 20170510123216Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:32:16 2017
    Next Update: Thu May 10 12:32:15 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:16 2017
    CRL Extensions:
chains.sh: #10801: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170510123217Z
addcert 3 20170510123217Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Wed May 10 12:32:17 2017
    Next Update: Thu May 10 12:32:15 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Wed May 10 12:32:16 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Wed May 10 12:32:17 2017
    CRL Extensions:
chains.sh: #10802: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #10803: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #10804: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10805: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10806: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10807: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10808: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.30.2/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10809: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #10810: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #10811: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10812: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #10813: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #10814: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #10815: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #10816: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #10817: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #10818: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #10819: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #10820: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #10821: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #10822: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #10823: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #10824: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #10825: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #10826: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Wed May 10 12:32:22 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:32:22 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 18076 >/dev/null 2>/dev/null
httpserv with PID 18076 found at Wed May 10 12:32:22 UTC 2017
httpserv with PID 18076 started at Wed May 10 12:32:22 UTC 2017
tstclnt -h localhost.localdomain -p 9515 -q -t 20
chains.sh: #10827: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123148 (0x1e67dc8c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:31:50 2017
            Not After : Tue May 10 12:31:50 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:2a:11:98:3c:31:ae:74:10:a5:79:cc:1a:bf:1a:26:
                    a3:85:fa:1f:23:36:31:2b:04:2c:07:42:cc:23:1c:a1:
                    3b:3a:74:f4:88:54:d3:31:5b:0a:a7:c0:87:75:fd:dc:
                    3b:55:35:92:88:ba:ae:41:98:7e:dc:c7:03:bc:b5:10:
                    5c:52:de:8e:bf:7d:d7:b3:e8:c2:48:3f:bc:b8:c7:1c:
                    6a:51:c3:54:a0:d6:d4:da:e0:c6:c5:b7:2e:09:92:f3:
                    d2:9c:63:f6:8d:45:bd:ab:7f:8a:36:3c:ee:b9:b5:30:
                    af:37:a8:2e:d2:ea:94:2d:8b:a6:b5:29:f5:3a:f4:f7:
                    87:8c:33:7b:42:d3:e1:75:92:5a:da:88:34:e0:51:97:
                    88:27:8d:8a:d2:2c:86:93:7e:88:dc:11:af:1e:bc:2e:
                    2b:65:19:bf:e5:67:76:af:a0:cb:94:1c:c5:66:9e:82:
                    25:85:e8:73:38:dd:9d:fd:db:5e:34:d2:b0:f1:89:c2:
                    24:61:7e:90:c4:e6:43:12:8f:0e:41:b0:aa:94:61:46:
                    a7:ce:29:31:45:c4:22:d8:e8:1b:38:3e:91:cf:17:d2:
                    28:66:f7:c2:6d:10:8f:f7:3f:08:9b:6e:d1:a3:f8:7f:
                    c3:98:d2:e3:c2:f0:92:eb:0a:6f:b2:1b:3e:8d:36:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:2d:34:b7:fd:a6:18:68:a4:f9:37:9a:e9:47:3a:43:
        37:e4:70:d7:31:11:32:c0:14:59:e6:46:ce:2a:3b:31:
        d1:51:83:89:64:f9:c4:63:e9:d7:55:d1:e9:ae:1c:de:
        a8:5c:7c:8d:a5:a5:fc:bb:bb:66:91:e0:93:45:28:28:
        48:a5:83:01:84:90:2c:5e:dc:45:01:d2:dc:0a:73:87:
        22:fb:b7:ae:31:7c:bd:98:d7:22:88:89:07:9c:ea:cd:
        d3:c3:ad:b7:bd:0c:7f:3a:73:60:73:61:0f:ac:db:92:
        62:5c:37:4e:0e:dd:7c:85:68:f2:46:d6:9f:74:77:31:
        1c:45:b1:4b:30:9a:29:38:e6:47:48:d3:a9:2d:0e:b6:
        f5:c4:f8:9e:ab:aa:c5:a4:6c:99:01:9d:53:c5:59:2b:
        8b:9d:4b:1b:69:79:a0:47:ea:d4:57:eb:9b:d2:7b:1f:
        a7:56:0a:1e:91:6f:f7:50:4b:e0:8b:ee:12:04:c0:81:
        c1:87:98:a6:50:38:32:5b:1e:0d:f2:a3:b7:d8:3d:e8:
        a9:c2:90:d1:f5:7b:a4:86:6b:c3:55:67:61:eb:cf:08:
        94:80:72:7a:91:a4:e9:06:18:45:a3:76:d5:23:a9:ad:
        96:73:61:04:8a:82:c8:cb:03:d9:e8:c0:d2:18:e5:ba
    Fingerprint (SHA-256):
        57:5D:11:BC:24:6D:7E:F1:AE:8E:B3:5F:9A:C9:29:0B:75:FB:AB:B6:C3:46:4D:EB:98:50:83:9A:AF:D6:81:C5
    Fingerprint (SHA1):
        23:0F:CD:C3:03:1D:CA:18:10:0A:79:16:AE:56:6B:D1:01:B9:82:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10828: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10829: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10830: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 18076 at Wed May 10 12:32:23 UTC 2017
kill -USR1 18076
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 18076 killed at Wed May 10 12:32:23 UTC 2017
httpserv starting at Wed May 10 12:32:23 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:32:23 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 18245 >/dev/null 2>/dev/null
httpserv with PID 18245 found at Wed May 10 12:32:23 UTC 2017
httpserv with PID 18245 started at Wed May 10 12:32:23 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10831: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10832: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10833: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9515 -q -t 20
chains.sh: #10834: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123148 (0x1e67dc8c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:31:50 2017
            Not After : Tue May 10 12:31:50 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:2a:11:98:3c:31:ae:74:10:a5:79:cc:1a:bf:1a:26:
                    a3:85:fa:1f:23:36:31:2b:04:2c:07:42:cc:23:1c:a1:
                    3b:3a:74:f4:88:54:d3:31:5b:0a:a7:c0:87:75:fd:dc:
                    3b:55:35:92:88:ba:ae:41:98:7e:dc:c7:03:bc:b5:10:
                    5c:52:de:8e:bf:7d:d7:b3:e8:c2:48:3f:bc:b8:c7:1c:
                    6a:51:c3:54:a0:d6:d4:da:e0:c6:c5:b7:2e:09:92:f3:
                    d2:9c:63:f6:8d:45:bd:ab:7f:8a:36:3c:ee:b9:b5:30:
                    af:37:a8:2e:d2:ea:94:2d:8b:a6:b5:29:f5:3a:f4:f7:
                    87:8c:33:7b:42:d3:e1:75:92:5a:da:88:34:e0:51:97:
                    88:27:8d:8a:d2:2c:86:93:7e:88:dc:11:af:1e:bc:2e:
                    2b:65:19:bf:e5:67:76:af:a0:cb:94:1c:c5:66:9e:82:
                    25:85:e8:73:38:dd:9d:fd:db:5e:34:d2:b0:f1:89:c2:
                    24:61:7e:90:c4:e6:43:12:8f:0e:41:b0:aa:94:61:46:
                    a7:ce:29:31:45:c4:22:d8:e8:1b:38:3e:91:cf:17:d2:
                    28:66:f7:c2:6d:10:8f:f7:3f:08:9b:6e:d1:a3:f8:7f:
                    c3:98:d2:e3:c2:f0:92:eb:0a:6f:b2:1b:3e:8d:36:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:2d:34:b7:fd:a6:18:68:a4:f9:37:9a:e9:47:3a:43:
        37:e4:70:d7:31:11:32:c0:14:59:e6:46:ce:2a:3b:31:
        d1:51:83:89:64:f9:c4:63:e9:d7:55:d1:e9:ae:1c:de:
        a8:5c:7c:8d:a5:a5:fc:bb:bb:66:91:e0:93:45:28:28:
        48:a5:83:01:84:90:2c:5e:dc:45:01:d2:dc:0a:73:87:
        22:fb:b7:ae:31:7c:bd:98:d7:22:88:89:07:9c:ea:cd:
        d3:c3:ad:b7:bd:0c:7f:3a:73:60:73:61:0f:ac:db:92:
        62:5c:37:4e:0e:dd:7c:85:68:f2:46:d6:9f:74:77:31:
        1c:45:b1:4b:30:9a:29:38:e6:47:48:d3:a9:2d:0e:b6:
        f5:c4:f8:9e:ab:aa:c5:a4:6c:99:01:9d:53:c5:59:2b:
        8b:9d:4b:1b:69:79:a0:47:ea:d4:57:eb:9b:d2:7b:1f:
        a7:56:0a:1e:91:6f:f7:50:4b:e0:8b:ee:12:04:c0:81:
        c1:87:98:a6:50:38:32:5b:1e:0d:f2:a3:b7:d8:3d:e8:
        a9:c2:90:d1:f5:7b:a4:86:6b:c3:55:67:61:eb:cf:08:
        94:80:72:7a:91:a4:e9:06:18:45:a3:76:d5:23:a9:ad:
        96:73:61:04:8a:82:c8:cb:03:d9:e8:c0:d2:18:e5:ba
    Fingerprint (SHA-256):
        57:5D:11:BC:24:6D:7E:F1:AE:8E:B3:5F:9A:C9:29:0B:75:FB:AB:B6:C3:46:4D:EB:98:50:83:9A:AF:D6:81:C5
    Fingerprint (SHA1):
        23:0F:CD:C3:03:1D:CA:18:10:0A:79:16:AE:56:6B:D1:01:B9:82:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10835: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10836: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10837: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 18245 at Wed May 10 12:32:24 UTC 2017
kill -USR1 18245
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 18245 killed at Wed May 10 12:32:24 UTC 2017
httpserv starting at Wed May 10 12:32:24 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:32:24 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 18492 >/dev/null 2>/dev/null
httpserv with PID 18492 found at Wed May 10 12:32:24 UTC 2017
httpserv with PID 18492 started at Wed May 10 12:32:24 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10838: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #10839: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123149 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10840: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #10841: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #10842: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123150 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10843: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #10844: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #10845: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10846: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510123151 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10847: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10848: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510123152 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10849: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10850: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #10851: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10852: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10853: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510123153   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10854: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10855: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10856: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #10857: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #10858: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123150 (0x1e67dc8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:32:29 2017
            Not After : Tue May 10 12:32:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bf:9d:06:e9:a1:e9:44:bd:6d:15:69:91:ef:f0:39:
                    18:65:8c:c3:4b:4c:91:7c:55:51:19:49:94:ea:34:de:
                    82:17:6b:e0:30:02:c3:4b:d0:cd:e2:04:4c:0b:a0:eb:
                    0c:80:ea:2d:ca:63:d6:85:6b:19:63:26:d2:48:32:17:
                    e7:17:55:43:a4:23:0c:50:b7:9b:3f:b0:f8:9d:0b:06:
                    12:3d:5a:3e:1c:7c:e9:27:63:07:7e:34:6b:7b:c4:02:
                    7e:f0:65:b0:ee:c5:cc:09:a1:0f:7f:b1:0d:76:5e:a9:
                    42:1f:dc:c1:6c:55:51:92:98:b8:13:61:13:5b:9e:36:
                    b7:68:aa:fd:67:bf:7b:9b:fc:12:52:8e:27:b5:f9:12:
                    2f:f4:00:4d:1a:03:45:37:12:47:8a:21:33:5c:bc:8d:
                    c9:1c:fe:71:a6:a9:79:ff:c8:cd:6c:b1:93:b6:77:f9:
                    05:71:28:15:d7:25:71:0b:30:4c:4a:77:7b:12:b8:e1:
                    17:da:f5:3a:48:16:2f:ff:7a:89:72:c0:c7:00:e8:d2:
                    34:d1:67:56:b2:76:3c:8d:7a:d3:13:9a:aa:59:e2:31:
                    05:c9:fb:d8:13:0b:dd:0e:65:6d:3c:3a:62:47:8a:7f:
                    56:fe:fb:af:b2:11:c0:cd:e5:d7:df:05:2c:33:95:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e7:d1:17:b9:77:cf:3b:0e:e3:52:2a:00:33:39:de:
        0a:69:d6:80:d4:68:1e:a3:d0:44:cb:70:c2:7a:09:83:
        d1:a1:a9:5e:c1:6b:31:68:65:c0:2b:56:9f:fe:b5:bd:
        9d:53:79:22:b2:96:a4:bd:9c:da:93:e5:89:d2:db:13:
        01:00:b5:d4:d6:90:3b:22:fe:25:01:41:17:f5:6d:8e:
        4c:fa:0a:63:62:fc:29:f0:1d:3d:1d:c6:58:75:6f:40:
        b5:e9:8b:05:50:19:a6:5e:f4:7e:15:ce:86:f5:c8:3a:
        55:70:df:f2:c9:5d:1d:67:ed:92:d7:00:f5:4f:7e:8a:
        64:30:e4:6b:a9:d7:0c:19:98:b7:38:58:54:ee:82:a2:
        98:ea:63:5b:45:e0:60:a4:94:be:09:5c:d1:9d:48:ce:
        0b:0c:93:cc:bf:95:e0:c7:ed:bb:71:a4:71:5b:8d:46:
        68:bc:0c:7c:ba:dd:10:0a:8b:46:03:af:a2:58:3d:e6:
        e7:04:14:32:b0:0e:2e:74:23:01:29:22:c4:1c:91:c6:
        1d:66:cd:e2:ed:cd:2a:2a:76:e3:15:86:80:a8:58:df:
        e3:d6:ed:72:60:98:c4:7e:41:ca:6a:9d:14:d4:8d:4b:
        34:76:50:ce:5e:e3:b3:22:f3:75:9d:49:2e:b1:b0:56
    Fingerprint (SHA-256):
        DF:2A:9C:E9:A3:AC:5A:11:25:8A:BD:16:DF:99:05:C6:4A:11:A5:C8:84:5D:98:CB:53:50:15:80:8A:09:42:51
    Fingerprint (SHA1):
        F0:1A:F8:8D:6B:CA:28:7B:03:2A:AD:AE:F8:03:E7:D8:5B:9E:F4:0F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10859: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123149 (0x1e67dc8d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:32:26 2017
            Not After : Tue May 10 12:32:26 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:6b:90:b4:c1:25:52:c1:df:f6:74:24:4d:78:ef:c3:
                    34:8e:39:67:53:68:b7:8a:2e:6c:c6:69:d1:76:89:2f:
                    61:ec:45:56:65:15:8c:74:dd:34:6e:7d:11:a7:ab:a1:
                    33:50:50:41:c8:e9:6c:a7:15:d5:8f:b4:9f:6d:57:02:
                    d9:9b:1e:9c:84:3d:45:a1:f1:a3:67:c3:ff:33:50:dc:
                    48:4c:b4:81:89:3a:6a:59:bb:00:cf:bc:ff:fa:7c:49:
                    bf:95:2a:54:d3:ad:18:e7:25:ec:60:c0:95:a1:ba:9d:
                    f6:bf:39:70:a0:4e:1c:01:bc:e2:80:b0:35:88:87:bb:
                    5f:d3:02:bc:6e:20:43:ca:6b:da:9f:a4:c2:7d:ed:28:
                    2f:16:cc:de:9d:a4:6b:1a:af:6f:b3:15:88:20:6b:1c:
                    70:5b:3b:4b:f8:ad:17:0f:e3:92:30:b4:19:53:d0:e6:
                    12:a5:09:8f:93:06:94:0c:54:c0:2b:2b:3b:c1:fe:b7:
                    1c:56:b1:fd:e2:52:96:23:a7:ca:93:cb:43:8c:32:ae:
                    f1:d7:39:0e:a7:18:41:73:5d:bb:38:2e:34:68:48:06:
                    d7:3d:df:3d:41:c5:95:03:42:b2:64:a9:44:fd:35:b1:
                    d1:47:57:2c:8f:6d:c4:59:19:78:d0:ac:fb:2d:56:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:09:d5:16:a8:c2:19:d7:92:da:45:c9:f0:5d:11:89:
        5d:6a:e1:30:f7:7a:b8:34:f5:96:65:82:32:8a:c6:d5:
        98:6d:77:06:54:7c:77:6a:ed:37:4b:18:a3:da:fc:1b:
        29:6e:7b:b0:5d:3e:79:96:99:b8:2f:55:ed:8b:82:3b:
        c9:c2:b0:6c:b5:4c:61:2b:6d:3a:78:56:d0:50:d3:8e:
        d5:ff:9a:68:2d:6d:2c:d7:85:62:5f:b6:26:88:bd:ea:
        6f:35:5a:67:b6:66:e6:25:2d:3d:c9:9f:3c:23:7b:2a:
        d8:1a:d1:13:54:49:ac:9c:61:84:32:cd:ad:b1:b8:89:
        2c:4f:f7:a0:6a:a1:4b:b8:63:f5:d8:d6:e5:24:23:b1:
        42:e8:f3:f9:e9:d9:43:ec:a3:c5:7c:3b:36:9c:d9:7c:
        c1:68:7d:70:89:f9:c5:3a:5f:6c:58:f1:6c:86:a8:d9:
        1a:b0:2a:86:fc:a0:31:35:b2:56:ae:60:99:5c:b0:b5:
        33:73:b1:ad:92:76:04:ae:de:d3:9a:a6:fe:56:8d:a7:
        44:44:0e:71:d3:d5:04:fb:bb:eb:6e:01:e8:ea:70:c3:
        c8:93:1f:d3:d9:08:e4:12:5d:d1:72:c2:e5:15:34:35:
        55:fc:4d:97:91:ea:b7:54:ce:2c:90:42:3b:1a:3a:d3
    Fingerprint (SHA-256):
        F7:E7:E0:46:A4:EA:00:B1:AF:8A:70:34:87:25:C2:B6:A3:29:CE:4E:B2:F9:44:7C:06:73:1A:E1:8D:2D:37:9E
    Fingerprint (SHA1):
        C9:A3:B4:01:62:04:F7:AF:47:55:79:F6:D0:89:4E:E2:AD:34:5E:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10860: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10861: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #10862: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #10863: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123149 (0x1e67dc8d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:32:26 2017
            Not After : Tue May 10 12:32:26 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:6b:90:b4:c1:25:52:c1:df:f6:74:24:4d:78:ef:c3:
                    34:8e:39:67:53:68:b7:8a:2e:6c:c6:69:d1:76:89:2f:
                    61:ec:45:56:65:15:8c:74:dd:34:6e:7d:11:a7:ab:a1:
                    33:50:50:41:c8:e9:6c:a7:15:d5:8f:b4:9f:6d:57:02:
                    d9:9b:1e:9c:84:3d:45:a1:f1:a3:67:c3:ff:33:50:dc:
                    48:4c:b4:81:89:3a:6a:59:bb:00:cf:bc:ff:fa:7c:49:
                    bf:95:2a:54:d3:ad:18:e7:25:ec:60:c0:95:a1:ba:9d:
                    f6:bf:39:70:a0:4e:1c:01:bc:e2:80:b0:35:88:87:bb:
                    5f:d3:02:bc:6e:20:43:ca:6b:da:9f:a4:c2:7d:ed:28:
                    2f:16:cc:de:9d:a4:6b:1a:af:6f:b3:15:88:20:6b:1c:
                    70:5b:3b:4b:f8:ad:17:0f:e3:92:30:b4:19:53:d0:e6:
                    12:a5:09:8f:93:06:94:0c:54:c0:2b:2b:3b:c1:fe:b7:
                    1c:56:b1:fd:e2:52:96:23:a7:ca:93:cb:43:8c:32:ae:
                    f1:d7:39:0e:a7:18:41:73:5d:bb:38:2e:34:68:48:06:
                    d7:3d:df:3d:41:c5:95:03:42:b2:64:a9:44:fd:35:b1:
                    d1:47:57:2c:8f:6d:c4:59:19:78:d0:ac:fb:2d:56:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:09:d5:16:a8:c2:19:d7:92:da:45:c9:f0:5d:11:89:
        5d:6a:e1:30:f7:7a:b8:34:f5:96:65:82:32:8a:c6:d5:
        98:6d:77:06:54:7c:77:6a:ed:37:4b:18:a3:da:fc:1b:
        29:6e:7b:b0:5d:3e:79:96:99:b8:2f:55:ed:8b:82:3b:
        c9:c2:b0:6c:b5:4c:61:2b:6d:3a:78:56:d0:50:d3:8e:
        d5:ff:9a:68:2d:6d:2c:d7:85:62:5f:b6:26:88:bd:ea:
        6f:35:5a:67:b6:66:e6:25:2d:3d:c9:9f:3c:23:7b:2a:
        d8:1a:d1:13:54:49:ac:9c:61:84:32:cd:ad:b1:b8:89:
        2c:4f:f7:a0:6a:a1:4b:b8:63:f5:d8:d6:e5:24:23:b1:
        42:e8:f3:f9:e9:d9:43:ec:a3:c5:7c:3b:36:9c:d9:7c:
        c1:68:7d:70:89:f9:c5:3a:5f:6c:58:f1:6c:86:a8:d9:
        1a:b0:2a:86:fc:a0:31:35:b2:56:ae:60:99:5c:b0:b5:
        33:73:b1:ad:92:76:04:ae:de:d3:9a:a6:fe:56:8d:a7:
        44:44:0e:71:d3:d5:04:fb:bb:eb:6e:01:e8:ea:70:c3:
        c8:93:1f:d3:d9:08:e4:12:5d:d1:72:c2:e5:15:34:35:
        55:fc:4d:97:91:ea:b7:54:ce:2c:90:42:3b:1a:3a:d3
    Fingerprint (SHA-256):
        F7:E7:E0:46:A4:EA:00:B1:AF:8A:70:34:87:25:C2:B6:A3:29:CE:4E:B2:F9:44:7C:06:73:1A:E1:8D:2D:37:9E
    Fingerprint (SHA1):
        C9:A3:B4:01:62:04:F7:AF:47:55:79:F6:D0:89:4E:E2:AD:34:5E:1E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10864: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123150 (0x1e67dc8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:32:29 2017
            Not After : Tue May 10 12:32:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bf:9d:06:e9:a1:e9:44:bd:6d:15:69:91:ef:f0:39:
                    18:65:8c:c3:4b:4c:91:7c:55:51:19:49:94:ea:34:de:
                    82:17:6b:e0:30:02:c3:4b:d0:cd:e2:04:4c:0b:a0:eb:
                    0c:80:ea:2d:ca:63:d6:85:6b:19:63:26:d2:48:32:17:
                    e7:17:55:43:a4:23:0c:50:b7:9b:3f:b0:f8:9d:0b:06:
                    12:3d:5a:3e:1c:7c:e9:27:63:07:7e:34:6b:7b:c4:02:
                    7e:f0:65:b0:ee:c5:cc:09:a1:0f:7f:b1:0d:76:5e:a9:
                    42:1f:dc:c1:6c:55:51:92:98:b8:13:61:13:5b:9e:36:
                    b7:68:aa:fd:67:bf:7b:9b:fc:12:52:8e:27:b5:f9:12:
                    2f:f4:00:4d:1a:03:45:37:12:47:8a:21:33:5c:bc:8d:
                    c9:1c:fe:71:a6:a9:79:ff:c8:cd:6c:b1:93:b6:77:f9:
                    05:71:28:15:d7:25:71:0b:30:4c:4a:77:7b:12:b8:e1:
                    17:da:f5:3a:48:16:2f:ff:7a:89:72:c0:c7:00:e8:d2:
                    34:d1:67:56:b2:76:3c:8d:7a:d3:13:9a:aa:59:e2:31:
                    05:c9:fb:d8:13:0b:dd:0e:65:6d:3c:3a:62:47:8a:7f:
                    56:fe:fb:af:b2:11:c0:cd:e5:d7:df:05:2c:33:95:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e7:d1:17:b9:77:cf:3b:0e:e3:52:2a:00:33:39:de:
        0a:69:d6:80:d4:68:1e:a3:d0:44:cb:70:c2:7a:09:83:
        d1:a1:a9:5e:c1:6b:31:68:65:c0:2b:56:9f:fe:b5:bd:
        9d:53:79:22:b2:96:a4:bd:9c:da:93:e5:89:d2:db:13:
        01:00:b5:d4:d6:90:3b:22:fe:25:01:41:17:f5:6d:8e:
        4c:fa:0a:63:62:fc:29:f0:1d:3d:1d:c6:58:75:6f:40:
        b5:e9:8b:05:50:19:a6:5e:f4:7e:15:ce:86:f5:c8:3a:
        55:70:df:f2:c9:5d:1d:67:ed:92:d7:00:f5:4f:7e:8a:
        64:30:e4:6b:a9:d7:0c:19:98:b7:38:58:54:ee:82:a2:
        98:ea:63:5b:45:e0:60:a4:94:be:09:5c:d1:9d:48:ce:
        0b:0c:93:cc:bf:95:e0:c7:ed:bb:71:a4:71:5b:8d:46:
        68:bc:0c:7c:ba:dd:10:0a:8b:46:03:af:a2:58:3d:e6:
        e7:04:14:32:b0:0e:2e:74:23:01:29:22:c4:1c:91:c6:
        1d:66:cd:e2:ed:cd:2a:2a:76:e3:15:86:80:a8:58:df:
        e3:d6:ed:72:60:98:c4:7e:41:ca:6a:9d:14:d4:8d:4b:
        34:76:50:ce:5e:e3:b3:22:f3:75:9d:49:2e:b1:b0:56
    Fingerprint (SHA-256):
        DF:2A:9C:E9:A3:AC:5A:11:25:8A:BD:16:DF:99:05:C6:4A:11:A5:C8:84:5D:98:CB:53:50:15:80:8A:09:42:51
    Fingerprint (SHA1):
        F0:1A:F8:8D:6B:CA:28:7B:03:2A:AD:AE:F8:03:E7:D8:5B:9E:F4:0F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10865: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #10866: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #10867: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10868: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10869: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10870: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123150 (0x1e67dc8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:32:29 2017
            Not After : Tue May 10 12:32:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bf:9d:06:e9:a1:e9:44:bd:6d:15:69:91:ef:f0:39:
                    18:65:8c:c3:4b:4c:91:7c:55:51:19:49:94:ea:34:de:
                    82:17:6b:e0:30:02:c3:4b:d0:cd:e2:04:4c:0b:a0:eb:
                    0c:80:ea:2d:ca:63:d6:85:6b:19:63:26:d2:48:32:17:
                    e7:17:55:43:a4:23:0c:50:b7:9b:3f:b0:f8:9d:0b:06:
                    12:3d:5a:3e:1c:7c:e9:27:63:07:7e:34:6b:7b:c4:02:
                    7e:f0:65:b0:ee:c5:cc:09:a1:0f:7f:b1:0d:76:5e:a9:
                    42:1f:dc:c1:6c:55:51:92:98:b8:13:61:13:5b:9e:36:
                    b7:68:aa:fd:67:bf:7b:9b:fc:12:52:8e:27:b5:f9:12:
                    2f:f4:00:4d:1a:03:45:37:12:47:8a:21:33:5c:bc:8d:
                    c9:1c:fe:71:a6:a9:79:ff:c8:cd:6c:b1:93:b6:77:f9:
                    05:71:28:15:d7:25:71:0b:30:4c:4a:77:7b:12:b8:e1:
                    17:da:f5:3a:48:16:2f:ff:7a:89:72:c0:c7:00:e8:d2:
                    34:d1:67:56:b2:76:3c:8d:7a:d3:13:9a:aa:59:e2:31:
                    05:c9:fb:d8:13:0b:dd:0e:65:6d:3c:3a:62:47:8a:7f:
                    56:fe:fb:af:b2:11:c0:cd:e5:d7:df:05:2c:33:95:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e7:d1:17:b9:77:cf:3b:0e:e3:52:2a:00:33:39:de:
        0a:69:d6:80:d4:68:1e:a3:d0:44:cb:70:c2:7a:09:83:
        d1:a1:a9:5e:c1:6b:31:68:65:c0:2b:56:9f:fe:b5:bd:
        9d:53:79:22:b2:96:a4:bd:9c:da:93:e5:89:d2:db:13:
        01:00:b5:d4:d6:90:3b:22:fe:25:01:41:17:f5:6d:8e:
        4c:fa:0a:63:62:fc:29:f0:1d:3d:1d:c6:58:75:6f:40:
        b5:e9:8b:05:50:19:a6:5e:f4:7e:15:ce:86:f5:c8:3a:
        55:70:df:f2:c9:5d:1d:67:ed:92:d7:00:f5:4f:7e:8a:
        64:30:e4:6b:a9:d7:0c:19:98:b7:38:58:54:ee:82:a2:
        98:ea:63:5b:45:e0:60:a4:94:be:09:5c:d1:9d:48:ce:
        0b:0c:93:cc:bf:95:e0:c7:ed:bb:71:a4:71:5b:8d:46:
        68:bc:0c:7c:ba:dd:10:0a:8b:46:03:af:a2:58:3d:e6:
        e7:04:14:32:b0:0e:2e:74:23:01:29:22:c4:1c:91:c6:
        1d:66:cd:e2:ed:cd:2a:2a:76:e3:15:86:80:a8:58:df:
        e3:d6:ed:72:60:98:c4:7e:41:ca:6a:9d:14:d4:8d:4b:
        34:76:50:ce:5e:e3:b3:22:f3:75:9d:49:2e:b1:b0:56
    Fingerprint (SHA-256):
        DF:2A:9C:E9:A3:AC:5A:11:25:8A:BD:16:DF:99:05:C6:4A:11:A5:C8:84:5D:98:CB:53:50:15:80:8A:09:42:51
    Fingerprint (SHA1):
        F0:1A:F8:8D:6B:CA:28:7B:03:2A:AD:AE:F8:03:E7:D8:5B:9E:F4:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10871: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123150 (0x1e67dc8e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:32:29 2017
            Not After : Tue May 10 12:32:29 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bf:9d:06:e9:a1:e9:44:bd:6d:15:69:91:ef:f0:39:
                    18:65:8c:c3:4b:4c:91:7c:55:51:19:49:94:ea:34:de:
                    82:17:6b:e0:30:02:c3:4b:d0:cd:e2:04:4c:0b:a0:eb:
                    0c:80:ea:2d:ca:63:d6:85:6b:19:63:26:d2:48:32:17:
                    e7:17:55:43:a4:23:0c:50:b7:9b:3f:b0:f8:9d:0b:06:
                    12:3d:5a:3e:1c:7c:e9:27:63:07:7e:34:6b:7b:c4:02:
                    7e:f0:65:b0:ee:c5:cc:09:a1:0f:7f:b1:0d:76:5e:a9:
                    42:1f:dc:c1:6c:55:51:92:98:b8:13:61:13:5b:9e:36:
                    b7:68:aa:fd:67:bf:7b:9b:fc:12:52:8e:27:b5:f9:12:
                    2f:f4:00:4d:1a:03:45:37:12:47:8a:21:33:5c:bc:8d:
                    c9:1c:fe:71:a6:a9:79:ff:c8:cd:6c:b1:93:b6:77:f9:
                    05:71:28:15:d7:25:71:0b:30:4c:4a:77:7b:12:b8:e1:
                    17:da:f5:3a:48:16:2f:ff:7a:89:72:c0:c7:00:e8:d2:
                    34:d1:67:56:b2:76:3c:8d:7a:d3:13:9a:aa:59:e2:31:
                    05:c9:fb:d8:13:0b:dd:0e:65:6d:3c:3a:62:47:8a:7f:
                    56:fe:fb:af:b2:11:c0:cd:e5:d7:df:05:2c:33:95:0b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e7:d1:17:b9:77:cf:3b:0e:e3:52:2a:00:33:39:de:
        0a:69:d6:80:d4:68:1e:a3:d0:44:cb:70:c2:7a:09:83:
        d1:a1:a9:5e:c1:6b:31:68:65:c0:2b:56:9f:fe:b5:bd:
        9d:53:79:22:b2:96:a4:bd:9c:da:93:e5:89:d2:db:13:
        01:00:b5:d4:d6:90:3b:22:fe:25:01:41:17:f5:6d:8e:
        4c:fa:0a:63:62:fc:29:f0:1d:3d:1d:c6:58:75:6f:40:
        b5:e9:8b:05:50:19:a6:5e:f4:7e:15:ce:86:f5:c8:3a:
        55:70:df:f2:c9:5d:1d:67:ed:92:d7:00:f5:4f:7e:8a:
        64:30:e4:6b:a9:d7:0c:19:98:b7:38:58:54:ee:82:a2:
        98:ea:63:5b:45:e0:60:a4:94:be:09:5c:d1:9d:48:ce:
        0b:0c:93:cc:bf:95:e0:c7:ed:bb:71:a4:71:5b:8d:46:
        68:bc:0c:7c:ba:dd:10:0a:8b:46:03:af:a2:58:3d:e6:
        e7:04:14:32:b0:0e:2e:74:23:01:29:22:c4:1c:91:c6:
        1d:66:cd:e2:ed:cd:2a:2a:76:e3:15:86:80:a8:58:df:
        e3:d6:ed:72:60:98:c4:7e:41:ca:6a:9d:14:d4:8d:4b:
        34:76:50:ce:5e:e3:b3:22:f3:75:9d:49:2e:b1:b0:56
    Fingerprint (SHA-256):
        DF:2A:9C:E9:A3:AC:5A:11:25:8A:BD:16:DF:99:05:C6:4A:11:A5:C8:84:5D:98:CB:53:50:15:80:8A:09:42:51
    Fingerprint (SHA1):
        F0:1A:F8:8D:6B:CA:28:7B:03:2A:AD:AE:F8:03:E7:D8:5B:9E:F4:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10872: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #10873: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #10874: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10875: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10876: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10877: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123149 (0x1e67dc8d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:32:26 2017
            Not After : Tue May 10 12:32:26 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:6b:90:b4:c1:25:52:c1:df:f6:74:24:4d:78:ef:c3:
                    34:8e:39:67:53:68:b7:8a:2e:6c:c6:69:d1:76:89:2f:
                    61:ec:45:56:65:15:8c:74:dd:34:6e:7d:11:a7:ab:a1:
                    33:50:50:41:c8:e9:6c:a7:15:d5:8f:b4:9f:6d:57:02:
                    d9:9b:1e:9c:84:3d:45:a1:f1:a3:67:c3:ff:33:50:dc:
                    48:4c:b4:81:89:3a:6a:59:bb:00:cf:bc:ff:fa:7c:49:
                    bf:95:2a:54:d3:ad:18:e7:25:ec:60:c0:95:a1:ba:9d:
                    f6:bf:39:70:a0:4e:1c:01:bc:e2:80:b0:35:88:87:bb:
                    5f:d3:02:bc:6e:20:43:ca:6b:da:9f:a4:c2:7d:ed:28:
                    2f:16:cc:de:9d:a4:6b:1a:af:6f:b3:15:88:20:6b:1c:
                    70:5b:3b:4b:f8:ad:17:0f:e3:92:30:b4:19:53:d0:e6:
                    12:a5:09:8f:93:06:94:0c:54:c0:2b:2b:3b:c1:fe:b7:
                    1c:56:b1:fd:e2:52:96:23:a7:ca:93:cb:43:8c:32:ae:
                    f1:d7:39:0e:a7:18:41:73:5d:bb:38:2e:34:68:48:06:
                    d7:3d:df:3d:41:c5:95:03:42:b2:64:a9:44:fd:35:b1:
                    d1:47:57:2c:8f:6d:c4:59:19:78:d0:ac:fb:2d:56:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:09:d5:16:a8:c2:19:d7:92:da:45:c9:f0:5d:11:89:
        5d:6a:e1:30:f7:7a:b8:34:f5:96:65:82:32:8a:c6:d5:
        98:6d:77:06:54:7c:77:6a:ed:37:4b:18:a3:da:fc:1b:
        29:6e:7b:b0:5d:3e:79:96:99:b8:2f:55:ed:8b:82:3b:
        c9:c2:b0:6c:b5:4c:61:2b:6d:3a:78:56:d0:50:d3:8e:
        d5:ff:9a:68:2d:6d:2c:d7:85:62:5f:b6:26:88:bd:ea:
        6f:35:5a:67:b6:66:e6:25:2d:3d:c9:9f:3c:23:7b:2a:
        d8:1a:d1:13:54:49:ac:9c:61:84:32:cd:ad:b1:b8:89:
        2c:4f:f7:a0:6a:a1:4b:b8:63:f5:d8:d6:e5:24:23:b1:
        42:e8:f3:f9:e9:d9:43:ec:a3:c5:7c:3b:36:9c:d9:7c:
        c1:68:7d:70:89:f9:c5:3a:5f:6c:58:f1:6c:86:a8:d9:
        1a:b0:2a:86:fc:a0:31:35:b2:56:ae:60:99:5c:b0:b5:
        33:73:b1:ad:92:76:04:ae:de:d3:9a:a6:fe:56:8d:a7:
        44:44:0e:71:d3:d5:04:fb:bb:eb:6e:01:e8:ea:70:c3:
        c8:93:1f:d3:d9:08:e4:12:5d:d1:72:c2:e5:15:34:35:
        55:fc:4d:97:91:ea:b7:54:ce:2c:90:42:3b:1a:3a:d3
    Fingerprint (SHA-256):
        F7:E7:E0:46:A4:EA:00:B1:AF:8A:70:34:87:25:C2:B6:A3:29:CE:4E:B2:F9:44:7C:06:73:1A:E1:8D:2D:37:9E
    Fingerprint (SHA1):
        C9:A3:B4:01:62:04:F7:AF:47:55:79:F6:D0:89:4E:E2:AD:34:5E:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10878: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123149 (0x1e67dc8d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:32:26 2017
            Not After : Tue May 10 12:32:26 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:6b:90:b4:c1:25:52:c1:df:f6:74:24:4d:78:ef:c3:
                    34:8e:39:67:53:68:b7:8a:2e:6c:c6:69:d1:76:89:2f:
                    61:ec:45:56:65:15:8c:74:dd:34:6e:7d:11:a7:ab:a1:
                    33:50:50:41:c8:e9:6c:a7:15:d5:8f:b4:9f:6d:57:02:
                    d9:9b:1e:9c:84:3d:45:a1:f1:a3:67:c3:ff:33:50:dc:
                    48:4c:b4:81:89:3a:6a:59:bb:00:cf:bc:ff:fa:7c:49:
                    bf:95:2a:54:d3:ad:18:e7:25:ec:60:c0:95:a1:ba:9d:
                    f6:bf:39:70:a0:4e:1c:01:bc:e2:80:b0:35:88:87:bb:
                    5f:d3:02:bc:6e:20:43:ca:6b:da:9f:a4:c2:7d:ed:28:
                    2f:16:cc:de:9d:a4:6b:1a:af:6f:b3:15:88:20:6b:1c:
                    70:5b:3b:4b:f8:ad:17:0f:e3:92:30:b4:19:53:d0:e6:
                    12:a5:09:8f:93:06:94:0c:54:c0:2b:2b:3b:c1:fe:b7:
                    1c:56:b1:fd:e2:52:96:23:a7:ca:93:cb:43:8c:32:ae:
                    f1:d7:39:0e:a7:18:41:73:5d:bb:38:2e:34:68:48:06:
                    d7:3d:df:3d:41:c5:95:03:42:b2:64:a9:44:fd:35:b1:
                    d1:47:57:2c:8f:6d:c4:59:19:78:d0:ac:fb:2d:56:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:09:d5:16:a8:c2:19:d7:92:da:45:c9:f0:5d:11:89:
        5d:6a:e1:30:f7:7a:b8:34:f5:96:65:82:32:8a:c6:d5:
        98:6d:77:06:54:7c:77:6a:ed:37:4b:18:a3:da:fc:1b:
        29:6e:7b:b0:5d:3e:79:96:99:b8:2f:55:ed:8b:82:3b:
        c9:c2:b0:6c:b5:4c:61:2b:6d:3a:78:56:d0:50:d3:8e:
        d5:ff:9a:68:2d:6d:2c:d7:85:62:5f:b6:26:88:bd:ea:
        6f:35:5a:67:b6:66:e6:25:2d:3d:c9:9f:3c:23:7b:2a:
        d8:1a:d1:13:54:49:ac:9c:61:84:32:cd:ad:b1:b8:89:
        2c:4f:f7:a0:6a:a1:4b:b8:63:f5:d8:d6:e5:24:23:b1:
        42:e8:f3:f9:e9:d9:43:ec:a3:c5:7c:3b:36:9c:d9:7c:
        c1:68:7d:70:89:f9:c5:3a:5f:6c:58:f1:6c:86:a8:d9:
        1a:b0:2a:86:fc:a0:31:35:b2:56:ae:60:99:5c:b0:b5:
        33:73:b1:ad:92:76:04:ae:de:d3:9a:a6:fe:56:8d:a7:
        44:44:0e:71:d3:d5:04:fb:bb:eb:6e:01:e8:ea:70:c3:
        c8:93:1f:d3:d9:08:e4:12:5d:d1:72:c2:e5:15:34:35:
        55:fc:4d:97:91:ea:b7:54:ce:2c:90:42:3b:1a:3a:d3
    Fingerprint (SHA-256):
        F7:E7:E0:46:A4:EA:00:B1:AF:8A:70:34:87:25:C2:B6:A3:29:CE:4E:B2:F9:44:7C:06:73:1A:E1:8D:2D:37:9E
    Fingerprint (SHA1):
        C9:A3:B4:01:62:04:F7:AF:47:55:79:F6:D0:89:4E:E2:AD:34:5E:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10879: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #10880: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123154 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10881: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #10882: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #10883: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123155 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10884: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #10885: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #10886: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123156 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10887: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #10888: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #10889: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123157 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10890: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #10891: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #10892: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123158 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10893: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #10894: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #10895: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123159 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10896: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #10897: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #10898: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123160 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10899: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #10900: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #10901: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123161 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10902: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #10903: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #10904: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123162 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10905: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #10906: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #10907: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10908: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510123163 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10909: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10910: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510123164 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10911: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10912: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510123165 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10913: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10914: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #10915: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #10916: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10917: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510123166 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10918: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10919: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510123167 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10920: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10921: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510123168 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10922: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10923: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #10924: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #10925: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10926: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510123169 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10927: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10928: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510123170 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10929: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10930: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510123171 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10931: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10932: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #10933: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #10934: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10935: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510123172 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10936: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10937: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510123173 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10938: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10939: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510123174 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10940: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10941: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #10942: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10943: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10944: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510123175   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10945: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10946: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10947: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10948: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123176   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10949: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10950: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123154 (0x1e67dc92)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:32:38 2017
            Not After : Tue May 10 12:32:38 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:7e:ec:33:74:ff:1d:e1:17:c1:d3:3a:53:1a:a6:5b:
                    aa:e3:72:1f:f2:ac:bd:c7:d2:e2:2c:81:f1:ea:5a:ef:
                    76:8f:2d:e9:1c:fb:70:76:0c:f8:99:7e:0f:4d:c9:08:
                    e6:b0:62:5c:0e:09:43:35:8c:3d:8e:b1:6b:35:08:2e:
                    47:13:68:05:e3:d5:75:08:c6:c5:ff:29:a3:f9:18:e6:
                    c0:73:97:d6:ba:ec:6c:da:f9:12:15:cf:29:80:21:14:
                    97:9b:83:b8:4b:e5:c1:b8:27:24:15:17:4e:2d:d8:44:
                    d8:ce:06:2b:ec:e0:29:8d:46:20:09:61:f5:16:04:5d:
                    43:1d:5e:73:07:c1:ad:10:ab:15:20:de:bd:9e:c2:5d:
                    f6:0e:cf:e0:43:be:31:97:19:06:6a:26:99:56:24:e5:
                    29:a1:5f:23:96:78:b9:72:33:c7:94:71:c5:60:21:e2:
                    17:2f:47:32:e6:2a:0b:c8:23:ed:43:df:18:0d:6c:0f:
                    23:0c:07:bb:92:40:15:56:2d:2f:60:6d:0b:4d:a8:b9:
                    f8:e4:33:ce:30:d0:ae:0c:c8:78:56:78:6a:de:27:ed:
                    09:19:fc:02:b0:b2:c6:f6:d5:79:6c:ca:0a:ee:6f:45:
                    9b:3e:0e:70:f2:e9:f9:36:8c:e0:a7:56:9b:01:fd:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:0f:1f:60:4d:6c:5f:53:05:b1:df:29:b9:dd:77:1e:
        2c:27:87:f6:d3:62:fc:f0:13:66:d1:32:4c:5d:78:6e:
        07:11:5a:00:ce:9f:2a:db:89:4f:d6:47:36:ee:cd:6a:
        1c:84:ef:7a:2a:90:7d:5f:55:5d:b9:9b:7d:fb:17:b6:
        67:35:66:0b:28:c4:4f:47:50:5a:4c:ad:02:dd:fb:86:
        58:77:cc:f7:8f:06:c7:c3:a9:5a:ca:3a:88:33:51:95:
        a6:22:f7:a8:ee:6d:1a:0d:e8:5d:8f:b9:01:eb:5e:a4:
        2a:eb:1e:0a:7c:a7:73:fb:a3:f3:c1:ba:6d:da:db:3e:
        1e:d7:62:b0:f0:4f:b1:2c:59:0e:a6:6b:fd:50:d8:62:
        27:4f:e3:c0:90:9d:70:26:20:02:de:c2:30:56:eb:23:
        a5:14:d5:ca:2c:3f:c5:9e:21:03:76:61:60:64:58:59:
        56:62:49:72:88:90:eb:4d:cb:3c:7e:14:23:e6:ba:11:
        45:9f:a5:53:c0:8a:dd:f9:0d:e6:5b:15:64:ea:4f:b9:
        3c:51:f7:cd:a4:94:73:49:1a:19:b9:57:fd:1c:fa:a0:
        3f:63:b7:57:f0:84:bf:2d:d9:76:ab:bd:65:6e:4d:75:
        f1:f2:b0:72:77:79:29:44:05:72:96:4a:92:7b:bd:19
    Fingerprint (SHA-256):
        41:07:62:50:96:7B:16:3D:57:5A:92:BB:8B:31:64:63:C3:42:C8:62:AA:DC:55:4F:B4:78:5D:5B:3D:94:D2:DE
    Fingerprint (SHA1):
        D6:5D:D9:03:AC:E3:0C:BD:ED:F7:2E:FA:62:AB:4B:66:C4:41:31:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10951: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123155 (0x1e67dc93)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:32:39 2017
            Not After : Tue May 10 12:32:39 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:c1:a7:d7:f2:fc:6d:b1:a2:c4:7c:d2:41:36:62:d6:
                    68:04:38:db:b9:83:72:ca:a7:ce:16:d9:9c:48:91:0a:
                    3c:cb:82:64:36:57:48:24:08:3c:2b:35:b8:9a:40:76:
                    a7:fa:fb:ff:f3:f9:c3:17:92:6f:07:12:65:82:c7:4e:
                    6f:0f:11:d5:6f:78:28:bc:d0:58:22:ab:31:1d:3c:81:
                    cf:ed:71:b3:c7:38:53:54:0b:4a:40:06:95:46:44:1a:
                    fc:ec:53:f1:3a:cb:71:90:cd:03:97:9d:42:de:7a:8a:
                    3d:41:b1:e0:ad:c4:13:9c:e0:b3:f0:87:f8:7e:b3:53:
                    f7:85:a2:d5:ca:c4:b3:9e:81:ef:d6:5b:eb:c6:59:b6:
                    1d:bd:ef:53:d4:36:80:98:e6:23:16:72:0c:66:56:11:
                    11:0b:31:ce:5f:79:20:42:56:e0:3b:7e:5a:60:98:11:
                    80:dd:48:d5:60:ba:9a:02:0c:cd:a3:4e:f3:df:3d:1a:
                    df:32:41:f7:30:77:56:c0:1c:1b:1a:00:c1:fa:f3:0c:
                    4f:a1:25:81:c1:c4:ae:66:27:ea:76:5c:41:6e:66:2a:
                    96:65:94:ca:a6:ee:75:5d:e0:8e:00:7e:be:46:16:ba:
                    76:33:58:d2:01:77:7a:5f:00:23:02:b6:dc:6e:28:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:76:a5:be:a4:a2:6d:4d:bf:fd:cb:f6:59:b2:13:f3:
        e7:e5:48:67:88:8a:08:c2:71:29:31:8e:54:b8:77:9d:
        f6:b1:98:44:fc:0a:39:d1:d9:73:03:35:42:41:fa:6f:
        3e:50:4a:de:b7:8e:55:85:88:69:38:fa:5a:38:ba:f6:
        91:74:c9:ff:55:40:c4:98:1a:db:26:d7:08:78:a0:49:
        00:be:e0:22:3d:cb:49:a9:be:03:22:f4:75:bf:da:f1:
        43:9d:ce:48:61:b8:f7:bb:2a:91:8e:76:22:75:62:84:
        6a:88:f5:e5:86:2a:bf:31:d3:67:b8:e4:df:d6:6e:ba:
        06:70:5f:37:23:df:1b:56:10:19:e6:46:63:44:6b:c1:
        b9:2e:a2:cd:2e:36:22:a8:8c:06:45:d2:93:78:c9:71:
        dc:f8:81:aa:24:32:af:e6:2a:5d:33:ae:f7:35:46:3f:
        3a:86:c3:8f:1a:2f:ba:72:78:ed:09:2a:a8:b9:fa:9f:
        48:76:69:47:39:11:21:6a:1b:ce:20:93:27:09:a3:2b:
        9e:fc:48:db:ae:8e:fd:76:84:93:d2:18:cf:1b:be:1b:
        eb:93:98:74:a2:90:ae:03:32:1c:d3:24:73:b2:94:b6:
        fa:b8:fe:28:78:b3:bf:cc:fc:db:44:24:dd:f9:70:a5
    Fingerprint (SHA-256):
        51:6F:70:7A:18:79:8D:3F:B4:20:40:47:95:00:32:45:B3:E1:95:45:29:C0:7C:12:4D:8D:17:9B:11:65:5A:82
    Fingerprint (SHA1):
        B1:2E:AE:8D:C3:36:3A:82:22:E3:C2:D7:17:22:80:99:A4:F4:D4:87
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10952: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123156 (0x1e67dc94)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:32:40 2017
            Not After : Tue May 10 12:32:40 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:10:67:a6:6f:16:b4:5a:9b:79:0e:c5:32:f0:f0:ee:
                    d5:13:85:bc:4d:81:b0:b0:65:df:41:ea:d5:33:d3:4c:
                    20:98:29:5e:80:68:3a:2c:25:43:aa:af:d6:b9:5a:de:
                    47:c5:a0:74:a1:93:06:2b:1c:de:20:0b:92:f1:52:2c:
                    a8:b6:92:5d:05:a0:1a:b6:72:90:80:4d:b1:7a:9c:55:
                    c4:b5:fe:7c:05:cd:a7:5d:da:86:71:2d:25:9a:af:30:
                    71:e0:77:8b:d6:bc:a2:ea:b2:fe:11:91:73:93:77:32:
                    c5:32:3a:4d:29:a0:6d:41:c7:5a:71:aa:d8:6e:80:1d:
                    4e:33:14:06:8d:e0:ee:b7:0d:4b:8c:ab:f4:04:bc:a3:
                    d4:b5:1b:04:f8:90:95:bd:c0:72:87:b6:8e:70:92:82:
                    da:f7:19:fa:a9:26:68:9b:ec:1b:23:f6:98:2c:73:9e:
                    60:7c:df:a4:97:23:8f:4d:9e:4c:ee:d0:45:38:02:4b:
                    df:4c:05:2c:c0:d2:e5:2f:9f:df:81:e5:43:c7:4b:14:
                    c7:3c:10:b5:75:d4:22:87:5a:25:85:d4:c4:d7:4e:31:
                    e6:84:03:87:68:93:cc:72:e3:3f:3a:35:d0:ea:ac:4c:
                    b5:88:17:0a:90:f3:4d:0d:15:33:70:f9:4d:cb:22:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:9f:34:e9:1b:42:01:ca:e2:50:08:b7:79:22:b1:a9:
        f0:59:e8:7b:f8:dc:5e:d5:c5:82:9d:b7:54:e9:d1:f3:
        1d:3b:ff:33:22:b5:37:a5:37:5f:df:90:dd:c8:ea:ae:
        0a:c3:79:52:02:da:0c:04:f1:ff:91:67:4b:bf:ce:4f:
        58:eb:91:ff:86:df:6d:85:82:58:1e:87:9d:12:ca:71:
        8f:5e:8c:5e:b2:71:44:98:ee:c2:1d:34:bd:51:7b:90:
        e7:b9:aa:3d:7b:e2:fc:8a:9a:65:be:91:7a:07:3b:8c:
        1f:a2:9c:0a:fb:f1:1c:19:b0:ed:23:f8:c2:a5:45:05:
        5d:de:0e:85:a4:34:50:fa:1c:a3:78:b4:48:3c:9a:71:
        37:00:87:1c:6e:da:58:b8:f6:6d:7c:60:8b:7d:7d:28:
        a1:c5:0d:64:57:b9:62:05:9d:34:ae:76:6d:77:31:3b:
        24:a9:62:bb:a6:fd:be:65:37:ad:f8:6f:59:b7:fb:ea:
        38:37:b2:20:c2:29:71:53:6c:ef:da:26:96:d4:ac:0c:
        d9:cb:21:01:09:87:02:ec:a7:57:da:ae:c9:20:4b:47:
        93:fa:ff:e6:68:9e:9f:eb:a8:c6:a8:58:94:88:cd:9f:
        87:6e:24:cc:d1:bb:35:f6:86:6e:97:b5:6f:e3:86:68
    Fingerprint (SHA-256):
        A8:5D:CE:AB:1E:7F:EE:A5:93:21:06:75:0E:F2:6B:EC:30:9A:EF:07:F0:83:88:36:24:EA:39:C2:4E:83:FE:3B
    Fingerprint (SHA1):
        38:90:0D:F0:1F:40:85:96:6A:E7:69:3D:3C:33:49:D3:59:C5:5C:33
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10953: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123157 (0x1e67dc95)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:32:41 2017
            Not After : Tue May 10 12:32:41 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:c5:59:03:1b:d7:8e:1b:92:0e:c8:f3:01:10:42:98:
                    72:a6:90:17:ea:e7:31:1b:03:8e:53:a8:10:89:26:bd:
                    09:b9:6a:1e:41:d7:50:5d:6b:49:27:ef:46:44:e3:96:
                    d2:61:8e:57:39:9e:c2:43:f3:d6:5b:60:cb:7c:43:73:
                    3e:f1:69:c5:ac:d9:c9:52:3b:6e:33:da:1c:95:f0:c6:
                    ab:88:9e:a3:2a:c9:25:b1:9e:7c:a2:a0:e8:f1:b2:be:
                    49:51:dc:8e:e5:2f:ad:11:ae:21:67:cc:5e:9e:7b:ce:
                    3e:79:2a:4d:06:e7:1e:d5:18:15:fd:25:ae:d5:31:57:
                    3c:de:cb:21:4a:48:41:8c:0a:f9:eb:1c:10:db:76:74:
                    f0:68:3c:48:99:f9:ff:ee:a4:09:8c:3b:c0:c3:d0:f9:
                    51:ab:20:e7:2d:a1:b7:f2:03:65:39:31:23:78:1a:34:
                    09:e0:d5:59:c5:11:46:6b:a3:15:37:7d:b7:58:38:5c:
                    fa:c0:ee:9f:6f:72:3c:4c:93:8b:10:fe:db:11:39:48:
                    15:7f:b8:aa:33:19:83:40:5d:ef:b9:91:aa:52:f3:50:
                    32:7d:6e:a0:06:8b:72:9d:63:e4:60:11:d5:2f:7a:1a:
                    6d:52:41:f2:6b:34:f5:38:d4:91:07:d0:1e:dd:5a:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:df:c0:6b:f5:76:6d:50:01:e7:4e:c2:0b:14:64:13:
        35:13:84:15:ee:cc:37:16:f2:67:10:1e:4d:be:ac:dd:
        2c:17:26:b1:79:14:4e:91:14:54:57:20:f7:9d:12:c0:
        c7:af:4b:9b:66:c7:a5:8c:70:24:8f:b5:95:65:24:73:
        31:a0:c6:21:99:f1:14:f9:0f:89:06:81:e9:94:d9:30:
        f0:76:f3:8f:74:0c:c3:6d:5c:25:10:e4:e8:6a:61:5b:
        f9:9c:4c:8c:b4:c6:09:e3:af:6a:e7:a1:e9:6e:28:8c:
        54:92:a0:d2:44:87:4d:f9:c1:d5:fa:b0:cd:48:6a:d7:
        90:ad:20:2e:ec:a9:99:20:13:f9:49:49:54:74:c1:90:
        f2:44:d1:54:68:fa:d0:c0:cb:2b:0d:15:80:cf:d8:24:
        99:36:42:5c:18:9f:b2:2c:e0:97:fc:4c:fd:ff:5b:85:
        fc:28:7b:71:28:e6:23:cc:b6:5f:eb:2e:27:3b:86:c5:
        62:20:6a:d3:33:e1:cf:39:2e:fe:23:9e:07:72:4e:ac:
        72:1f:f1:e1:21:e0:b3:93:4f:1b:dd:43:ae:9a:54:3f:
        5d:b6:cd:b7:8d:78:63:5f:e2:34:fe:bb:ed:9e:e3:00:
        01:4b:63:95:56:be:14:0c:e3:bb:d7:f0:d3:9c:94:8d
    Fingerprint (SHA-256):
        67:56:13:CB:3D:95:94:83:EC:8A:84:BE:8E:5D:FD:E0:C4:18:13:37:DC:21:99:CB:E0:50:A6:36:D7:20:5E:6D
    Fingerprint (SHA1):
        71:DD:FB:68:C1:1D:B3:26:9C:CB:5B:99:5F:42:A0:F5:36:B4:43:A6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10954: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123158 (0x1e67dc96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:32:42 2017
            Not After : Tue May 10 12:32:42 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    97:d2:f9:a8:05:5c:e2:54:8f:a4:a0:c3:de:2a:d9:8a:
                    52:03:e4:92:e0:33:73:02:44:0d:1b:32:b9:af:9a:f9:
                    15:ea:c7:c1:4e:7a:8b:23:96:e6:ce:33:5f:09:63:2f:
                    5b:4c:de:a6:1a:91:e0:e5:2b:15:ad:ed:d7:f7:3c:fd:
                    79:ca:d7:01:3e:02:ca:51:87:cc:2a:00:c3:c1:16:a1:
                    9b:d9:d4:09:d2:10:ea:0f:93:5a:7a:5b:8c:b9:76:a7:
                    fa:7c:89:a6:5c:21:ae:ae:b3:a5:c7:79:ab:f7:22:38:
                    2b:db:1c:df:95:da:65:12:e9:ff:55:c8:9f:24:ce:d7:
                    2f:2d:ae:91:7e:74:00:d2:f9:c6:57:fc:cc:b8:d1:e1:
                    1d:10:87:f8:94:35:15:46:12:27:f4:ff:76:66:46:e6:
                    d1:93:b9:02:a9:5a:b7:de:78:36:85:fc:65:0e:30:d2:
                    c6:10:9f:01:a5:45:32:7d:98:e6:8b:bf:10:73:39:ca:
                    17:24:ac:f8:da:60:b6:6f:c4:64:33:a5:98:11:21:a7:
                    74:71:e1:98:40:0b:55:78:4e:e4:71:dd:88:2c:6c:85:
                    50:c8:1c:ce:d3:92:ad:2d:7e:a9:cf:cb:9d:a2:42:7c:
                    1e:d1:ee:de:3c:ed:c9:cb:54:7a:4d:0a:a5:91:bc:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:1e:de:84:7f:ae:3d:81:84:53:ae:8f:c3:b1:16:57:
        b0:7a:54:1d:56:db:5d:10:7d:4a:9e:b3:80:ff:2b:7a:
        5d:e3:60:ef:84:d9:8f:6b:8e:d1:13:bd:e5:75:21:15:
        43:ce:89:f0:d6:ee:81:1f:70:27:ac:e9:ae:db:8d:13:
        85:37:bf:a2:c7:c3:6f:3d:35:0a:08:9d:f7:ff:f0:18:
        c5:a7:70:81:ed:07:03:85:e4:f9:da:45:a9:a8:76:e5:
        48:ec:d3:cc:45:1b:b9:ba:88:02:a4:6c:77:55:88:c4:
        b4:b3:3a:bd:84:11:f3:bf:b4:2a:4d:a9:74:87:a1:88:
        d0:b5:e2:87:c6:c7:1c:38:4a:4a:3f:5f:b2:d3:74:8d:
        de:66:d0:24:eb:1b:47:fb:96:e8:11:55:f1:aa:08:dc:
        5b:33:79:47:70:9c:ea:7e:f5:18:5f:97:de:67:68:bc:
        6b:98:03:84:43:c9:6c:7e:9d:ce:6f:96:43:42:d6:9f:
        d9:4d:3e:26:02:ae:2d:2f:b6:d7:7c:42:9b:31:e4:6d:
        18:c8:f3:04:f0:b7:4f:8a:5e:ef:7d:05:f6:ea:41:0e:
        ba:af:3c:41:ff:56:91:69:89:28:e0:c2:c3:f0:46:c4:
        be:d9:fb:57:e4:33:13:ca:55:ca:bc:71:c5:3e:b4:b7
    Fingerprint (SHA-256):
        36:A9:75:3D:37:DB:80:FC:00:7D:49:80:33:5E:DF:9A:C5:C8:27:80:63:37:9C:43:53:F2:C7:7E:9D:9B:33:EC
    Fingerprint (SHA1):
        7D:51:CD:B0:8C:A4:6A:8E:F0:38:3D:E9:1A:2F:D1:42:7F:B3:C7:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10955: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123159 (0x1e67dc97)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:32:44 2017
            Not After : Tue May 10 12:32:44 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:c4:96:7e:c5:aa:b2:11:33:32:b3:54:7b:fe:33:57:
                    9b:d9:11:48:24:12:21:95:e1:92:3d:16:1b:e8:1c:f4:
                    ba:35:df:dd:6d:cc:e7:a4:39:e5:6b:31:81:b4:f4:bf:
                    7a:32:bb:79:e8:84:0c:c9:7c:fd:ac:44:03:48:94:ca:
                    02:32:4b:0a:89:dd:24:42:fd:ac:e7:97:e4:75:8f:dd:
                    f0:b3:95:a0:ca:f7:96:21:49:b2:bc:b5:d4:4d:fa:59:
                    43:9c:81:3c:c5:c9:e6:71:d7:e7:e6:7b:90:04:b0:bc:
                    59:79:48:f2:a0:87:94:42:ff:f6:fa:1b:cd:6f:13:80:
                    21:b7:4a:0c:a2:1f:ad:b8:e1:c9:63:c4:af:f8:ea:22:
                    1d:cc:9f:cd:69:0b:3e:49:7b:3a:ba:60:39:7d:54:ae:
                    fe:43:7d:c4:24:35:fd:55:f0:9d:3e:3a:96:d0:2f:ba:
                    27:66:9d:a9:5b:70:c3:e6:bc:29:e5:be:2a:0e:cf:ac:
                    ba:47:c0:68:0a:df:90:24:41:6b:b9:dc:e6:48:0b:ad:
                    dd:a5:7e:1f:23:85:1e:c2:1c:08:2a:fe:a0:5d:82:33:
                    94:c3:56:ca:b7:2c:1a:fe:38:e7:25:9e:49:5a:51:74:
                    51:1e:24:76:ef:45:f7:5e:34:7d:a7:07:5c:b0:00:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:af:63:5e:a7:10:f6:6a:42:56:dc:ac:a5:ca:ba:ab:
        e5:76:38:47:39:56:01:b1:fe:8e:44:f2:97:0f:8c:1c:
        2a:e7:cb:cd:11:83:af:8e:25:c8:a9:8f:d6:59:7e:d0:
        76:86:2d:68:76:3f:8b:8e:20:c9:8b:3c:41:96:9d:13:
        8b:58:1c:be:16:c2:aa:95:76:71:75:c7:af:95:f6:48:
        61:ba:b2:bd:2e:a1:63:9f:5d:41:8d:0b:b2:ed:0e:7d:
        2e:5a:25:f2:10:7e:44:bc:42:72:89:48:c8:e5:e9:76:
        44:db:9f:63:d0:45:cd:4b:06:ec:5c:d6:b9:61:91:6a:
        7b:5a:1d:a0:82:1e:6e:49:a1:4e:74:89:e9:50:db:e1:
        06:f8:93:25:d3:5b:4f:ea:a9:74:59:2a:ee:78:96:c2:
        cb:c2:bf:88:66:19:2f:1d:bc:46:2d:9a:67:ae:3a:45:
        48:3e:95:6a:da:b1:31:f0:c1:4c:35:01:a1:39:d1:63:
        e3:28:97:51:80:80:93:6a:55:42:6a:01:61:c7:65:fd:
        c5:21:4f:1f:0b:e4:60:b6:fe:7d:ec:ff:fd:e5:45:1a:
        db:19:61:13:54:72:b5:33:f0:c2:f5:05:df:ee:2f:bf:
        51:a6:b7:75:b4:78:6e:9b:e4:ea:4a:9e:bd:27:ff:5f
    Fingerprint (SHA-256):
        5D:DE:79:B3:BA:BC:5D:CE:4E:8E:E7:4F:EB:37:4D:9A:F1:BC:DE:A7:FF:CE:61:72:2D:66:82:ED:BE:D0:99:AB
    Fingerprint (SHA1):
        F9:A2:19:90:A1:D1:83:21:BE:5D:CB:F3:D8:20:73:59:FF:95:54:06
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10956: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123160 (0x1e67dc98)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:32:44 2017
            Not After : Tue May 10 12:32:44 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:bb:7f:43:22:0e:58:c8:2e:56:51:dc:68:72:d1:13:
                    74:20:48:6e:87:9a:65:6d:26:5c:a5:da:49:04:52:4b:
                    5f:39:e0:ca:00:9b:14:c5:21:93:98:24:37:f4:6e:78:
                    53:ff:c7:60:08:24:bf:c5:48:93:9f:8d:98:46:53:fb:
                    dc:70:ea:48:46:cc:05:97:f3:fe:f5:05:55:a2:7f:f9:
                    c9:16:db:67:37:b9:82:76:2a:45:9f:4a:99:a3:e1:5c:
                    68:5c:01:42:78:15:39:bc:21:ed:b3:41:cd:f2:b5:b7:
                    2c:c2:b0:10:7f:19:4b:d6:70:b6:b1:99:bc:08:89:c6:
                    cb:7a:14:31:e2:79:30:08:5d:87:d3:48:05:8d:43:cb:
                    fb:96:cf:8d:ca:fc:f5:dd:9e:2a:f4:cf:09:8f:a1:09:
                    4d:30:b9:f4:c9:a0:d0:8d:6d:1a:cd:0b:35:20:c5:d9:
                    1d:4f:a3:70:5c:f1:63:0d:e6:66:9e:08:65:8f:69:ec:
                    84:53:10:86:4e:79:bb:a2:d0:f7:33:cb:80:a9:29:7b:
                    b9:94:af:e4:eb:38:e5:72:17:6b:18:c7:3e:de:c8:03:
                    af:ab:4c:7a:9b:9c:21:20:f5:cf:b0:0a:43:22:c6:d9:
                    2e:45:92:c7:a4:50:53:76:5b:85:17:3b:41:3e:ee:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:01:38:ac:b2:5d:03:75:69:09:de:24:c0:57:92:c8:
        69:03:14:89:48:68:05:b5:45:46:c0:de:bc:e2:4a:bd:
        8c:e1:23:03:a9:08:f1:2b:08:be:22:f2:ce:32:29:03:
        93:17:83:c2:da:ee:90:db:60:b9:99:8e:69:97:f0:54:
        b6:6f:b7:bd:54:38:2d:e3:23:65:a3:ea:0d:ea:f8:cb:
        d6:26:0e:4b:ec:53:b3:89:6b:83:7d:2f:7b:a2:a3:7f:
        de:89:76:3f:8d:e4:4b:c4:7d:0f:21:cc:65:6e:05:17:
        5a:06:38:48:46:d0:e4:d5:26:7b:90:d5:a9:6a:be:85:
        2c:24:4a:95:ad:0e:84:45:06:2a:21:96:02:2b:53:cd:
        79:5e:2a:6f:34:d1:d4:f8:87:89:44:d4:a2:3a:41:5b:
        5a:8f:7b:13:ab:a5:8f:d2:9c:f3:b9:c6:6e:1b:98:15:
        2f:01:06:a5:ca:78:13:eb:fe:24:67:48:1c:4b:68:f4:
        f6:db:f6:cb:4f:27:26:4b:bd:a5:53:52:c9:25:75:8c:
        8c:a7:79:46:e5:e7:27:1b:5b:e6:f6:14:7d:35:3d:c3:
        4a:2f:ea:ce:74:5f:94:43:76:d4:7a:32:8b:e9:ac:3d:
        22:76:31:f1:ff:f3:fb:b9:c7:65:e7:c0:0b:56:95:3d
    Fingerprint (SHA-256):
        8B:42:FF:B7:3C:80:1F:56:53:A0:B3:94:89:3E:C8:2C:8C:CB:58:B4:42:73:B2:17:CD:FA:5E:0A:97:0B:42:E7
    Fingerprint (SHA1):
        36:54:67:EA:6D:EC:5E:B5:4B:68:93:02:E3:9F:31:97:38:E2:04:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10957: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123161 (0x1e67dc99)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:32:45 2017
            Not After : Tue May 10 12:32:45 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:1a:98:a7:77:03:56:52:71:f6:aa:36:b9:58:ab:dc:
                    2c:70:a6:fc:f8:c2:d1:c4:4f:1a:7d:08:9d:31:db:3d:
                    c0:ad:aa:25:05:5a:ce:e0:88:08:3a:fb:8e:09:0b:81:
                    b7:6e:e1:3d:3f:90:69:20:51:ef:65:db:24:2a:bd:ab:
                    ba:74:60:b9:5b:c6:ff:fd:a5:c1:15:72:a0:2e:4c:29:
                    3a:f0:bd:88:7a:ed:16:de:ba:47:d2:a3:81:44:d7:27:
                    47:31:4f:e9:cd:5b:cc:62:08:3d:e3:a1:27:9c:2e:2d:
                    7d:94:aa:3c:63:74:1d:c0:24:5a:4a:00:fc:17:19:c5:
                    fe:b2:da:dc:e5:d8:ee:fd:0d:7c:2f:9b:a8:64:6d:85:
                    a7:f3:55:84:65:38:ba:14:5b:0f:5e:cc:0f:a6:c4:83:
                    fc:fc:db:2e:39:29:c1:21:82:91:78:4c:90:82:25:5b:
                    0d:fe:1b:56:0d:80:64:dd:35:e7:8d:db:4a:13:cf:97:
                    c1:e9:68:71:2c:90:58:e8:3a:13:88:b6:22:50:8b:46:
                    fa:24:ee:aa:e3:62:35:33:d2:8d:a5:08:9f:8f:57:06:
                    0e:f3:76:3d:3d:f3:5a:e7:b9:4b:0e:b2:a3:fa:84:b4:
                    de:34:e7:81:9b:65:1e:90:62:d2:75:8c:02:5e:1e:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:20:35:05:7a:d8:dc:1f:15:ec:b1:8c:90:29:fa:a5:
        b4:39:9c:b5:d8:4d:18:5f:d9:c3:b6:ce:67:5e:e1:0b:
        92:74:cf:71:fa:24:bd:98:c6:a3:85:91:91:87:b9:4d:
        f6:08:6d:fc:5b:df:91:d8:96:1b:71:56:0a:8f:8c:a2:
        e5:f9:8b:27:1b:b2:f5:47:d6:9e:19:ab:42:11:f8:ad:
        7f:03:66:02:3c:e7:d7:22:18:cc:77:ce:65:d8:c5:61:
        fd:a6:de:02:bf:f0:47:77:8c:95:59:cf:f1:a3:36:34:
        d9:de:e8:29:e3:2f:6c:48:66:40:03:8d:82:f2:c9:ae:
        0e:3c:b7:69:11:6c:ec:a9:38:55:04:5f:80:03:78:a2:
        ca:a8:f4:cb:56:68:39:81:aa:9e:1f:c8:9b:7b:b9:78:
        09:f0:27:d4:df:ca:a8:6d:a2:fb:2d:72:52:d4:34:22:
        89:d6:bd:83:fc:45:95:ee:e9:81:a4:45:e5:57:7a:5a:
        eb:5e:a0:2f:51:11:f7:d6:dc:b3:18:1d:c6:8d:e0:75:
        51:ff:a1:9e:d9:ee:eb:be:fe:c8:d4:40:d0:2f:fa:98:
        d8:fe:ba:07:12:fc:19:2a:c0:7f:8c:9d:5b:6c:22:8f:
        f9:b5:9b:2d:aa:74:58:8e:f7:d4:04:67:eb:43:74:9f
    Fingerprint (SHA-256):
        00:EE:27:DD:08:C9:C8:5B:DC:79:E8:CB:0F:8D:4F:28:E3:6B:2F:B5:8D:E0:89:B1:CE:AA:8B:B0:D6:9D:79:5E
    Fingerprint (SHA1):
        46:3C:4E:87:8D:01:A3:26:E1:4B:A1:B9:64:5D:2A:6F:D1:24:1D:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10958: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123162 (0x1e67dc9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:32:47 2017
            Not After : Tue May 10 12:32:47 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:58:f8:c0:19:76:ce:ef:fa:96:39:44:f2:e9:5a:a6:
                    fd:41:c9:8d:60:0f:48:f9:9e:91:79:dd:e2:c4:19:8c:
                    30:82:08:d3:58:f0:31:16:d6:5a:82:08:5d:94:98:3b:
                    07:26:d0:a5:47:fd:34:98:3d:c7:59:56:7d:7f:07:2a:
                    4a:ff:2a:7a:26:d4:9f:6e:b1:07:4f:f0:04:67:d7:42:
                    33:6e:e1:f4:3d:ed:b3:a4:30:db:28:42:fe:51:b6:54:
                    c8:81:1a:d9:8f:d0:33:69:b6:a9:59:16:62:4f:04:e8:
                    5f:b8:3c:a2:83:ed:80:b8:81:94:d5:9c:5b:15:92:3f:
                    6c:e1:8e:13:3b:ac:d5:1a:de:ad:5c:1e:6d:d4:b7:cf:
                    33:64:1c:a2:28:23:02:3a:6b:0e:90:c7:1e:3b:a3:f8:
                    9b:ec:55:a5:ad:f0:75:bb:1e:f3:9d:ea:39:2c:ec:a9:
                    4a:98:8d:50:12:c5:35:3e:45:14:41:3e:50:1e:f8:7e:
                    6d:2f:0e:77:e1:37:5e:62:16:3c:6e:e5:f8:26:4c:a5:
                    77:91:34:b5:0a:83:aa:46:ac:1f:c1:07:09:da:e6:64:
                    3a:5a:17:b2:fb:13:ae:26:65:78:a1:41:fc:95:d8:0d:
                    da:e4:8a:4b:d8:31:3e:ba:11:cd:60:88:02:59:63:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6f:2b:3e:96:46:eb:f8:5f:5e:f0:f1:bc:92:09:a3:32:
        8a:c4:ec:04:ff:4c:b3:b9:d8:9d:af:2b:be:1c:31:bd:
        00:7b:2c:ad:36:b0:22:72:20:d8:d6:18:fd:d4:02:f1:
        e3:7a:73:74:e0:82:43:47:0d:80:9b:35:f7:eb:66:ee:
        c9:d8:28:64:f6:52:68:98:0a:65:40:4f:eb:9e:90:17:
        ac:63:c0:96:5e:bd:01:c4:8c:b1:b3:2d:98:b5:ac:16:
        81:fc:3f:1e:35:d7:07:51:2e:01:67:57:8d:83:db:07:
        7e:4d:42:79:70:b3:77:5a:f3:3b:58:98:b5:ad:88:a6:
        a1:a9:b7:37:94:47:1a:04:80:0c:2c:bf:ea:b3:05:a3:
        87:a5:07:38:62:5a:ed:1c:e2:31:bc:86:70:1c:d3:27:
        de:ae:08:ce:24:e7:a8:8a:ce:04:2f:99:49:28:51:9e:
        3a:0c:56:8d:cb:c8:bc:a3:f0:90:78:a5:4d:7e:df:2f:
        a1:f9:82:44:c7:79:51:57:4f:3c:01:40:12:20:56:90:
        05:72:b7:8a:f8:8a:5d:e7:6c:d6:fd:fd:51:73:d9:1a:
        5b:d1:6b:a9:98:5a:c9:94:43:aa:91:d2:29:11:44:b0:
        a4:8b:b1:28:bc:36:32:48:58:3b:89:21:e5:f5:ee:ff
    Fingerprint (SHA-256):
        20:34:2C:38:2C:B0:4F:34:B2:D2:FD:D6:36:67:FD:A5:4C:95:B1:CE:96:D5:24:6E:79:A1:42:40:28:C2:AA:93
    Fingerprint (SHA1):
        E6:AD:B3:A4:53:68:C1:E9:C7:78:BE:C5:1C:C3:D5:4A:B7:26:B1:D6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10959: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10960: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123177 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10961: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10962: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10963: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10964: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123178   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10965: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10966: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10967: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10968: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123179   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10969: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10970: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10971: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10972: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510123180   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10973: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10974: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10975: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123177 (0x1e67dca9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:01 2017
            Not After : Tue May 10 12:33:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:86:7e:5f:82:4e:99:d5:66:1e:0e:a6:d9:b3:6d:7d:
                    17:12:78:ef:1e:83:24:16:39:d0:e4:19:5f:3f:28:cb:
                    b6:0d:31:e2:19:64:87:21:8d:07:44:f2:8b:34:4c:ea:
                    33:7f:a1:9c:a3:6b:36:fc:a0:dc:61:80:e4:77:fd:ec:
                    0a:52:4f:87:da:46:08:8d:c4:e3:ad:fd:dc:41:cb:cd:
                    9b:87:46:43:81:71:99:9e:00:75:05:e7:f3:98:c9:9c:
                    cb:80:2b:c3:b4:89:2d:4f:fa:3b:1c:b2:99:69:5b:d4:
                    14:07:d8:d1:5d:e3:6a:62:6a:93:2a:02:a9:1c:05:ca:
                    16:ac:8f:19:fe:17:72:25:ff:71:1c:15:ac:60:4c:90:
                    4d:e5:2f:99:62:a2:48:5f:50:14:b9:a5:f7:35:23:6a:
                    0b:2d:05:d1:aa:8c:11:4b:23:ac:5c:ca:07:83:99:2b:
                    29:ae:28:e5:c4:72:12:d1:2b:f2:4c:86:1a:52:a6:c6:
                    62:30:82:62:a5:f6:1e:6c:02:b3:d5:9e:0d:55:fb:3c:
                    a6:b9:b4:0a:35:d9:f1:ff:e6:e6:b6:bc:fe:fd:2d:2d:
                    96:7d:cf:2c:bb:08:af:4c:c5:35:f6:1b:a0:7a:68:89:
                    1d:1c:f8:bf:63:f5:21:65:1f:60:78:b8:97:b6:dc:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:8b:e4:0a:c2:25:41:e2:90:70:4c:43:8a:a6:bd:54:
        67:a7:13:c4:fb:e8:d4:b2:8b:a0:93:6d:92:62:00:ab:
        9f:db:fb:a5:18:15:44:26:e5:d9:bb:01:3d:a4:8d:d5:
        d5:9e:ab:f4:67:bf:3f:e5:25:eb:02:2e:52:ed:f3:0d:
        65:ea:65:b0:6b:7b:90:37:b9:de:e5:a1:75:fb:dd:d7:
        a6:b5:0b:0c:c5:96:9d:aa:7c:01:22:1c:13:d8:0e:9a:
        d1:b0:71:09:93:90:59:b6:c6:38:7a:b2:f5:d2:27:17:
        37:69:af:45:de:11:05:d4:32:4b:a6:17:74:38:e4:76:
        53:98:58:87:23:ff:d0:7c:a2:e3:3e:e6:43:48:e0:0c:
        24:7e:5a:3d:29:03:8f:aa:17:da:7e:d0:de:c5:b1:b6:
        80:1e:42:29:28:74:f0:40:f7:80:e3:11:2d:bf:32:fa:
        48:68:ce:78:fe:20:8e:6c:53:ad:bd:a8:07:b5:7b:8a:
        94:c3:18:24:42:c5:12:64:c9:15:29:e9:cf:7b:98:a4:
        96:62:2c:76:db:24:d2:af:5f:df:99:9a:a5:66:00:6e:
        6a:45:60:54:d5:b1:e9:e5:6c:1b:98:ee:c2:a8:89:1e:
        39:e2:40:a8:1f:dd:17:14:1c:22:98:ea:53:e8:b8:f3
    Fingerprint (SHA-256):
        13:F7:71:36:86:E1:0C:62:D2:6D:C3:01:F1:06:A3:D2:40:D2:C0:EB:7A:7B:0F:0A:2C:04:B0:EE:3C:93:47:EF
    Fingerprint (SHA1):
        80:0C:6F:E0:26:79:1A:B1:73:81:AE:84:6D:E0:9A:7E:78:A6:09:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10976: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10977: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123178 (0x1e67dcaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:03 2017
            Not After : Tue May 10 12:33:03 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:ae:2e:eb:e6:bc:bd:2d:9a:18:91:30:b4:d9:18:01:
                    b4:c7:25:83:4c:2d:88:93:a4:43:3f:23:82:2b:14:42:
                    bc:d6:f4:3f:0c:d3:c0:07:68:d4:cf:83:08:57:0e:8d:
                    af:95:52:a4:45:c8:8d:94:68:35:55:3c:71:62:0a:33:
                    eb:e0:8e:af:9a:2f:62:58:46:40:de:06:87:5e:62:0c:
                    36:dc:e5:a4:51:41:d9:e7:b4:02:dd:f9:be:d7:7d:dc:
                    0f:a6:49:d2:a3:9a:d6:b1:3a:1b:ca:16:77:a5:ce:b4:
                    5b:08:82:2c:bb:f4:83:cf:61:29:41:99:f6:83:85:ef:
                    9e:44:25:41:3c:2a:ba:72:88:a4:d7:a2:72:77:8b:c2:
                    b6:f7:1b:3c:e2:a4:27:a3:f3:9e:41:4b:2c:ff:6d:53:
                    9e:9c:38:a4:19:a2:dc:b9:f9:e1:a5:ab:6a:61:7c:72:
                    37:3c:3d:66:d0:b1:7a:08:47:4f:b2:4a:79:0a:22:40:
                    64:8a:c1:59:55:bb:df:d3:db:f7:81:81:90:e1:39:06:
                    be:50:7a:fd:f0:e1:18:31:4f:cd:04:c5:c0:69:55:f1:
                    55:db:d1:84:64:00:a9:9d:d4:82:5b:5a:df:ad:30:d1:
                    bc:67:cc:4a:5d:8f:7c:c0:d0:31:c8:52:be:17:80:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:40:ad:59:46:b1:8d:85:2d:f2:1b:88:9f:84:03:68:
        67:fc:8d:02:c0:eb:41:eb:3c:63:b6:b0:08:e8:18:eb:
        56:d1:1a:00:28:47:e9:ad:f7:b4:d9:31:32:bd:da:e9:
        f8:57:12:e7:1a:50:3a:2a:29:d2:24:01:4f:6f:ff:f5:
        13:31:72:a2:5d:f2:7a:91:31:95:63:4d:f6:8e:cb:82:
        ba:8b:19:56:dc:51:a6:62:ab:e5:c8:a6:be:a8:2d:39:
        31:7b:50:b4:72:30:63:87:a5:2b:0b:d0:57:04:ae:dc:
        02:b6:3b:21:27:eb:13:e1:4a:6d:84:51:6a:b7:88:7f:
        60:f7:7c:8c:ea:96:ea:d3:6b:81:09:d8:c6:ce:50:5a:
        c7:52:d9:83:22:33:8e:a1:f4:50:cc:62:9d:e1:08:84:
        dc:54:16:f0:92:59:7d:d5:e0:84:52:26:4a:a7:39:1a:
        5a:49:68:6c:e3:b8:36:51:3f:24:8c:9c:06:fd:10:c2:
        9a:41:cb:5a:67:3d:4e:65:63:40:15:2c:b0:4a:77:4d:
        40:a9:31:6b:5e:9d:ff:a2:e1:f4:7d:fe:92:ae:7b:ba:
        02:43:c3:03:3e:f1:bc:67:fd:5b:63:4d:2e:bc:da:9b:
        4c:a5:64:49:4d:6a:20:49:e9:48:0a:01:c6:7c:8f:83
    Fingerprint (SHA-256):
        21:09:60:EF:78:08:1F:03:39:88:87:FC:9B:51:9F:3C:64:38:5B:54:96:D5:4C:2D:7C:D1:1C:F8:DE:C3:9C:6D
    Fingerprint (SHA1):
        EC:BF:F3:61:46:18:60:EB:CC:49:15:45:D7:5F:E3:A6:23:71:8D:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10978: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10979: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123179 (0x1e67dcab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:33:04 2017
            Not After : Tue May 10 12:33:04 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:74:ea:c2:03:8a:b0:67:bf:72:9e:ac:d1:3e:b9:26:
                    5d:4b:93:73:61:6e:9d:5d:a2:c6:a6:ec:2b:9d:42:0b:
                    ac:89:f9:51:3b:11:3e:3d:d9:1f:ad:e2:2f:50:e3:3b:
                    c4:af:25:2c:73:c1:e3:c0:85:f6:e9:9a:fc:f3:66:81:
                    ec:ea:be:41:8c:38:15:8e:af:0b:29:15:c5:cf:8a:7d:
                    80:44:ba:cd:c9:e3:b7:3f:c2:a1:91:46:d9:c3:bf:82:
                    a7:99:64:e8:b6:1b:8a:5c:d5:99:e3:e4:7d:39:63:81:
                    8e:1e:d1:9b:fc:a1:08:73:c5:38:11:63:75:e9:5b:ac:
                    a7:5f:b7:7f:fd:e5:cc:11:e3:e7:35:cd:96:3c:d9:19:
                    c9:06:90:55:24:a3:89:ad:9c:08:1b:65:04:c9:8b:b6:
                    79:99:94:b9:4d:e0:cd:f6:cc:47:81:40:0c:0c:5a:29:
                    62:24:7f:ef:36:16:38:69:19:5b:f3:f5:9b:91:08:12:
                    64:54:3f:04:77:a6:9b:da:f3:5e:a2:2b:80:ae:f4:2e:
                    33:ca:6d:9b:ef:16:0f:bd:c1:5d:75:13:a3:f0:8b:8f:
                    2b:0e:c9:c9:64:95:9d:27:a7:0e:e5:83:24:7c:75:44:
                    53:28:28:6f:56:71:f8:2f:81:ef:de:5f:3c:6f:9d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:8f:3a:f7:29:cb:93:b6:b3:98:c1:50:99:d3:96:7c:
        35:20:46:73:b0:68:16:8a:3c:3a:7a:71:50:bb:28:35:
        82:e4:48:d2:f2:04:cd:33:6c:26:45:24:7e:41:61:03:
        b0:ca:f1:76:2e:4a:0e:60:d5:78:9c:95:24:d7:86:83:
        49:5c:91:1e:77:67:25:51:12:53:14:23:e3:50:bd:cb:
        76:4d:12:19:1a:20:cc:96:13:e8:27:71:33:d6:fc:1a:
        ac:ca:46:89:9d:9e:c5:6c:cb:dc:91:e7:62:d9:8f:97:
        eb:33:64:b9:ec:2e:93:aa:e6:f2:c9:22:39:af:91:c5:
        ea:5d:d5:a6:d5:97:05:0a:c7:1c:62:99:7b:63:23:23:
        be:37:85:c9:19:7b:71:7c:64:97:59:ff:90:a8:8b:9c:
        49:67:84:79:55:61:24:13:0b:4d:a1:2c:9d:0a:e8:d6:
        4d:fd:6c:1d:82:7d:54:dd:3d:f0:27:d6:f5:75:8d:a5:
        d4:38:d9:64:5d:80:73:73:dc:f2:f3:bf:a5:04:34:e6:
        cc:27:9d:a2:39:c9:7a:04:00:e5:4d:8f:ca:ee:75:47:
        bb:1a:86:ce:4b:77:02:52:02:9e:cd:18:a7:fa:d5:bb:
        88:20:fb:95:f1:c6:3c:a3:04:8c:c2:66:4e:f1:c4:57
    Fingerprint (SHA-256):
        0F:60:57:7D:AD:F3:D8:4B:F5:E4:8C:AD:39:8B:8C:9D:26:8B:7B:52:80:46:D3:CD:E9:62:82:A3:26:50:22:AF
    Fingerprint (SHA1):
        DD:76:E4:50:59:D6:4D:8F:AC:28:07:18:21:65:92:94:09:94:14:EB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10980: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10981: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10982: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10983: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10984: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123177 (0x1e67dca9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:01 2017
            Not After : Tue May 10 12:33:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:86:7e:5f:82:4e:99:d5:66:1e:0e:a6:d9:b3:6d:7d:
                    17:12:78:ef:1e:83:24:16:39:d0:e4:19:5f:3f:28:cb:
                    b6:0d:31:e2:19:64:87:21:8d:07:44:f2:8b:34:4c:ea:
                    33:7f:a1:9c:a3:6b:36:fc:a0:dc:61:80:e4:77:fd:ec:
                    0a:52:4f:87:da:46:08:8d:c4:e3:ad:fd:dc:41:cb:cd:
                    9b:87:46:43:81:71:99:9e:00:75:05:e7:f3:98:c9:9c:
                    cb:80:2b:c3:b4:89:2d:4f:fa:3b:1c:b2:99:69:5b:d4:
                    14:07:d8:d1:5d:e3:6a:62:6a:93:2a:02:a9:1c:05:ca:
                    16:ac:8f:19:fe:17:72:25:ff:71:1c:15:ac:60:4c:90:
                    4d:e5:2f:99:62:a2:48:5f:50:14:b9:a5:f7:35:23:6a:
                    0b:2d:05:d1:aa:8c:11:4b:23:ac:5c:ca:07:83:99:2b:
                    29:ae:28:e5:c4:72:12:d1:2b:f2:4c:86:1a:52:a6:c6:
                    62:30:82:62:a5:f6:1e:6c:02:b3:d5:9e:0d:55:fb:3c:
                    a6:b9:b4:0a:35:d9:f1:ff:e6:e6:b6:bc:fe:fd:2d:2d:
                    96:7d:cf:2c:bb:08:af:4c:c5:35:f6:1b:a0:7a:68:89:
                    1d:1c:f8:bf:63:f5:21:65:1f:60:78:b8:97:b6:dc:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8d:8b:e4:0a:c2:25:41:e2:90:70:4c:43:8a:a6:bd:54:
        67:a7:13:c4:fb:e8:d4:b2:8b:a0:93:6d:92:62:00:ab:
        9f:db:fb:a5:18:15:44:26:e5:d9:bb:01:3d:a4:8d:d5:
        d5:9e:ab:f4:67:bf:3f:e5:25:eb:02:2e:52:ed:f3:0d:
        65:ea:65:b0:6b:7b:90:37:b9:de:e5:a1:75:fb:dd:d7:
        a6:b5:0b:0c:c5:96:9d:aa:7c:01:22:1c:13:d8:0e:9a:
        d1:b0:71:09:93:90:59:b6:c6:38:7a:b2:f5:d2:27:17:
        37:69:af:45:de:11:05:d4:32:4b:a6:17:74:38:e4:76:
        53:98:58:87:23:ff:d0:7c:a2:e3:3e:e6:43:48:e0:0c:
        24:7e:5a:3d:29:03:8f:aa:17:da:7e:d0:de:c5:b1:b6:
        80:1e:42:29:28:74:f0:40:f7:80:e3:11:2d:bf:32:fa:
        48:68:ce:78:fe:20:8e:6c:53:ad:bd:a8:07:b5:7b:8a:
        94:c3:18:24:42:c5:12:64:c9:15:29:e9:cf:7b:98:a4:
        96:62:2c:76:db:24:d2:af:5f:df:99:9a:a5:66:00:6e:
        6a:45:60:54:d5:b1:e9:e5:6c:1b:98:ee:c2:a8:89:1e:
        39:e2:40:a8:1f:dd:17:14:1c:22:98:ea:53:e8:b8:f3
    Fingerprint (SHA-256):
        13:F7:71:36:86:E1:0C:62:D2:6D:C3:01:F1:06:A3:D2:40:D2:C0:EB:7A:7B:0F:0A:2C:04:B0:EE:3C:93:47:EF
    Fingerprint (SHA1):
        80:0C:6F:E0:26:79:1A:B1:73:81:AE:84:6D:E0:9A:7E:78:A6:09:A7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10985: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10986: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123178 (0x1e67dcaa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:03 2017
            Not After : Tue May 10 12:33:03 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:ae:2e:eb:e6:bc:bd:2d:9a:18:91:30:b4:d9:18:01:
                    b4:c7:25:83:4c:2d:88:93:a4:43:3f:23:82:2b:14:42:
                    bc:d6:f4:3f:0c:d3:c0:07:68:d4:cf:83:08:57:0e:8d:
                    af:95:52:a4:45:c8:8d:94:68:35:55:3c:71:62:0a:33:
                    eb:e0:8e:af:9a:2f:62:58:46:40:de:06:87:5e:62:0c:
                    36:dc:e5:a4:51:41:d9:e7:b4:02:dd:f9:be:d7:7d:dc:
                    0f:a6:49:d2:a3:9a:d6:b1:3a:1b:ca:16:77:a5:ce:b4:
                    5b:08:82:2c:bb:f4:83:cf:61:29:41:99:f6:83:85:ef:
                    9e:44:25:41:3c:2a:ba:72:88:a4:d7:a2:72:77:8b:c2:
                    b6:f7:1b:3c:e2:a4:27:a3:f3:9e:41:4b:2c:ff:6d:53:
                    9e:9c:38:a4:19:a2:dc:b9:f9:e1:a5:ab:6a:61:7c:72:
                    37:3c:3d:66:d0:b1:7a:08:47:4f:b2:4a:79:0a:22:40:
                    64:8a:c1:59:55:bb:df:d3:db:f7:81:81:90:e1:39:06:
                    be:50:7a:fd:f0:e1:18:31:4f:cd:04:c5:c0:69:55:f1:
                    55:db:d1:84:64:00:a9:9d:d4:82:5b:5a:df:ad:30:d1:
                    bc:67:cc:4a:5d:8f:7c:c0:d0:31:c8:52:be:17:80:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:40:ad:59:46:b1:8d:85:2d:f2:1b:88:9f:84:03:68:
        67:fc:8d:02:c0:eb:41:eb:3c:63:b6:b0:08:e8:18:eb:
        56:d1:1a:00:28:47:e9:ad:f7:b4:d9:31:32:bd:da:e9:
        f8:57:12:e7:1a:50:3a:2a:29:d2:24:01:4f:6f:ff:f5:
        13:31:72:a2:5d:f2:7a:91:31:95:63:4d:f6:8e:cb:82:
        ba:8b:19:56:dc:51:a6:62:ab:e5:c8:a6:be:a8:2d:39:
        31:7b:50:b4:72:30:63:87:a5:2b:0b:d0:57:04:ae:dc:
        02:b6:3b:21:27:eb:13:e1:4a:6d:84:51:6a:b7:88:7f:
        60:f7:7c:8c:ea:96:ea:d3:6b:81:09:d8:c6:ce:50:5a:
        c7:52:d9:83:22:33:8e:a1:f4:50:cc:62:9d:e1:08:84:
        dc:54:16:f0:92:59:7d:d5:e0:84:52:26:4a:a7:39:1a:
        5a:49:68:6c:e3:b8:36:51:3f:24:8c:9c:06:fd:10:c2:
        9a:41:cb:5a:67:3d:4e:65:63:40:15:2c:b0:4a:77:4d:
        40:a9:31:6b:5e:9d:ff:a2:e1:f4:7d:fe:92:ae:7b:ba:
        02:43:c3:03:3e:f1:bc:67:fd:5b:63:4d:2e:bc:da:9b:
        4c:a5:64:49:4d:6a:20:49:e9:48:0a:01:c6:7c:8f:83
    Fingerprint (SHA-256):
        21:09:60:EF:78:08:1F:03:39:88:87:FC:9B:51:9F:3C:64:38:5B:54:96:D5:4C:2D:7C:D1:1C:F8:DE:C3:9C:6D
    Fingerprint (SHA1):
        EC:BF:F3:61:46:18:60:EB:CC:49:15:45:D7:5F:E3:A6:23:71:8D:CC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10987: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10988: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123179 (0x1e67dcab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:33:04 2017
            Not After : Tue May 10 12:33:04 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:74:ea:c2:03:8a:b0:67:bf:72:9e:ac:d1:3e:b9:26:
                    5d:4b:93:73:61:6e:9d:5d:a2:c6:a6:ec:2b:9d:42:0b:
                    ac:89:f9:51:3b:11:3e:3d:d9:1f:ad:e2:2f:50:e3:3b:
                    c4:af:25:2c:73:c1:e3:c0:85:f6:e9:9a:fc:f3:66:81:
                    ec:ea:be:41:8c:38:15:8e:af:0b:29:15:c5:cf:8a:7d:
                    80:44:ba:cd:c9:e3:b7:3f:c2:a1:91:46:d9:c3:bf:82:
                    a7:99:64:e8:b6:1b:8a:5c:d5:99:e3:e4:7d:39:63:81:
                    8e:1e:d1:9b:fc:a1:08:73:c5:38:11:63:75:e9:5b:ac:
                    a7:5f:b7:7f:fd:e5:cc:11:e3:e7:35:cd:96:3c:d9:19:
                    c9:06:90:55:24:a3:89:ad:9c:08:1b:65:04:c9:8b:b6:
                    79:99:94:b9:4d:e0:cd:f6:cc:47:81:40:0c:0c:5a:29:
                    62:24:7f:ef:36:16:38:69:19:5b:f3:f5:9b:91:08:12:
                    64:54:3f:04:77:a6:9b:da:f3:5e:a2:2b:80:ae:f4:2e:
                    33:ca:6d:9b:ef:16:0f:bd:c1:5d:75:13:a3:f0:8b:8f:
                    2b:0e:c9:c9:64:95:9d:27:a7:0e:e5:83:24:7c:75:44:
                    53:28:28:6f:56:71:f8:2f:81:ef:de:5f:3c:6f:9d:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:8f:3a:f7:29:cb:93:b6:b3:98:c1:50:99:d3:96:7c:
        35:20:46:73:b0:68:16:8a:3c:3a:7a:71:50:bb:28:35:
        82:e4:48:d2:f2:04:cd:33:6c:26:45:24:7e:41:61:03:
        b0:ca:f1:76:2e:4a:0e:60:d5:78:9c:95:24:d7:86:83:
        49:5c:91:1e:77:67:25:51:12:53:14:23:e3:50:bd:cb:
        76:4d:12:19:1a:20:cc:96:13:e8:27:71:33:d6:fc:1a:
        ac:ca:46:89:9d:9e:c5:6c:cb:dc:91:e7:62:d9:8f:97:
        eb:33:64:b9:ec:2e:93:aa:e6:f2:c9:22:39:af:91:c5:
        ea:5d:d5:a6:d5:97:05:0a:c7:1c:62:99:7b:63:23:23:
        be:37:85:c9:19:7b:71:7c:64:97:59:ff:90:a8:8b:9c:
        49:67:84:79:55:61:24:13:0b:4d:a1:2c:9d:0a:e8:d6:
        4d:fd:6c:1d:82:7d:54:dd:3d:f0:27:d6:f5:75:8d:a5:
        d4:38:d9:64:5d:80:73:73:dc:f2:f3:bf:a5:04:34:e6:
        cc:27:9d:a2:39:c9:7a:04:00:e5:4d:8f:ca:ee:75:47:
        bb:1a:86:ce:4b:77:02:52:02:9e:cd:18:a7:fa:d5:bb:
        88:20:fb:95:f1:c6:3c:a3:04:8c:c2:66:4e:f1:c4:57
    Fingerprint (SHA-256):
        0F:60:57:7D:AD:F3:D8:4B:F5:E4:8C:AD:39:8B:8C:9D:26:8B:7B:52:80:46:D3:CD:E9:62:82:A3:26:50:22:AF
    Fingerprint (SHA1):
        DD:76:E4:50:59:D6:4D:8F:AC:28:07:18:21:65:92:94:09:94:14:EB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10989: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10990: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10991: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123181 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10992: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10993: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10994: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10995: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123182   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10996: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10997: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10998: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10999: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123183   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11000: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11001: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11002: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11003: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510123184   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11004: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11005: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11006: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11007: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510123185   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11008: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11009: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11010: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123181 (0x1e67dcad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:10 2017
            Not After : Tue May 10 12:33:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ed:f6:1c:33:05:7c:90:d9:ce:1a:9a:e5:40:9b:8f:
                    51:bf:71:63:e5:cc:02:42:55:58:0d:3f:33:ed:58:d4:
                    9d:03:69:d0:a8:24:3f:c9:22:aa:17:47:90:7d:01:2c:
                    7a:c7:e7:32:4d:e8:b4:26:c1:6b:1b:24:67:57:42:07:
                    6d:78:98:2f:71:36:ec:c0:5e:cc:fe:66:d3:60:d0:63:
                    fb:0e:8b:71:b9:96:03:52:b4:88:19:6f:22:bb:2d:b7:
                    8c:db:56:5f:15:8b:b4:fb:a2:b8:71:f1:10:1e:d5:35:
                    6d:70:34:7a:fc:9e:85:a9:04:5a:72:4b:83:16:d0:0f:
                    ea:47:5c:2d:d5:38:fb:6f:82:14:be:6e:2b:9c:35:2b:
                    a0:7d:bf:72:25:a1:27:15:cb:66:5e:98:57:05:df:18:
                    8e:5d:a9:2f:39:1f:eb:ab:d5:79:ed:b5:6f:fb:b6:f3:
                    29:df:9d:c6:64:fd:50:bd:9b:40:eb:a2:58:ae:0b:fb:
                    16:80:04:e4:98:64:f8:40:19:3a:ed:64:c7:03:d1:34:
                    95:9c:dc:5e:dd:9e:eb:62:89:88:9f:d8:d4:fb:bd:7f:
                    51:8a:80:5a:cf:c1:22:92:7c:6e:ac:5f:5f:76:c1:73:
                    22:3b:ba:fa:56:ff:11:70:64:98:d7:6f:5b:b8:af:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:5a:b7:f2:cc:00:07:c0:4c:2c:07:12:e4:c4:ee:42:
        3f:d6:8a:b0:46:f0:41:7f:41:b8:bd:5f:29:a5:1e:d3:
        a7:13:e6:80:2b:b2:7a:17:c9:45:72:a0:94:ef:a3:32:
        32:7f:c2:3d:08:da:64:00:e1:dd:35:f8:37:cc:f6:26:
        d1:31:e5:3e:29:57:32:62:69:96:21:5a:7e:7a:08:02:
        fe:81:89:b1:10:73:e5:9d:99:c5:14:29:e5:0c:87:f8:
        fc:ae:dd:47:ae:62:dc:2e:0a:09:c8:4d:0f:8c:be:c9:
        de:8f:ea:40:85:78:19:93:7d:48:8b:93:70:17:7f:be:
        90:f1:18:59:d0:42:36:73:10:5d:63:73:61:77:58:84:
        31:27:b5:51:20:bd:5e:87:01:7e:0a:23:87:50:10:c2:
        64:b8:c0:00:71:89:71:f8:30:77:86:a2:5a:49:b4:1a:
        98:38:94:e9:b2:66:4e:a3:62:95:7f:9f:90:68:3a:dc:
        4d:e5:ac:b8:f4:fa:78:81:71:b8:ea:8e:70:8c:54:a5:
        74:31:f5:d8:7c:14:b7:8c:58:85:60:9a:da:ed:ba:27:
        10:39:7b:c7:fe:be:02:3d:93:9d:56:c9:62:23:ca:e9:
        db:31:f0:c7:60:0e:1e:53:02:42:9e:dd:e0:c3:c4:e0
    Fingerprint (SHA-256):
        91:D2:65:5C:7D:B0:D5:0F:2B:B7:09:D4:37:54:58:D0:17:23:5E:2C:53:F5:EC:E8:76:4D:8D:1B:22:B0:AE:D9
    Fingerprint (SHA1):
        CA:EB:F6:6D:22:4F:08:18:65:53:24:A6:F2:E4:09:F0:54:4F:50:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11011: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11012: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123182 (0x1e67dcae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:12 2017
            Not After : Tue May 10 12:33:12 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:78:9a:96:fa:1d:ac:c1:d2:d5:fa:bf:97:62:6b:1a:
                    ff:1c:96:3e:41:14:b0:6b:25:9a:b5:6c:a5:92:f9:01:
                    b8:11:f7:e1:35:e3:1f:e1:88:9c:69:50:22:97:07:09:
                    c4:ad:cf:63:75:15:96:19:87:97:eb:29:1f:50:99:23:
                    71:a7:63:6d:95:0e:77:b3:0e:e2:2c:0b:85:07:b5:e7:
                    85:f5:40:55:86:a8:6b:e9:ee:56:f1:64:fe:90:1c:ca:
                    09:45:06:1c:a3:80:3e:09:40:5d:61:4c:e3:d8:cf:11:
                    b9:a0:32:37:46:3c:3b:33:d8:81:77:18:61:b3:bf:45:
                    82:92:de:9d:2e:36:ec:ca:5b:62:e7:07:1f:2a:4c:00:
                    54:91:d1:26:1a:10:34:bd:6c:e7:36:94:c1:c5:98:dc:
                    bd:96:28:8c:57:1f:42:52:d7:60:23:a9:97:c6:92:34:
                    ab:09:59:e4:e4:d3:70:80:ca:21:20:70:cc:3a:54:01:
                    56:83:fa:87:a3:86:ee:87:3f:82:4b:85:91:f3:78:e6:
                    77:6d:19:d5:95:fa:85:59:ac:60:72:a9:7a:e4:f9:0c:
                    e1:2b:45:fc:cc:b1:80:f4:ab:cd:f6:fa:57:8c:e9:eb:
                    f4:55:09:ca:c6:e1:3f:ec:74:e3:de:f1:92:5b:05:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:cc:83:d5:49:45:d2:45:fa:3c:c8:5b:0c:73:13:7a:
        13:21:7a:59:7c:26:a5:c3:00:67:13:f8:aa:39:a0:d5:
        d8:d5:71:86:25:43:30:4e:20:7a:7d:cb:eb:0a:32:41:
        cd:44:a4:ad:cb:3f:9a:57:c2:54:94:b2:62:ea:17:57:
        c5:f1:c1:77:73:59:3b:67:d7:de:dc:0c:d3:ca:60:86:
        5b:fa:fc:3c:67:cd:71:d4:c5:24:6c:26:82:f1:e5:39:
        9d:ac:12:45:4f:92:88:f1:84:9a:5a:27:0e:68:0b:6a:
        28:19:b7:75:32:7c:bb:de:e4:f7:1a:5e:aa:91:0b:0b:
        46:60:43:d2:be:51:8c:a6:3e:79:f9:9f:15:1c:59:03:
        06:7e:f6:42:9d:61:ce:9c:be:1c:c3:5a:95:a0:a0:be:
        87:98:cc:46:b7:8c:b2:b9:84:2e:42:0d:ed:9a:60:f5:
        22:a8:6f:c9:0a:1d:01:47:54:da:33:69:09:8e:5c:9b:
        a1:92:ac:73:3f:bd:33:23:a9:4d:d0:cd:40:4f:45:1d:
        9c:4a:ca:ea:85:f6:c4:fd:80:3e:ed:1c:69:13:08:d8:
        e4:e2:a9:3d:50:5b:72:d5:b8:9f:7a:89:97:f3:50:9a:
        3d:b6:d4:98:34:92:a2:86:82:5b:53:c5:af:d1:1d:be
    Fingerprint (SHA-256):
        2C:58:24:03:3E:B1:DC:1A:59:4E:04:8C:2B:03:FA:EA:B6:91:64:C6:B1:16:35:AC:F3:7A:63:AB:C2:50:AF:FA
    Fingerprint (SHA1):
        E4:9B:A7:00:0E:4F:5D:8E:8A:B1:7F:3A:C3:A3:A4:6A:5C:8B:77:CF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11013: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11014: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123183 (0x1e67dcaf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:33:14 2017
            Not After : Tue May 10 12:33:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:58:cc:a0:d0:a7:26:3c:63:22:57:8c:b6:93:55:a8:
                    c2:7a:b4:48:6c:f9:a3:d4:13:fa:9a:7c:7e:c0:17:a8:
                    f7:10:8c:02:f4:c0:87:86:d4:9b:f4:78:c1:29:e4:1d:
                    e1:01:a8:27:aa:7c:03:e2:74:b5:3a:1e:79:9d:02:7c:
                    22:28:ee:ec:bf:7e:0a:8a:5f:ef:f4:21:6b:a7:df:b5:
                    b7:47:57:da:97:71:35:12:c4:1a:ca:e5:84:29:55:30:
                    51:d8:a5:79:84:42:93:49:4b:cd:bf:de:42:d9:26:7b:
                    77:f1:bf:23:d4:e1:45:ca:e2:b0:8d:c6:f3:c8:b1:40:
                    76:77:bb:51:94:87:80:1a:04:f2:08:ce:04:6e:24:5f:
                    39:fb:28:54:99:37:57:f7:04:80:0e:3b:dc:e7:3b:56:
                    39:f8:0c:0e:80:55:85:8c:68:df:cc:6c:c9:fa:53:c8:
                    d9:79:95:f2:fe:9f:ba:2a:5c:bb:5c:5f:4f:b6:1b:0e:
                    47:98:3d:21:56:bf:5d:3b:49:f6:5d:84:a2:65:91:41:
                    40:00:39:79:fe:05:95:e8:a9:c2:88:03:e2:c8:2c:8d:
                    ed:72:05:ce:5a:8a:6e:ca:85:ec:d4:ca:64:37:0a:4f:
                    2c:a0:28:67:74:cb:be:e3:1c:7a:bf:52:4b:b4:16:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:f1:7e:6c:be:d9:17:3a:89:9b:cb:e6:28:19:d2:3f:
        55:bf:04:11:31:db:fc:d2:69:75:24:ae:ae:a3:40:bb:
        22:9c:61:b2:79:62:bc:74:25:d3:23:71:50:56:1a:96:
        6b:58:2f:67:f6:b4:fa:b2:89:cf:ad:45:ae:c0:45:81:
        9d:33:35:fd:5f:80:c7:1e:33:99:00:b6:63:2d:47:f4:
        c6:ee:5a:77:4b:3f:42:a5:82:f5:42:a5:11:a4:1e:e7:
        04:a2:f9:9b:bb:27:1b:6f:fa:11:c2:d8:d7:bb:f3:9f:
        5e:b3:9d:6f:a3:fa:97:f4:8e:fc:79:06:85:20:4f:e3:
        6c:42:91:d0:77:dc:1e:4f:fd:9e:1a:b0:c5:3f:91:cb:
        ef:08:0c:34:7b:56:d4:08:48:cd:14:db:28:63:80:e0:
        81:4e:fb:e2:dd:bf:ee:21:86:ba:49:ae:97:89:98:0c:
        64:01:8e:be:f9:ba:f3:2a:49:14:80:aa:0d:0d:4f:ea:
        c0:5b:ae:4e:20:94:b6:be:74:34:44:5a:ea:8b:4e:83:
        24:e0:2b:c1:17:c7:f6:28:0c:61:6a:8d:ce:e1:b9:6b:
        7f:05:cb:4c:ef:aa:64:6b:03:f8:c0:b8:e4:2f:bd:56:
        e1:63:cc:b2:91:52:4a:c0:04:1d:04:97:d7:ad:ec:73
    Fingerprint (SHA-256):
        3A:6B:1D:04:E6:FA:CB:11:99:93:AF:A4:4C:0E:9F:9E:64:91:FC:86:CA:58:E3:BA:69:F1:53:6A:62:16:C4:C2
    Fingerprint (SHA1):
        53:66:8F:55:AE:C9:33:99:A4:DE:6E:D8:6A:21:25:3F:25:8F:50:76
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11015: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11016: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11017: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11018: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11019: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123181 (0x1e67dcad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:10 2017
            Not After : Tue May 10 12:33:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ed:f6:1c:33:05:7c:90:d9:ce:1a:9a:e5:40:9b:8f:
                    51:bf:71:63:e5:cc:02:42:55:58:0d:3f:33:ed:58:d4:
                    9d:03:69:d0:a8:24:3f:c9:22:aa:17:47:90:7d:01:2c:
                    7a:c7:e7:32:4d:e8:b4:26:c1:6b:1b:24:67:57:42:07:
                    6d:78:98:2f:71:36:ec:c0:5e:cc:fe:66:d3:60:d0:63:
                    fb:0e:8b:71:b9:96:03:52:b4:88:19:6f:22:bb:2d:b7:
                    8c:db:56:5f:15:8b:b4:fb:a2:b8:71:f1:10:1e:d5:35:
                    6d:70:34:7a:fc:9e:85:a9:04:5a:72:4b:83:16:d0:0f:
                    ea:47:5c:2d:d5:38:fb:6f:82:14:be:6e:2b:9c:35:2b:
                    a0:7d:bf:72:25:a1:27:15:cb:66:5e:98:57:05:df:18:
                    8e:5d:a9:2f:39:1f:eb:ab:d5:79:ed:b5:6f:fb:b6:f3:
                    29:df:9d:c6:64:fd:50:bd:9b:40:eb:a2:58:ae:0b:fb:
                    16:80:04:e4:98:64:f8:40:19:3a:ed:64:c7:03:d1:34:
                    95:9c:dc:5e:dd:9e:eb:62:89:88:9f:d8:d4:fb:bd:7f:
                    51:8a:80:5a:cf:c1:22:92:7c:6e:ac:5f:5f:76:c1:73:
                    22:3b:ba:fa:56:ff:11:70:64:98:d7:6f:5b:b8:af:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:5a:b7:f2:cc:00:07:c0:4c:2c:07:12:e4:c4:ee:42:
        3f:d6:8a:b0:46:f0:41:7f:41:b8:bd:5f:29:a5:1e:d3:
        a7:13:e6:80:2b:b2:7a:17:c9:45:72:a0:94:ef:a3:32:
        32:7f:c2:3d:08:da:64:00:e1:dd:35:f8:37:cc:f6:26:
        d1:31:e5:3e:29:57:32:62:69:96:21:5a:7e:7a:08:02:
        fe:81:89:b1:10:73:e5:9d:99:c5:14:29:e5:0c:87:f8:
        fc:ae:dd:47:ae:62:dc:2e:0a:09:c8:4d:0f:8c:be:c9:
        de:8f:ea:40:85:78:19:93:7d:48:8b:93:70:17:7f:be:
        90:f1:18:59:d0:42:36:73:10:5d:63:73:61:77:58:84:
        31:27:b5:51:20:bd:5e:87:01:7e:0a:23:87:50:10:c2:
        64:b8:c0:00:71:89:71:f8:30:77:86:a2:5a:49:b4:1a:
        98:38:94:e9:b2:66:4e:a3:62:95:7f:9f:90:68:3a:dc:
        4d:e5:ac:b8:f4:fa:78:81:71:b8:ea:8e:70:8c:54:a5:
        74:31:f5:d8:7c:14:b7:8c:58:85:60:9a:da:ed:ba:27:
        10:39:7b:c7:fe:be:02:3d:93:9d:56:c9:62:23:ca:e9:
        db:31:f0:c7:60:0e:1e:53:02:42:9e:dd:e0:c3:c4:e0
    Fingerprint (SHA-256):
        91:D2:65:5C:7D:B0:D5:0F:2B:B7:09:D4:37:54:58:D0:17:23:5E:2C:53:F5:EC:E8:76:4D:8D:1B:22:B0:AE:D9
    Fingerprint (SHA1):
        CA:EB:F6:6D:22:4F:08:18:65:53:24:A6:F2:E4:09:F0:54:4F:50:FB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11020: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11021: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123182 (0x1e67dcae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:12 2017
            Not After : Tue May 10 12:33:12 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:78:9a:96:fa:1d:ac:c1:d2:d5:fa:bf:97:62:6b:1a:
                    ff:1c:96:3e:41:14:b0:6b:25:9a:b5:6c:a5:92:f9:01:
                    b8:11:f7:e1:35:e3:1f:e1:88:9c:69:50:22:97:07:09:
                    c4:ad:cf:63:75:15:96:19:87:97:eb:29:1f:50:99:23:
                    71:a7:63:6d:95:0e:77:b3:0e:e2:2c:0b:85:07:b5:e7:
                    85:f5:40:55:86:a8:6b:e9:ee:56:f1:64:fe:90:1c:ca:
                    09:45:06:1c:a3:80:3e:09:40:5d:61:4c:e3:d8:cf:11:
                    b9:a0:32:37:46:3c:3b:33:d8:81:77:18:61:b3:bf:45:
                    82:92:de:9d:2e:36:ec:ca:5b:62:e7:07:1f:2a:4c:00:
                    54:91:d1:26:1a:10:34:bd:6c:e7:36:94:c1:c5:98:dc:
                    bd:96:28:8c:57:1f:42:52:d7:60:23:a9:97:c6:92:34:
                    ab:09:59:e4:e4:d3:70:80:ca:21:20:70:cc:3a:54:01:
                    56:83:fa:87:a3:86:ee:87:3f:82:4b:85:91:f3:78:e6:
                    77:6d:19:d5:95:fa:85:59:ac:60:72:a9:7a:e4:f9:0c:
                    e1:2b:45:fc:cc:b1:80:f4:ab:cd:f6:fa:57:8c:e9:eb:
                    f4:55:09:ca:c6:e1:3f:ec:74:e3:de:f1:92:5b:05:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:cc:83:d5:49:45:d2:45:fa:3c:c8:5b:0c:73:13:7a:
        13:21:7a:59:7c:26:a5:c3:00:67:13:f8:aa:39:a0:d5:
        d8:d5:71:86:25:43:30:4e:20:7a:7d:cb:eb:0a:32:41:
        cd:44:a4:ad:cb:3f:9a:57:c2:54:94:b2:62:ea:17:57:
        c5:f1:c1:77:73:59:3b:67:d7:de:dc:0c:d3:ca:60:86:
        5b:fa:fc:3c:67:cd:71:d4:c5:24:6c:26:82:f1:e5:39:
        9d:ac:12:45:4f:92:88:f1:84:9a:5a:27:0e:68:0b:6a:
        28:19:b7:75:32:7c:bb:de:e4:f7:1a:5e:aa:91:0b:0b:
        46:60:43:d2:be:51:8c:a6:3e:79:f9:9f:15:1c:59:03:
        06:7e:f6:42:9d:61:ce:9c:be:1c:c3:5a:95:a0:a0:be:
        87:98:cc:46:b7:8c:b2:b9:84:2e:42:0d:ed:9a:60:f5:
        22:a8:6f:c9:0a:1d:01:47:54:da:33:69:09:8e:5c:9b:
        a1:92:ac:73:3f:bd:33:23:a9:4d:d0:cd:40:4f:45:1d:
        9c:4a:ca:ea:85:f6:c4:fd:80:3e:ed:1c:69:13:08:d8:
        e4:e2:a9:3d:50:5b:72:d5:b8:9f:7a:89:97:f3:50:9a:
        3d:b6:d4:98:34:92:a2:86:82:5b:53:c5:af:d1:1d:be
    Fingerprint (SHA-256):
        2C:58:24:03:3E:B1:DC:1A:59:4E:04:8C:2B:03:FA:EA:B6:91:64:C6:B1:16:35:AC:F3:7A:63:AB:C2:50:AF:FA
    Fingerprint (SHA1):
        E4:9B:A7:00:0E:4F:5D:8E:8A:B1:7F:3A:C3:A3:A4:6A:5C:8B:77:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11022: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11023: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123183 (0x1e67dcaf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:33:14 2017
            Not After : Tue May 10 12:33:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:58:cc:a0:d0:a7:26:3c:63:22:57:8c:b6:93:55:a8:
                    c2:7a:b4:48:6c:f9:a3:d4:13:fa:9a:7c:7e:c0:17:a8:
                    f7:10:8c:02:f4:c0:87:86:d4:9b:f4:78:c1:29:e4:1d:
                    e1:01:a8:27:aa:7c:03:e2:74:b5:3a:1e:79:9d:02:7c:
                    22:28:ee:ec:bf:7e:0a:8a:5f:ef:f4:21:6b:a7:df:b5:
                    b7:47:57:da:97:71:35:12:c4:1a:ca:e5:84:29:55:30:
                    51:d8:a5:79:84:42:93:49:4b:cd:bf:de:42:d9:26:7b:
                    77:f1:bf:23:d4:e1:45:ca:e2:b0:8d:c6:f3:c8:b1:40:
                    76:77:bb:51:94:87:80:1a:04:f2:08:ce:04:6e:24:5f:
                    39:fb:28:54:99:37:57:f7:04:80:0e:3b:dc:e7:3b:56:
                    39:f8:0c:0e:80:55:85:8c:68:df:cc:6c:c9:fa:53:c8:
                    d9:79:95:f2:fe:9f:ba:2a:5c:bb:5c:5f:4f:b6:1b:0e:
                    47:98:3d:21:56:bf:5d:3b:49:f6:5d:84:a2:65:91:41:
                    40:00:39:79:fe:05:95:e8:a9:c2:88:03:e2:c8:2c:8d:
                    ed:72:05:ce:5a:8a:6e:ca:85:ec:d4:ca:64:37:0a:4f:
                    2c:a0:28:67:74:cb:be:e3:1c:7a:bf:52:4b:b4:16:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:f1:7e:6c:be:d9:17:3a:89:9b:cb:e6:28:19:d2:3f:
        55:bf:04:11:31:db:fc:d2:69:75:24:ae:ae:a3:40:bb:
        22:9c:61:b2:79:62:bc:74:25:d3:23:71:50:56:1a:96:
        6b:58:2f:67:f6:b4:fa:b2:89:cf:ad:45:ae:c0:45:81:
        9d:33:35:fd:5f:80:c7:1e:33:99:00:b6:63:2d:47:f4:
        c6:ee:5a:77:4b:3f:42:a5:82:f5:42:a5:11:a4:1e:e7:
        04:a2:f9:9b:bb:27:1b:6f:fa:11:c2:d8:d7:bb:f3:9f:
        5e:b3:9d:6f:a3:fa:97:f4:8e:fc:79:06:85:20:4f:e3:
        6c:42:91:d0:77:dc:1e:4f:fd:9e:1a:b0:c5:3f:91:cb:
        ef:08:0c:34:7b:56:d4:08:48:cd:14:db:28:63:80:e0:
        81:4e:fb:e2:dd:bf:ee:21:86:ba:49:ae:97:89:98:0c:
        64:01:8e:be:f9:ba:f3:2a:49:14:80:aa:0d:0d:4f:ea:
        c0:5b:ae:4e:20:94:b6:be:74:34:44:5a:ea:8b:4e:83:
        24:e0:2b:c1:17:c7:f6:28:0c:61:6a:8d:ce:e1:b9:6b:
        7f:05:cb:4c:ef:aa:64:6b:03:f8:c0:b8:e4:2f:bd:56:
        e1:63:cc:b2:91:52:4a:c0:04:1d:04:97:d7:ad:ec:73
    Fingerprint (SHA-256):
        3A:6B:1D:04:E6:FA:CB:11:99:93:AF:A4:4C:0E:9F:9E:64:91:FC:86:CA:58:E3:BA:69:F1:53:6A:62:16:C4:C2
    Fingerprint (SHA1):
        53:66:8F:55:AE:C9:33:99:A4:DE:6E:D8:6A:21:25:3F:25:8F:50:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11024: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11025: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123181 (0x1e67dcad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:10 2017
            Not After : Tue May 10 12:33:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ed:f6:1c:33:05:7c:90:d9:ce:1a:9a:e5:40:9b:8f:
                    51:bf:71:63:e5:cc:02:42:55:58:0d:3f:33:ed:58:d4:
                    9d:03:69:d0:a8:24:3f:c9:22:aa:17:47:90:7d:01:2c:
                    7a:c7:e7:32:4d:e8:b4:26:c1:6b:1b:24:67:57:42:07:
                    6d:78:98:2f:71:36:ec:c0:5e:cc:fe:66:d3:60:d0:63:
                    fb:0e:8b:71:b9:96:03:52:b4:88:19:6f:22:bb:2d:b7:
                    8c:db:56:5f:15:8b:b4:fb:a2:b8:71:f1:10:1e:d5:35:
                    6d:70:34:7a:fc:9e:85:a9:04:5a:72:4b:83:16:d0:0f:
                    ea:47:5c:2d:d5:38:fb:6f:82:14:be:6e:2b:9c:35:2b:
                    a0:7d:bf:72:25:a1:27:15:cb:66:5e:98:57:05:df:18:
                    8e:5d:a9:2f:39:1f:eb:ab:d5:79:ed:b5:6f:fb:b6:f3:
                    29:df:9d:c6:64:fd:50:bd:9b:40:eb:a2:58:ae:0b:fb:
                    16:80:04:e4:98:64:f8:40:19:3a:ed:64:c7:03:d1:34:
                    95:9c:dc:5e:dd:9e:eb:62:89:88:9f:d8:d4:fb:bd:7f:
                    51:8a:80:5a:cf:c1:22:92:7c:6e:ac:5f:5f:76:c1:73:
                    22:3b:ba:fa:56:ff:11:70:64:98:d7:6f:5b:b8:af:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:5a:b7:f2:cc:00:07:c0:4c:2c:07:12:e4:c4:ee:42:
        3f:d6:8a:b0:46:f0:41:7f:41:b8:bd:5f:29:a5:1e:d3:
        a7:13:e6:80:2b:b2:7a:17:c9:45:72:a0:94:ef:a3:32:
        32:7f:c2:3d:08:da:64:00:e1:dd:35:f8:37:cc:f6:26:
        d1:31:e5:3e:29:57:32:62:69:96:21:5a:7e:7a:08:02:
        fe:81:89:b1:10:73:e5:9d:99:c5:14:29:e5:0c:87:f8:
        fc:ae:dd:47:ae:62:dc:2e:0a:09:c8:4d:0f:8c:be:c9:
        de:8f:ea:40:85:78:19:93:7d:48:8b:93:70:17:7f:be:
        90:f1:18:59:d0:42:36:73:10:5d:63:73:61:77:58:84:
        31:27:b5:51:20:bd:5e:87:01:7e:0a:23:87:50:10:c2:
        64:b8:c0:00:71:89:71:f8:30:77:86:a2:5a:49:b4:1a:
        98:38:94:e9:b2:66:4e:a3:62:95:7f:9f:90:68:3a:dc:
        4d:e5:ac:b8:f4:fa:78:81:71:b8:ea:8e:70:8c:54:a5:
        74:31:f5:d8:7c:14:b7:8c:58:85:60:9a:da:ed:ba:27:
        10:39:7b:c7:fe:be:02:3d:93:9d:56:c9:62:23:ca:e9:
        db:31:f0:c7:60:0e:1e:53:02:42:9e:dd:e0:c3:c4:e0
    Fingerprint (SHA-256):
        91:D2:65:5C:7D:B0:D5:0F:2B:B7:09:D4:37:54:58:D0:17:23:5E:2C:53:F5:EC:E8:76:4D:8D:1B:22:B0:AE:D9
    Fingerprint (SHA1):
        CA:EB:F6:6D:22:4F:08:18:65:53:24:A6:F2:E4:09:F0:54:4F:50:FB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11026: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123181 (0x1e67dcad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:10 2017
            Not After : Tue May 10 12:33:10 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:ed:f6:1c:33:05:7c:90:d9:ce:1a:9a:e5:40:9b:8f:
                    51:bf:71:63:e5:cc:02:42:55:58:0d:3f:33:ed:58:d4:
                    9d:03:69:d0:a8:24:3f:c9:22:aa:17:47:90:7d:01:2c:
                    7a:c7:e7:32:4d:e8:b4:26:c1:6b:1b:24:67:57:42:07:
                    6d:78:98:2f:71:36:ec:c0:5e:cc:fe:66:d3:60:d0:63:
                    fb:0e:8b:71:b9:96:03:52:b4:88:19:6f:22:bb:2d:b7:
                    8c:db:56:5f:15:8b:b4:fb:a2:b8:71:f1:10:1e:d5:35:
                    6d:70:34:7a:fc:9e:85:a9:04:5a:72:4b:83:16:d0:0f:
                    ea:47:5c:2d:d5:38:fb:6f:82:14:be:6e:2b:9c:35:2b:
                    a0:7d:bf:72:25:a1:27:15:cb:66:5e:98:57:05:df:18:
                    8e:5d:a9:2f:39:1f:eb:ab:d5:79:ed:b5:6f:fb:b6:f3:
                    29:df:9d:c6:64:fd:50:bd:9b:40:eb:a2:58:ae:0b:fb:
                    16:80:04:e4:98:64:f8:40:19:3a:ed:64:c7:03:d1:34:
                    95:9c:dc:5e:dd:9e:eb:62:89:88:9f:d8:d4:fb:bd:7f:
                    51:8a:80:5a:cf:c1:22:92:7c:6e:ac:5f:5f:76:c1:73:
                    22:3b:ba:fa:56:ff:11:70:64:98:d7:6f:5b:b8:af:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:5a:b7:f2:cc:00:07:c0:4c:2c:07:12:e4:c4:ee:42:
        3f:d6:8a:b0:46:f0:41:7f:41:b8:bd:5f:29:a5:1e:d3:
        a7:13:e6:80:2b:b2:7a:17:c9:45:72:a0:94:ef:a3:32:
        32:7f:c2:3d:08:da:64:00:e1:dd:35:f8:37:cc:f6:26:
        d1:31:e5:3e:29:57:32:62:69:96:21:5a:7e:7a:08:02:
        fe:81:89:b1:10:73:e5:9d:99:c5:14:29:e5:0c:87:f8:
        fc:ae:dd:47:ae:62:dc:2e:0a:09:c8:4d:0f:8c:be:c9:
        de:8f:ea:40:85:78:19:93:7d:48:8b:93:70:17:7f:be:
        90:f1:18:59:d0:42:36:73:10:5d:63:73:61:77:58:84:
        31:27:b5:51:20:bd:5e:87:01:7e:0a:23:87:50:10:c2:
        64:b8:c0:00:71:89:71:f8:30:77:86:a2:5a:49:b4:1a:
        98:38:94:e9:b2:66:4e:a3:62:95:7f:9f:90:68:3a:dc:
        4d:e5:ac:b8:f4:fa:78:81:71:b8:ea:8e:70:8c:54:a5:
        74:31:f5:d8:7c:14:b7:8c:58:85:60:9a:da:ed:ba:27:
        10:39:7b:c7:fe:be:02:3d:93:9d:56:c9:62:23:ca:e9:
        db:31:f0:c7:60:0e:1e:53:02:42:9e:dd:e0:c3:c4:e0
    Fingerprint (SHA-256):
        91:D2:65:5C:7D:B0:D5:0F:2B:B7:09:D4:37:54:58:D0:17:23:5E:2C:53:F5:EC:E8:76:4D:8D:1B:22:B0:AE:D9
    Fingerprint (SHA1):
        CA:EB:F6:6D:22:4F:08:18:65:53:24:A6:F2:E4:09:F0:54:4F:50:FB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11027: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123182 (0x1e67dcae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:12 2017
            Not After : Tue May 10 12:33:12 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:78:9a:96:fa:1d:ac:c1:d2:d5:fa:bf:97:62:6b:1a:
                    ff:1c:96:3e:41:14:b0:6b:25:9a:b5:6c:a5:92:f9:01:
                    b8:11:f7:e1:35:e3:1f:e1:88:9c:69:50:22:97:07:09:
                    c4:ad:cf:63:75:15:96:19:87:97:eb:29:1f:50:99:23:
                    71:a7:63:6d:95:0e:77:b3:0e:e2:2c:0b:85:07:b5:e7:
                    85:f5:40:55:86:a8:6b:e9:ee:56:f1:64:fe:90:1c:ca:
                    09:45:06:1c:a3:80:3e:09:40:5d:61:4c:e3:d8:cf:11:
                    b9:a0:32:37:46:3c:3b:33:d8:81:77:18:61:b3:bf:45:
                    82:92:de:9d:2e:36:ec:ca:5b:62:e7:07:1f:2a:4c:00:
                    54:91:d1:26:1a:10:34:bd:6c:e7:36:94:c1:c5:98:dc:
                    bd:96:28:8c:57:1f:42:52:d7:60:23:a9:97:c6:92:34:
                    ab:09:59:e4:e4:d3:70:80:ca:21:20:70:cc:3a:54:01:
                    56:83:fa:87:a3:86:ee:87:3f:82:4b:85:91:f3:78:e6:
                    77:6d:19:d5:95:fa:85:59:ac:60:72:a9:7a:e4:f9:0c:
                    e1:2b:45:fc:cc:b1:80:f4:ab:cd:f6:fa:57:8c:e9:eb:
                    f4:55:09:ca:c6:e1:3f:ec:74:e3:de:f1:92:5b:05:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:cc:83:d5:49:45:d2:45:fa:3c:c8:5b:0c:73:13:7a:
        13:21:7a:59:7c:26:a5:c3:00:67:13:f8:aa:39:a0:d5:
        d8:d5:71:86:25:43:30:4e:20:7a:7d:cb:eb:0a:32:41:
        cd:44:a4:ad:cb:3f:9a:57:c2:54:94:b2:62:ea:17:57:
        c5:f1:c1:77:73:59:3b:67:d7:de:dc:0c:d3:ca:60:86:
        5b:fa:fc:3c:67:cd:71:d4:c5:24:6c:26:82:f1:e5:39:
        9d:ac:12:45:4f:92:88:f1:84:9a:5a:27:0e:68:0b:6a:
        28:19:b7:75:32:7c:bb:de:e4:f7:1a:5e:aa:91:0b:0b:
        46:60:43:d2:be:51:8c:a6:3e:79:f9:9f:15:1c:59:03:
        06:7e:f6:42:9d:61:ce:9c:be:1c:c3:5a:95:a0:a0:be:
        87:98:cc:46:b7:8c:b2:b9:84:2e:42:0d:ed:9a:60:f5:
        22:a8:6f:c9:0a:1d:01:47:54:da:33:69:09:8e:5c:9b:
        a1:92:ac:73:3f:bd:33:23:a9:4d:d0:cd:40:4f:45:1d:
        9c:4a:ca:ea:85:f6:c4:fd:80:3e:ed:1c:69:13:08:d8:
        e4:e2:a9:3d:50:5b:72:d5:b8:9f:7a:89:97:f3:50:9a:
        3d:b6:d4:98:34:92:a2:86:82:5b:53:c5:af:d1:1d:be
    Fingerprint (SHA-256):
        2C:58:24:03:3E:B1:DC:1A:59:4E:04:8C:2B:03:FA:EA:B6:91:64:C6:B1:16:35:AC:F3:7A:63:AB:C2:50:AF:FA
    Fingerprint (SHA1):
        E4:9B:A7:00:0E:4F:5D:8E:8A:B1:7F:3A:C3:A3:A4:6A:5C:8B:77:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11028: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123182 (0x1e67dcae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:33:12 2017
            Not After : Tue May 10 12:33:12 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:78:9a:96:fa:1d:ac:c1:d2:d5:fa:bf:97:62:6b:1a:
                    ff:1c:96:3e:41:14:b0:6b:25:9a:b5:6c:a5:92:f9:01:
                    b8:11:f7:e1:35:e3:1f:e1:88:9c:69:50:22:97:07:09:
                    c4:ad:cf:63:75:15:96:19:87:97:eb:29:1f:50:99:23:
                    71:a7:63:6d:95:0e:77:b3:0e:e2:2c:0b:85:07:b5:e7:
                    85:f5:40:55:86:a8:6b:e9:ee:56:f1:64:fe:90:1c:ca:
                    09:45:06:1c:a3:80:3e:09:40:5d:61:4c:e3:d8:cf:11:
                    b9:a0:32:37:46:3c:3b:33:d8:81:77:18:61:b3:bf:45:
                    82:92:de:9d:2e:36:ec:ca:5b:62:e7:07:1f:2a:4c:00:
                    54:91:d1:26:1a:10:34:bd:6c:e7:36:94:c1:c5:98:dc:
                    bd:96:28:8c:57:1f:42:52:d7:60:23:a9:97:c6:92:34:
                    ab:09:59:e4:e4:d3:70:80:ca:21:20:70:cc:3a:54:01:
                    56:83:fa:87:a3:86:ee:87:3f:82:4b:85:91:f3:78:e6:
                    77:6d:19:d5:95:fa:85:59:ac:60:72:a9:7a:e4:f9:0c:
                    e1:2b:45:fc:cc:b1:80:f4:ab:cd:f6:fa:57:8c:e9:eb:
                    f4:55:09:ca:c6:e1:3f:ec:74:e3:de:f1:92:5b:05:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:cc:83:d5:49:45:d2:45:fa:3c:c8:5b:0c:73:13:7a:
        13:21:7a:59:7c:26:a5:c3:00:67:13:f8:aa:39:a0:d5:
        d8:d5:71:86:25:43:30:4e:20:7a:7d:cb:eb:0a:32:41:
        cd:44:a4:ad:cb:3f:9a:57:c2:54:94:b2:62:ea:17:57:
        c5:f1:c1:77:73:59:3b:67:d7:de:dc:0c:d3:ca:60:86:
        5b:fa:fc:3c:67:cd:71:d4:c5:24:6c:26:82:f1:e5:39:
        9d:ac:12:45:4f:92:88:f1:84:9a:5a:27:0e:68:0b:6a:
        28:19:b7:75:32:7c:bb:de:e4:f7:1a:5e:aa:91:0b:0b:
        46:60:43:d2:be:51:8c:a6:3e:79:f9:9f:15:1c:59:03:
        06:7e:f6:42:9d:61:ce:9c:be:1c:c3:5a:95:a0:a0:be:
        87:98:cc:46:b7:8c:b2:b9:84:2e:42:0d:ed:9a:60:f5:
        22:a8:6f:c9:0a:1d:01:47:54:da:33:69:09:8e:5c:9b:
        a1:92:ac:73:3f:bd:33:23:a9:4d:d0:cd:40:4f:45:1d:
        9c:4a:ca:ea:85:f6:c4:fd:80:3e:ed:1c:69:13:08:d8:
        e4:e2:a9:3d:50:5b:72:d5:b8:9f:7a:89:97:f3:50:9a:
        3d:b6:d4:98:34:92:a2:86:82:5b:53:c5:af:d1:1d:be
    Fingerprint (SHA-256):
        2C:58:24:03:3E:B1:DC:1A:59:4E:04:8C:2B:03:FA:EA:B6:91:64:C6:B1:16:35:AC:F3:7A:63:AB:C2:50:AF:FA
    Fingerprint (SHA1):
        E4:9B:A7:00:0E:4F:5D:8E:8A:B1:7F:3A:C3:A3:A4:6A:5C:8B:77:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11029: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123183 (0x1e67dcaf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:33:14 2017
            Not After : Tue May 10 12:33:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:58:cc:a0:d0:a7:26:3c:63:22:57:8c:b6:93:55:a8:
                    c2:7a:b4:48:6c:f9:a3:d4:13:fa:9a:7c:7e:c0:17:a8:
                    f7:10:8c:02:f4:c0:87:86:d4:9b:f4:78:c1:29:e4:1d:
                    e1:01:a8:27:aa:7c:03:e2:74:b5:3a:1e:79:9d:02:7c:
                    22:28:ee:ec:bf:7e:0a:8a:5f:ef:f4:21:6b:a7:df:b5:
                    b7:47:57:da:97:71:35:12:c4:1a:ca:e5:84:29:55:30:
                    51:d8:a5:79:84:42:93:49:4b:cd:bf:de:42:d9:26:7b:
                    77:f1:bf:23:d4:e1:45:ca:e2:b0:8d:c6:f3:c8:b1:40:
                    76:77:bb:51:94:87:80:1a:04:f2:08:ce:04:6e:24:5f:
                    39:fb:28:54:99:37:57:f7:04:80:0e:3b:dc:e7:3b:56:
                    39:f8:0c:0e:80:55:85:8c:68:df:cc:6c:c9:fa:53:c8:
                    d9:79:95:f2:fe:9f:ba:2a:5c:bb:5c:5f:4f:b6:1b:0e:
                    47:98:3d:21:56:bf:5d:3b:49:f6:5d:84:a2:65:91:41:
                    40:00:39:79:fe:05:95:e8:a9:c2:88:03:e2:c8:2c:8d:
                    ed:72:05:ce:5a:8a:6e:ca:85:ec:d4:ca:64:37:0a:4f:
                    2c:a0:28:67:74:cb:be:e3:1c:7a:bf:52:4b:b4:16:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:f1:7e:6c:be:d9:17:3a:89:9b:cb:e6:28:19:d2:3f:
        55:bf:04:11:31:db:fc:d2:69:75:24:ae:ae:a3:40:bb:
        22:9c:61:b2:79:62:bc:74:25:d3:23:71:50:56:1a:96:
        6b:58:2f:67:f6:b4:fa:b2:89:cf:ad:45:ae:c0:45:81:
        9d:33:35:fd:5f:80:c7:1e:33:99:00:b6:63:2d:47:f4:
        c6:ee:5a:77:4b:3f:42:a5:82:f5:42:a5:11:a4:1e:e7:
        04:a2:f9:9b:bb:27:1b:6f:fa:11:c2:d8:d7:bb:f3:9f:
        5e:b3:9d:6f:a3:fa:97:f4:8e:fc:79:06:85:20:4f:e3:
        6c:42:91:d0:77:dc:1e:4f:fd:9e:1a:b0:c5:3f:91:cb:
        ef:08:0c:34:7b:56:d4:08:48:cd:14:db:28:63:80:e0:
        81:4e:fb:e2:dd:bf:ee:21:86:ba:49:ae:97:89:98:0c:
        64:01:8e:be:f9:ba:f3:2a:49:14:80:aa:0d:0d:4f:ea:
        c0:5b:ae:4e:20:94:b6:be:74:34:44:5a:ea:8b:4e:83:
        24:e0:2b:c1:17:c7:f6:28:0c:61:6a:8d:ce:e1:b9:6b:
        7f:05:cb:4c:ef:aa:64:6b:03:f8:c0:b8:e4:2f:bd:56:
        e1:63:cc:b2:91:52:4a:c0:04:1d:04:97:d7:ad:ec:73
    Fingerprint (SHA-256):
        3A:6B:1D:04:E6:FA:CB:11:99:93:AF:A4:4C:0E:9F:9E:64:91:FC:86:CA:58:E3:BA:69:F1:53:6A:62:16:C4:C2
    Fingerprint (SHA1):
        53:66:8F:55:AE:C9:33:99:A4:DE:6E:D8:6A:21:25:3F:25:8F:50:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11030: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123183 (0x1e67dcaf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:33:14 2017
            Not After : Tue May 10 12:33:14 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:58:cc:a0:d0:a7:26:3c:63:22:57:8c:b6:93:55:a8:
                    c2:7a:b4:48:6c:f9:a3:d4:13:fa:9a:7c:7e:c0:17:a8:
                    f7:10:8c:02:f4:c0:87:86:d4:9b:f4:78:c1:29:e4:1d:
                    e1:01:a8:27:aa:7c:03:e2:74:b5:3a:1e:79:9d:02:7c:
                    22:28:ee:ec:bf:7e:0a:8a:5f:ef:f4:21:6b:a7:df:b5:
                    b7:47:57:da:97:71:35:12:c4:1a:ca:e5:84:29:55:30:
                    51:d8:a5:79:84:42:93:49:4b:cd:bf:de:42:d9:26:7b:
                    77:f1:bf:23:d4:e1:45:ca:e2:b0:8d:c6:f3:c8:b1:40:
                    76:77:bb:51:94:87:80:1a:04:f2:08:ce:04:6e:24:5f:
                    39:fb:28:54:99:37:57:f7:04:80:0e:3b:dc:e7:3b:56:
                    39:f8:0c:0e:80:55:85:8c:68:df:cc:6c:c9:fa:53:c8:
                    d9:79:95:f2:fe:9f:ba:2a:5c:bb:5c:5f:4f:b6:1b:0e:
                    47:98:3d:21:56:bf:5d:3b:49:f6:5d:84:a2:65:91:41:
                    40:00:39:79:fe:05:95:e8:a9:c2:88:03:e2:c8:2c:8d:
                    ed:72:05:ce:5a:8a:6e:ca:85:ec:d4:ca:64:37:0a:4f:
                    2c:a0:28:67:74:cb:be:e3:1c:7a:bf:52:4b:b4:16:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:f1:7e:6c:be:d9:17:3a:89:9b:cb:e6:28:19:d2:3f:
        55:bf:04:11:31:db:fc:d2:69:75:24:ae:ae:a3:40:bb:
        22:9c:61:b2:79:62:bc:74:25:d3:23:71:50:56:1a:96:
        6b:58:2f:67:f6:b4:fa:b2:89:cf:ad:45:ae:c0:45:81:
        9d:33:35:fd:5f:80:c7:1e:33:99:00:b6:63:2d:47:f4:
        c6:ee:5a:77:4b:3f:42:a5:82:f5:42:a5:11:a4:1e:e7:
        04:a2:f9:9b:bb:27:1b:6f:fa:11:c2:d8:d7:bb:f3:9f:
        5e:b3:9d:6f:a3:fa:97:f4:8e:fc:79:06:85:20:4f:e3:
        6c:42:91:d0:77:dc:1e:4f:fd:9e:1a:b0:c5:3f:91:cb:
        ef:08:0c:34:7b:56:d4:08:48:cd:14:db:28:63:80:e0:
        81:4e:fb:e2:dd:bf:ee:21:86:ba:49:ae:97:89:98:0c:
        64:01:8e:be:f9:ba:f3:2a:49:14:80:aa:0d:0d:4f:ea:
        c0:5b:ae:4e:20:94:b6:be:74:34:44:5a:ea:8b:4e:83:
        24:e0:2b:c1:17:c7:f6:28:0c:61:6a:8d:ce:e1:b9:6b:
        7f:05:cb:4c:ef:aa:64:6b:03:f8:c0:b8:e4:2f:bd:56:
        e1:63:cc:b2:91:52:4a:c0:04:1d:04:97:d7:ad:ec:73
    Fingerprint (SHA-256):
        3A:6B:1D:04:E6:FA:CB:11:99:93:AF:A4:4C:0E:9F:9E:64:91:FC:86:CA:58:E3:BA:69:F1:53:6A:62:16:C4:C2
    Fingerprint (SHA1):
        53:66:8F:55:AE:C9:33:99:A4:DE:6E:D8:6A:21:25:3F:25:8F:50:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11031: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11032: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123186 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11033: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11034: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11035: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11036: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510123187   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11037: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11038: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11039: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11040: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123188   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11041: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11042: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11043: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11044: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510123189   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11045: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11046: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11047: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11048: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510123190   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11049: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11050: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11051: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11052: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510123191   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11053: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11054: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11055: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11056: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510123192   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11057: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11058: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11059: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11060: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11061: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11062: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11063: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123186 (0x1e67dcb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:24 2017
            Not After : Tue May 10 12:33:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:b6:29:53:b4:d4:1a:ba:35:7a:71:ba:39:e4:e5:03:
                    73:39:5a:0d:2a:c4:ed:37:38:2e:40:49:b1:ce:ee:4f:
                    b0:36:88:ce:ae:3c:13:d6:94:0c:f2:28:b2:b5:f9:5b:
                    89:8b:38:58:16:6f:94:48:ba:8d:65:46:32:b5:bb:41:
                    54:f8:78:b3:4e:9c:77:fa:ab:44:87:71:74:c4:f2:26:
                    aa:46:bc:a1:e3:e6:ab:32:11:4d:b0:c5:b1:58:72:cf:
                    5c:bc:86:8f:1a:97:4f:92:c7:cc:c1:54:ac:7a:0a:bb:
                    a1:93:b7:dd:69:68:b2:8f:95:25:1a:f9:a4:64:78:61:
                    6e:2d:94:34:4a:b4:c8:d0:48:8a:e5:02:f2:14:1d:58:
                    e3:26:77:f8:cc:29:d4:65:ad:63:6f:e3:4b:b7:58:db:
                    91:b4:0e:6b:2c:b8:82:dc:21:1f:1d:57:5d:78:74:8c:
                    b9:46:f7:9b:39:81:13:b4:dc:7c:6f:4b:f4:67:12:e4:
                    4e:ca:c3:cb:10:6e:82:20:a4:1c:f6:e5:b1:67:f8:16:
                    fa:30:5e:b2:2e:be:b6:9d:77:e6:e9:13:87:53:1f:94:
                    5c:bf:79:79:97:27:4a:81:10:c9:48:d0:35:d6:6c:b1:
                    72:c6:e0:35:1f:ae:20:ee:d3:ef:f4:63:13:6d:07:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:db:9a:9a:b5:e6:a6:65:b5:71:8d:bf:c4:b5:67:b8:
        74:4a:7b:ba:92:e3:40:e7:b0:c4:30:f5:5c:7e:0f:fb:
        02:7a:56:39:96:49:08:a3:df:f5:90:0d:2a:f1:86:c4:
        08:3f:c6:80:bb:1c:db:25:79:13:93:0b:a3:6d:1d:97:
        79:76:6b:70:c2:c8:06:0a:5d:5c:e4:3c:c7:98:e2:17:
        5a:78:ef:cf:3e:7d:c9:13:c9:a4:c3:f4:82:bf:f1:cf:
        5b:18:42:00:f2:84:77:03:00:99:c6:0e:19:2e:d3:38:
        64:72:a6:41:9e:6c:ef:3f:0a:0b:2a:02:92:ca:9f:8a:
        af:4f:4d:e8:7a:7d:9a:60:96:84:6f:32:d3:54:9a:32:
        5b:ad:03:b6:a7:b5:87:ed:b3:d0:cd:7e:9e:9a:2e:c9:
        40:d8:1c:80:a1:23:47:b5:d9:df:df:76:ac:7e:cf:d4:
        f2:1e:81:05:9c:06:41:e7:a9:b5:51:7d:67:a4:7e:08:
        15:86:22:a5:16:74:aa:35:43:2a:31:a9:dd:25:02:77:
        9e:ad:65:76:d5:ad:25:9b:63:59:a8:8c:fd:9c:41:f0:
        e5:7a:39:03:0e:74:1e:77:01:d1:15:3d:b1:58:be:a7:
        c3:e5:df:05:49:cf:a2:f8:be:4d:12:00:61:65:aa:3b
    Fingerprint (SHA-256):
        D6:89:3B:D9:8E:3A:59:1E:97:1C:73:00:14:9E:39:0A:A0:5E:49:29:EB:F3:7E:4A:64:0A:6A:83:A3:0F:E2:CC
    Fingerprint (SHA1):
        E3:81:C5:F5:BE:8C:F8:EE:59:09:70:33:9E:C6:A2:A5:97:BD:21:6F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11064: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11065: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11066: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11067: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123186 (0x1e67dcb2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:24 2017
            Not After : Tue May 10 12:33:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:b6:29:53:b4:d4:1a:ba:35:7a:71:ba:39:e4:e5:03:
                    73:39:5a:0d:2a:c4:ed:37:38:2e:40:49:b1:ce:ee:4f:
                    b0:36:88:ce:ae:3c:13:d6:94:0c:f2:28:b2:b5:f9:5b:
                    89:8b:38:58:16:6f:94:48:ba:8d:65:46:32:b5:bb:41:
                    54:f8:78:b3:4e:9c:77:fa:ab:44:87:71:74:c4:f2:26:
                    aa:46:bc:a1:e3:e6:ab:32:11:4d:b0:c5:b1:58:72:cf:
                    5c:bc:86:8f:1a:97:4f:92:c7:cc:c1:54:ac:7a:0a:bb:
                    a1:93:b7:dd:69:68:b2:8f:95:25:1a:f9:a4:64:78:61:
                    6e:2d:94:34:4a:b4:c8:d0:48:8a:e5:02:f2:14:1d:58:
                    e3:26:77:f8:cc:29:d4:65:ad:63:6f:e3:4b:b7:58:db:
                    91:b4:0e:6b:2c:b8:82:dc:21:1f:1d:57:5d:78:74:8c:
                    b9:46:f7:9b:39:81:13:b4:dc:7c:6f:4b:f4:67:12:e4:
                    4e:ca:c3:cb:10:6e:82:20:a4:1c:f6:e5:b1:67:f8:16:
                    fa:30:5e:b2:2e:be:b6:9d:77:e6:e9:13:87:53:1f:94:
                    5c:bf:79:79:97:27:4a:81:10:c9:48:d0:35:d6:6c:b1:
                    72:c6:e0:35:1f:ae:20:ee:d3:ef:f4:63:13:6d:07:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:db:9a:9a:b5:e6:a6:65:b5:71:8d:bf:c4:b5:67:b8:
        74:4a:7b:ba:92:e3:40:e7:b0:c4:30:f5:5c:7e:0f:fb:
        02:7a:56:39:96:49:08:a3:df:f5:90:0d:2a:f1:86:c4:
        08:3f:c6:80:bb:1c:db:25:79:13:93:0b:a3:6d:1d:97:
        79:76:6b:70:c2:c8:06:0a:5d:5c:e4:3c:c7:98:e2:17:
        5a:78:ef:cf:3e:7d:c9:13:c9:a4:c3:f4:82:bf:f1:cf:
        5b:18:42:00:f2:84:77:03:00:99:c6:0e:19:2e:d3:38:
        64:72:a6:41:9e:6c:ef:3f:0a:0b:2a:02:92:ca:9f:8a:
        af:4f:4d:e8:7a:7d:9a:60:96:84:6f:32:d3:54:9a:32:
        5b:ad:03:b6:a7:b5:87:ed:b3:d0:cd:7e:9e:9a:2e:c9:
        40:d8:1c:80:a1:23:47:b5:d9:df:df:76:ac:7e:cf:d4:
        f2:1e:81:05:9c:06:41:e7:a9:b5:51:7d:67:a4:7e:08:
        15:86:22:a5:16:74:aa:35:43:2a:31:a9:dd:25:02:77:
        9e:ad:65:76:d5:ad:25:9b:63:59:a8:8c:fd:9c:41:f0:
        e5:7a:39:03:0e:74:1e:77:01:d1:15:3d:b1:58:be:a7:
        c3:e5:df:05:49:cf:a2:f8:be:4d:12:00:61:65:aa:3b
    Fingerprint (SHA-256):
        D6:89:3B:D9:8E:3A:59:1E:97:1C:73:00:14:9E:39:0A:A0:5E:49:29:EB:F3:7E:4A:64:0A:6A:83:A3:0F:E2:CC
    Fingerprint (SHA1):
        E3:81:C5:F5:BE:8C:F8:EE:59:09:70:33:9E:C6:A2:A5:97:BD:21:6F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11068: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11069: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11070: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123193 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11071: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11072: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11073: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11074: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510123194   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11075: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11076: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11077: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11078: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510123195   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11079: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11080: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11081: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11082: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510123196   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11083: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11084: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11085: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11086: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510123197   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11087: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11088: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11089: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11090: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510123198   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11091: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11092: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11093: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11094: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510123199   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11095: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11096: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11097: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11098: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510123200   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11099: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11100: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11101: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11102: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510123201   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11103: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11104: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11105: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11106: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510123202   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11107: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11108: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11109: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11110: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510123203   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11111: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11112: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11113: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11114: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510123204   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11115: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11116: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11117: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11118: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510123205   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11119: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11120: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11121: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11122: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510123206   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11123: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11124: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11125: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11126: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510123207   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11127: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11128: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11129: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11130: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510123208   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11131: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11132: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11133: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11134: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510123209   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11135: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11136: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11137: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11138: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510123210   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11139: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11140: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11141: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11142: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510123211   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11143: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11144: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11145: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11146: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510123212   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11147: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11148: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11149: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11150: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510123213   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11151: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11152: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11153: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11154: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510123214   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11155: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11156: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11157: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11158: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510123215   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11159: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11160: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11161: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11162: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510123216   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11163: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11164: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11165: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11166: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510123217   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11167: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11168: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11169: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11170: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510123218   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11171: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11172: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11173: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510123219   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11175: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11176: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11177: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11178: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510123220   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11179: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11180: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11181: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510123221   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11183: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11184: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11185: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11186: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510123222   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11187: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11188: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11189: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11190: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11191: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11192: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11193: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11194: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11195: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11196: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11197: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11198: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11199: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11200: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11201: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11202: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11203: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11204: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11205: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11206: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11207: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11208: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11209: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11210: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11211: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123193 (0x1e67dcb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:33:37 2017
            Not After : Tue May 10 12:33:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:58:e5:e8:7c:c0:78:3c:22:99:42:6a:7f:e8:ac:b9:
                    80:0c:4a:6c:b0:ad:a2:f1:d7:ec:5d:ce:2b:2b:19:25:
                    18:07:09:33:b3:68:b8:f6:75:9f:3d:0f:3d:a8:80:5e:
                    55:df:b9:a1:32:55:bf:11:41:54:35:0c:c1:86:54:a6:
                    3b:6e:f7:4a:2f:a0:85:3a:a3:a3:87:99:31:ed:a2:20:
                    f4:ec:aa:6f:73:d6:a7:01:21:90:2f:1f:7f:38:1a:4f:
                    de:69:ca:6a:70:18:58:30:c1:ef:31:c3:0e:1e:8d:2f:
                    23:65:e2:7b:41:83:4c:c5:dd:88:21:43:3a:9a:ac:bf:
                    2c:52:6d:81:3a:6b:bb:25:11:4b:22:0d:a9:76:7a:63:
                    bc:19:67:0c:4a:24:79:c7:f2:e8:a8:64:ed:47:51:b0:
                    ea:59:ab:9b:57:f5:c5:71:45:63:19:03:5f:46:96:95:
                    cb:a6:6a:89:92:e3:33:4b:d6:ca:2d:45:06:79:80:dd:
                    2b:ff:f5:3e:b5:84:c9:96:71:f4:64:f9:9c:9e:33:27:
                    6c:bc:d1:ce:fb:d6:70:bd:81:75:ec:28:fa:64:c2:9c:
                    98:48:87:0b:52:08:56:ab:bb:77:d7:89:8d:21:0d:41:
                    e9:61:f6:25:48:e1:87:ad:77:46:d7:e2:b4:df:95:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:ca:c6:f2:f3:88:18:e0:fd:43:7b:62:62:04:7f:63:
        fa:dc:26:c4:ef:5f:b7:05:4c:b1:65:f0:13:cc:3e:d4:
        7d:d9:8b:a2:ff:80:a7:3f:4d:b8:43:dd:73:4a:87:d9:
        ea:e9:6c:a9:56:f0:88:43:bc:a2:79:d4:46:59:1b:b9:
        ed:1b:10:b0:e0:b0:b4:91:ca:e5:dc:17:2e:ca:78:3a:
        f3:29:ae:28:5c:47:af:ec:04:1d:91:cd:5b:80:38:8a:
        bc:ea:12:97:37:87:83:86:8f:20:aa:b4:90:c9:5d:25:
        00:f0:75:e6:b5:34:a4:32:d2:3d:31:26:cd:86:1b:dc:
        ad:1c:f6:51:12:7f:07:1b:9d:2e:01:f5:96:fe:54:4a:
        fa:39:8f:82:54:f8:1e:96:95:b6:e9:d4:96:43:6f:12:
        86:05:40:e6:e2:91:13:73:61:cb:94:62:4a:ae:34:93:
        27:15:cc:28:d9:25:62:6c:f6:33:e1:92:49:9a:34:97:
        b7:d5:0c:75:0d:7d:a1:65:69:de:95:3b:32:99:ff:c2:
        60:52:0f:18:c8:22:6a:6f:62:bb:bb:1f:eb:21:fb:26:
        91:f6:82:d2:22:40:ba:b5:57:15:8e:f1:43:a8:fe:1e:
        db:5f:b2:7d:c2:d6:55:6b:19:f8:94:3b:3b:af:4f:64
    Fingerprint (SHA-256):
        1C:A8:9C:CA:00:9E:2F:AE:36:08:48:7A:5F:99:CA:9D:CD:06:9E:15:93:7C:63:AD:3C:42:47:C1:84:AC:B1:D1
    Fingerprint (SHA1):
        BC:3F:48:98:9A:1F:BB:04:4C:81:99:A6:D5:1B:24:7C:BC:27:C9:0C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11212: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11213: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11214: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123223 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11215: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11216: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #11217: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11218: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510123224   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11219: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11220: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #11221: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11222: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510123225   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11223: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11224: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #11225: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11226: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510123226   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11227: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11228: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #11229: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11230: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510123227   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11231: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11232: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #11233: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11234: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510123228   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11235: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11236: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #11237: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11238: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510123229   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11239: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11240: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11241: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123223 (0x1e67dcd7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:34:30 2017
            Not After : Tue May 10 12:34:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:41:c4:7e:43:47:5a:e3:91:83:1e:a8:e0:c4:c0:73:
                    6d:69:9c:2a:ce:18:01:2f:c1:c3:cd:86:3f:8c:96:b1:
                    1b:d9:d7:d3:1e:a8:cd:58:5a:fb:d9:bc:c3:9b:e3:d3:
                    b8:02:b2:75:aa:09:22:b1:2d:c2:28:af:6e:43:2c:84:
                    a8:f0:2a:84:87:98:aa:48:1f:04:a7:ef:14:38:a6:a5:
                    1b:f5:0e:d5:cd:2e:20:0e:34:3f:de:ee:82:59:2f:2c:
                    23:c4:f4:ec:a8:da:f9:8e:de:ba:47:14:41:27:2a:8e:
                    09:6c:cb:03:84:c2:c7:58:89:9e:e5:31:87:59:72:be:
                    b5:2a:7f:90:7b:90:f8:17:a0:0c:e2:a6:f9:78:3d:e4:
                    5d:8c:91:5b:1c:33:7d:26:3e:48:37:c2:cd:ea:b2:9e:
                    5b:e7:53:ca:77:df:af:a6:5a:f7:18:19:a0:f9:0b:ad:
                    1e:79:36:0c:6d:cb:7b:c8:2d:bd:84:93:42:87:be:dd:
                    0d:62:0e:28:9d:59:1f:47:2a:22:14:a6:71:00:b9:01:
                    c4:5b:11:ca:ce:1b:e0:04:44:12:0a:10:5b:71:bb:19:
                    95:83:cf:e5:0e:4f:7a:0b:fd:23:d7:3f:82:af:19:ca:
                    61:21:2b:3f:f7:11:e7:97:37:0d:bc:c2:92:38:e5:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:ad:5c:3d:7e:94:bd:c7:9a:4c:e7:6c:7b:0b:81:ea:
        14:57:86:61:28:d2:9c:9c:f7:23:0e:4c:80:9e:98:c5:
        bb:c5:f4:83:8d:83:6d:dc:13:0c:76:88:88:1a:ff:76:
        5b:78:40:55:11:7f:00:c2:ee:86:e2:fa:35:7c:d4:37:
        4f:95:de:95:3d:fb:56:20:63:da:ea:f8:e5:40:b0:c0:
        58:90:d1:f9:e2:93:f0:49:8d:bd:6f:d3:95:3e:ff:db:
        05:d0:9c:7f:96:f0:37:cc:e7:5d:47:fb:03:97:e1:9d:
        d5:84:26:0f:42:87:af:bf:ca:c1:ad:0b:68:43:be:0a:
        12:70:7c:40:e9:dc:59:77:ef:c5:24:64:a3:fd:fb:15:
        bb:e0:05:00:1e:6d:a3:56:11:45:29:8b:f3:85:43:38:
        fb:14:bf:19:a7:bf:09:93:4c:e5:25:04:03:92:58:39:
        73:36:83:be:0f:cb:6f:53:b8:4d:f3:e1:2c:d9:10:c4:
        54:d9:dc:8c:0c:d7:2e:04:37:bd:9f:e9:c5:3e:10:80:
        cc:f2:e5:09:5d:70:ff:d1:18:d9:13:4c:89:95:09:be:
        bf:ee:ec:5c:a5:4e:e3:20:3d:06:31:8b:ea:7a:b0:af:
        84:ad:34:fa:bb:1a:33:08:f6:17:fa:1c:6b:03:c9:a4
    Fingerprint (SHA-256):
        4D:06:EC:3D:8F:88:05:D4:0E:6F:47:D9:09:24:5D:44:A3:A5:99:E1:00:AB:B2:B4:29:A9:59:FA:54:CE:E9:05
    Fingerprint (SHA1):
        8E:0C:3D:CE:C6:F2:45:B6:44:DA:F7:09:C1:4F:90:F2:D9:C8:74:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11242: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11243: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11244: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11245: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123223 (0x1e67dcd7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:34:30 2017
            Not After : Tue May 10 12:34:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:41:c4:7e:43:47:5a:e3:91:83:1e:a8:e0:c4:c0:73:
                    6d:69:9c:2a:ce:18:01:2f:c1:c3:cd:86:3f:8c:96:b1:
                    1b:d9:d7:d3:1e:a8:cd:58:5a:fb:d9:bc:c3:9b:e3:d3:
                    b8:02:b2:75:aa:09:22:b1:2d:c2:28:af:6e:43:2c:84:
                    a8:f0:2a:84:87:98:aa:48:1f:04:a7:ef:14:38:a6:a5:
                    1b:f5:0e:d5:cd:2e:20:0e:34:3f:de:ee:82:59:2f:2c:
                    23:c4:f4:ec:a8:da:f9:8e:de:ba:47:14:41:27:2a:8e:
                    09:6c:cb:03:84:c2:c7:58:89:9e:e5:31:87:59:72:be:
                    b5:2a:7f:90:7b:90:f8:17:a0:0c:e2:a6:f9:78:3d:e4:
                    5d:8c:91:5b:1c:33:7d:26:3e:48:37:c2:cd:ea:b2:9e:
                    5b:e7:53:ca:77:df:af:a6:5a:f7:18:19:a0:f9:0b:ad:
                    1e:79:36:0c:6d:cb:7b:c8:2d:bd:84:93:42:87:be:dd:
                    0d:62:0e:28:9d:59:1f:47:2a:22:14:a6:71:00:b9:01:
                    c4:5b:11:ca:ce:1b:e0:04:44:12:0a:10:5b:71:bb:19:
                    95:83:cf:e5:0e:4f:7a:0b:fd:23:d7:3f:82:af:19:ca:
                    61:21:2b:3f:f7:11:e7:97:37:0d:bc:c2:92:38:e5:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:ad:5c:3d:7e:94:bd:c7:9a:4c:e7:6c:7b:0b:81:ea:
        14:57:86:61:28:d2:9c:9c:f7:23:0e:4c:80:9e:98:c5:
        bb:c5:f4:83:8d:83:6d:dc:13:0c:76:88:88:1a:ff:76:
        5b:78:40:55:11:7f:00:c2:ee:86:e2:fa:35:7c:d4:37:
        4f:95:de:95:3d:fb:56:20:63:da:ea:f8:e5:40:b0:c0:
        58:90:d1:f9:e2:93:f0:49:8d:bd:6f:d3:95:3e:ff:db:
        05:d0:9c:7f:96:f0:37:cc:e7:5d:47:fb:03:97:e1:9d:
        d5:84:26:0f:42:87:af:bf:ca:c1:ad:0b:68:43:be:0a:
        12:70:7c:40:e9:dc:59:77:ef:c5:24:64:a3:fd:fb:15:
        bb:e0:05:00:1e:6d:a3:56:11:45:29:8b:f3:85:43:38:
        fb:14:bf:19:a7:bf:09:93:4c:e5:25:04:03:92:58:39:
        73:36:83:be:0f:cb:6f:53:b8:4d:f3:e1:2c:d9:10:c4:
        54:d9:dc:8c:0c:d7:2e:04:37:bd:9f:e9:c5:3e:10:80:
        cc:f2:e5:09:5d:70:ff:d1:18:d9:13:4c:89:95:09:be:
        bf:ee:ec:5c:a5:4e:e3:20:3d:06:31:8b:ea:7a:b0:af:
        84:ad:34:fa:bb:1a:33:08:f6:17:fa:1c:6b:03:c9:a4
    Fingerprint (SHA-256):
        4D:06:EC:3D:8F:88:05:D4:0E:6F:47:D9:09:24:5D:44:A3:A5:99:E1:00:AB:B2:B4:29:A9:59:FA:54:CE:E9:05
    Fingerprint (SHA1):
        8E:0C:3D:CE:C6:F2:45:B6:44:DA:F7:09:C1:4F:90:F2:D9:C8:74:0B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11246: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11247: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11248: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11249: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123230 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11250: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11251: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11252: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11253: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123231   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11254: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11255: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11256: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11257: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123232   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11258: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11259: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11260: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11261: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510123233   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11262: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11263: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11264: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11265: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11266: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11267: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123230 (0x1e67dcde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:34:44 2017
            Not After : Tue May 10 12:34:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:a9:e1:cf:ba:c3:a9:08:fc:67:85:ec:fa:aa:b9:da:
                    63:ca:de:ff:9a:cf:2b:12:f2:62:87:6b:8d:88:a1:f4:
                    84:dc:6f:bc:b2:f4:bc:a6:79:5e:d1:91:62:bc:63:d0:
                    21:02:29:6d:72:ce:bb:d6:2e:3a:6e:da:ea:f2:3e:5e:
                    7b:a8:b3:fe:b0:92:64:be:2b:17:f3:b5:53:e5:03:ff:
                    ef:c0:d2:23:1d:e7:81:2b:3b:ab:a7:77:41:af:24:24:
                    b5:66:2b:ef:f9:ad:40:17:19:a4:45:fc:08:ce:a2:a7:
                    fc:8e:09:d4:b1:3d:d9:21:95:3a:30:8f:d6:4f:b4:79:
                    01:4f:3c:13:51:19:46:93:41:d7:8e:98:18:5a:b0:3e:
                    d0:66:ab:e2:6d:d3:96:52:a5:ef:eb:93:c8:a5:37:65:
                    1d:de:3f:40:13:c1:e3:b2:a5:2b:dd:18:91:1b:fb:8e:
                    4b:72:ba:cb:d3:27:34:2a:8e:05:5c:74:f5:eb:16:a0:
                    b4:d3:68:e1:c6:89:77:eb:99:47:6a:79:cd:8f:7e:fe:
                    9c:5a:0e:52:36:0e:fe:f9:1a:90:40:76:80:b2:b9:76:
                    37:57:3a:52:65:e9:c3:c4:14:bf:cd:2b:a9:31:04:d5:
                    b6:c5:be:67:bf:47:83:95:15:ab:b2:dd:c7:2b:ea:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:4a:cf:d1:86:1f:34:33:d7:31:36:93:92:d9:65:ae:
        6a:b6:27:ce:bf:b4:54:d5:0f:fb:75:35:d0:f8:3d:f3:
        49:a4:a2:57:35:db:86:2f:8c:61:f8:13:9f:26:46:32:
        8b:0a:f5:2c:fb:50:f2:3b:0c:67:7c:af:a1:84:0c:62:
        05:1f:8a:5d:0a:84:f4:59:9a:92:b7:d0:5b:c6:bf:9b:
        94:2e:44:58:a9:c8:90:ac:d1:59:ee:ca:9e:22:63:58:
        02:f4:f7:db:6e:70:a8:be:ff:79:71:ff:3c:c9:9a:cf:
        49:40:38:03:4f:e7:61:5c:2e:35:1a:7e:51:92:c9:85:
        ed:62:d5:8a:51:6a:53:3d:75:a4:67:bc:a1:7e:46:d7:
        7b:6b:e2:6e:aa:d4:a2:d5:48:04:32:13:21:81:46:c5:
        6c:49:48:bc:6b:50:45:a0:b8:a0:f2:ba:b1:36:6e:fd:
        c8:6f:88:fa:e9:9c:10:c2:b0:82:03:43:32:4f:7c:e9:
        1d:d5:b9:1f:fd:1c:2f:f7:dd:8d:84:3b:b4:ab:6f:55:
        a5:16:b4:ae:16:5f:86:0a:25:d1:b9:88:68:f7:de:ff:
        3d:6b:00:46:30:5b:e9:94:e4:bb:23:57:8d:d7:2a:08:
        e4:f6:0e:0b:e5:39:d4:ed:52:93:03:97:49:87:81:59
    Fingerprint (SHA-256):
        EC:58:1B:9E:0E:E9:91:F0:9F:B4:84:43:7D:C3:C7:D1:41:84:52:EF:3F:64:41:B4:30:A1:20:C4:58:DC:09:27
    Fingerprint (SHA1):
        9A:CC:A3:63:59:8B:0B:7A:44:7B:71:C2:B2:E1:DA:F5:A9:59:BE:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11268: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11269: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11270: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123231 (0x1e67dcdf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:34:45 2017
            Not After : Tue May 10 12:34:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:5d:70:8a:ca:7f:af:ed:ca:d1:a9:57:57:fe:d2:6f:
                    00:d8:c4:d2:30:f1:01:24:f6:72:61:1d:b7:68:59:e2:
                    c8:14:dd:71:86:90:2f:f9:90:7c:97:0d:fe:b0:9d:13:
                    41:d7:96:54:e2:59:c6:08:fd:bc:33:b3:f4:56:f0:60:
                    71:d0:b4:cf:5a:ec:d4:d2:48:f4:84:c7:40:77:01:aa:
                    e4:e6:75:d5:97:9f:54:39:e3:51:21:b8:9e:43:12:b7:
                    00:8c:7a:21:4b:3a:b7:08:21:0e:69:24:b9:b4:75:d6:
                    b4:ed:9e:6a:d1:ac:fa:13:79:ed:04:04:ec:fe:bc:a2:
                    71:1f:af:99:16:fe:07:9d:1a:97:ee:14:c2:65:c4:a9:
                    d4:21:26:03:12:33:bf:a7:5f:8e:a0:5f:0b:29:f8:4a:
                    30:ad:34:87:f9:fc:53:47:13:08:2b:2e:0a:00:60:b8:
                    49:e7:62:ec:09:4b:b3:c8:22:33:19:6c:38:11:18:61:
                    b8:36:1d:1c:1f:67:29:07:20:44:d1:88:f3:33:79:0f:
                    55:cc:43:f5:fe:00:de:60:22:cb:30:98:a5:a8:53:1c:
                    ec:92:69:97:4c:79:7d:51:40:1f:0d:31:62:6f:46:d5:
                    70:29:f7:de:6f:45:f2:5d:9b:42:b9:61:96:50:dc:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:39:90:e5:5d:c0:6b:68:1d:cd:5b:6d:91:53:a6:2a:
        75:a6:59:0b:5a:88:eb:05:db:af:6a:08:a0:49:0e:fc:
        53:e2:2a:62:ab:5e:59:4a:59:e5:e1:41:32:94:84:3e:
        9a:bd:79:3f:aa:79:73:31:61:bb:3a:47:c4:46:24:24:
        2f:9d:22:29:56:b8:4d:22:de:7d:a8:6f:d9:fb:5e:30:
        c1:e3:eb:4e:ee:d3:fc:d4:e2:f0:1e:57:09:5b:6e:10:
        06:72:92:dd:6e:4a:d6:16:bd:cc:3c:1a:82:1f:4b:17:
        ef:22:04:db:fd:4d:a3:97:16:a4:e2:c4:76:53:ca:ee:
        c6:da:d6:3c:39:c3:df:f2:6d:ff:b4:5c:b3:58:81:16:
        39:6f:4a:56:a5:b8:57:8e:7c:d6:86:7c:59:8e:75:c0:
        55:e7:c3:30:d3:df:eb:a2:89:fe:d0:0a:8c:dd:c5:7c:
        06:ee:58:91:45:c6:e9:c5:e5:fe:95:bc:7d:7c:fe:17:
        c1:e8:e3:65:2e:90:ac:3f:0f:39:ba:dd:13:d3:bc:3d:
        09:7f:04:08:73:a0:7a:f1:fc:89:cf:85:57:ac:d0:59:
        36:76:f8:78:c5:20:e5:fa:41:11:46:c3:19:25:95:9b:
        9f:0f:38:e1:07:e1:77:a6:d9:cd:db:47:a5:15:f6:22
    Fingerprint (SHA-256):
        09:B0:1F:F4:A9:BE:69:EE:30:25:F5:E7:49:C9:DE:77:C5:46:50:D8:A9:10:98:CD:D8:2C:53:AA:1D:FC:E1:D0
    Fingerprint (SHA1):
        3A:D2:DB:0C:88:95:1C:60:F6:50:25:C0:4A:22:A8:88:16:9D:8F:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11271: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11272: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123232 (0x1e67dce0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:34:48 2017
            Not After : Tue May 10 12:34:48 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:77:c6:54:30:d1:9a:ef:36:92:ac:eb:77:18:7e:95:
                    1a:8d:6f:d3:36:bd:04:5f:0c:e3:1b:fe:23:b8:f4:0d:
                    ae:0b:e5:03:b8:06:1e:a9:a5:28:36:3b:2e:58:e5:92:
                    eb:6e:b4:7c:b6:62:f7:21:e3:af:ba:1e:92:db:9c:50:
                    1d:24:b3:6b:77:1e:d2:41:34:b1:e8:cd:9d:a3:d4:e7:
                    47:87:b4:29:32:41:73:a0:32:f6:e8:8f:89:e5:b0:c2:
                    33:d1:8d:a6:29:a1:8a:4e:9c:a2:92:7f:2e:9d:33:03:
                    b4:34:3d:e0:08:2d:f0:ec:65:88:89:93:7c:d4:d5:81:
                    28:64:da:92:f4:34:b6:dd:34:60:f3:ed:a7:d8:b3:11:
                    67:c5:01:69:4f:85:a3:46:30:2e:2b:b4:2f:f1:15:c4:
                    13:bc:82:54:ac:30:16:2c:8b:b0:55:19:15:43:df:38:
                    7e:08:7f:62:66:7c:93:ff:9e:ee:14:54:39:6b:d3:93:
                    a6:dc:4f:95:8a:9e:bd:3f:47:1b:ed:b5:b5:40:0d:79:
                    15:79:10:3f:5d:fb:1b:98:9b:59:47:53:af:65:77:03:
                    53:b4:31:59:a3:05:b5:30:07:5c:62:fa:bd:69:3a:a4:
                    d6:14:5a:a8:d4:f3:66:cb:91:06:ed:11:02:93:de:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:7e:9c:4e:85:0c:0f:38:97:78:fe:b7:34:79:25:43:
        58:ea:c0:95:1e:86:1a:bb:5b:41:05:24:a2:e0:26:65:
        ac:ed:16:93:8d:ba:b0:6a:79:7f:fc:b4:d3:0b:73:fb:
        0d:69:eb:f6:9f:3b:35:8a:ab:8d:93:f4:a5:88:59:ef:
        c1:35:e7:fd:61:9b:d6:8f:86:68:3f:89:3d:4d:68:24:
        f2:f2:d5:75:78:06:9b:0f:2b:7c:9b:e6:4d:9f:c6:52:
        2e:84:d8:dd:03:67:36:47:12:14:6e:73:6b:af:62:58:
        30:7e:70:89:97:69:bd:f1:7b:0f:b3:57:be:5f:b3:e4:
        40:fc:5f:38:3d:1a:33:8d:e0:dd:ab:78:57:21:70:c6:
        c4:15:8d:08:99:37:96:e1:b0:cf:ab:5b:e0:39:1d:3e:
        8e:32:ff:f2:e9:52:3b:19:aa:5a:90:e3:65:e1:e6:93:
        37:9f:ee:78:22:47:c6:fd:94:39:dd:43:13:ee:52:bf:
        d6:71:93:0e:17:17:c0:14:46:61:7f:6e:b1:10:25:32:
        83:83:b8:56:11:50:38:7a:ba:9f:80:ed:cf:8a:1a:ed:
        39:64:47:c3:ef:2e:74:9b:57:eb:30:f5:a7:76:ac:6d:
        db:bd:30:7a:90:d2:bc:e1:01:eb:86:6e:3f:79:bd:b7
    Fingerprint (SHA-256):
        DE:A8:A1:C6:A8:03:3A:9F:5C:D7:29:D1:6B:34:3B:4D:8A:19:70:73:17:99:07:AD:E3:11:D3:45:69:35:C8:92
    Fingerprint (SHA1):
        C7:45:B4:D9:3F:5B:F7:2A:12:75:0C:07:0F:53:85:B1:F9:79:6F:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11273: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11274: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123234 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11275: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11276: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11277: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11278: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123235   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11279: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11280: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11281: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11282: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123236   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11283: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11284: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11285: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11286: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510123237   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11287: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11288: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11289: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11290: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510123238   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11291: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11292: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11293: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11294: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11295: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11296: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11297: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123234 (0x1e67dce2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:34:55 2017
            Not After : Tue May 10 12:34:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:0e:43:a8:7a:89:a0:63:f2:89:38:bf:a0:24:63:c6:
                    3f:03:da:07:1b:d1:ad:68:a6:8b:11:3e:ee:99:58:20:
                    93:19:59:b0:23:97:3b:c2:18:55:6a:3a:7a:e1:1a:ba:
                    d2:50:7e:75:0e:46:93:d1:71:88:55:8a:1f:3a:ff:d5:
                    d8:39:c5:07:e5:74:23:c8:40:b2:4a:21:92:d9:ba:80:
                    58:78:6f:bc:7a:04:1f:dd:3c:c3:a9:80:85:3b:ac:6e:
                    f9:0d:e2:21:4b:6a:7a:9f:ce:06:ac:c4:28:31:82:f5:
                    55:27:0a:21:82:e5:25:1a:7a:9c:da:4b:49:db:84:7b:
                    0c:3f:b6:4e:ce:3a:b8:1d:4e:e6:ed:c8:ed:fb:9e:2e:
                    c4:c6:ed:af:6d:e4:ca:c4:a4:4b:74:8f:08:2d:7c:c9:
                    51:f8:d0:27:82:7c:f1:4a:52:95:e0:fa:14:67:81:b3:
                    ad:53:34:24:31:c1:59:ca:e2:27:d8:ba:85:60:b3:1c:
                    9d:8e:ca:6f:71:01:ba:ff:cd:27:48:45:e7:f1:13:17:
                    ff:38:97:b3:74:4d:2c:00:ac:d5:99:9f:34:90:4d:ae:
                    82:d8:37:60:c9:b6:98:9f:f5:c3:73:81:4f:5e:47:5d:
                    d2:80:c7:15:13:ab:ee:43:6a:61:7c:2d:7d:9b:51:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:52:6d:ff:5c:dc:88:da:2c:cc:d4:4e:5f:3a:02:ff:
        91:bd:45:72:40:ea:79:72:55:e3:0f:67:b5:cb:6c:8f:
        21:a4:4c:fd:e5:e0:39:4b:96:01:39:cd:cc:c0:25:89:
        b5:cd:d2:52:67:88:78:67:8d:c1:d2:bb:ca:97:a3:82:
        83:a8:10:c6:77:2c:6e:65:63:03:64:9c:5d:e1:a4:76:
        81:52:6e:56:0a:7d:88:bc:1a:c0:59:27:c1:fa:fb:59:
        7f:a2:cd:94:8e:a7:ff:c7:7a:47:cc:35:e4:e7:d3:16:
        27:bf:3a:87:76:a1:fe:3f:be:e9:c9:f7:57:8d:c8:d7:
        e8:fe:27:79:91:e1:37:29:90:c4:08:ba:42:b1:b4:7f:
        1c:21:e7:ca:62:a2:3c:dc:1b:82:25:4c:a1:68:7b:78:
        71:9c:bb:2a:1f:53:ee:f3:6a:71:cd:b0:62:10:b2:62:
        33:38:64:65:4b:62:7c:f2:e3:20:c9:d7:73:31:be:3e:
        e7:d1:ef:c0:5b:b6:54:8e:80:36:0b:6e:78:8b:47:ba:
        1c:9f:c5:28:46:84:fe:7d:47:15:a3:f0:78:0b:1d:7a:
        25:80:9d:71:2c:12:d6:51:af:c5:bf:23:93:7f:06:a9:
        57:4d:12:2c:33:3d:59:29:e8:bc:b5:6a:f3:86:53:df
    Fingerprint (SHA-256):
        EE:3F:DB:42:3C:4B:54:1B:B6:35:49:77:B5:E8:A9:13:D1:4D:06:AF:73:51:B2:0E:DD:65:DA:CD:5F:BB:18:3A
    Fingerprint (SHA1):
        B2:D6:3B:5F:0D:1D:3E:EE:7E:CF:1F:A4:6F:9C:FD:89:D5:58:F3:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11298: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11299: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123235 (0x1e67dce3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:34:57 2017
            Not After : Tue May 10 12:34:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:d2:26:b2:ae:d5:7c:4f:e3:ef:76:40:4d:7a:5b:a4:
                    39:39:2a:0c:aa:4e:57:68:b3:df:de:f8:01:8c:ee:cc:
                    24:35:90:75:90:31:4c:1d:be:ae:8a:4c:db:79:ef:e4:
                    de:b2:42:cc:b5:42:6c:76:f5:0f:01:8d:a9:c5:2a:1e:
                    e1:c5:b7:26:ab:88:bc:48:0c:ad:c4:5b:8b:22:c4:af:
                    d0:8b:a9:45:75:78:95:ac:50:f7:f6:3b:b2:02:ff:99:
                    3b:83:f3:7f:6d:5d:ab:c0:88:a2:06:ce:e2:1c:34:78:
                    4d:a3:0f:5e:a3:0e:c1:a1:75:3f:6e:35:af:fa:1f:83:
                    60:87:17:ed:bf:49:4d:79:ae:4a:c5:bb:e1:42:24:86:
                    27:82:54:ea:50:3e:d7:fc:01:82:7e:45:8f:e2:f7:6a:
                    73:3d:8c:fc:81:b4:0d:2d:68:50:c2:19:d5:d6:6c:d8:
                    57:1f:da:e8:32:56:57:b8:5d:e3:4f:35:80:48:d3:6d:
                    66:8f:2f:3d:d3:87:3f:27:4d:95:2b:23:da:b9:0a:90:
                    c4:7e:96:cf:94:45:00:5a:6d:14:45:28:d9:f5:4c:7c:
                    3e:ce:a6:d7:62:70:79:09:cf:4e:84:85:eb:0b:9f:34:
                    75:d5:6e:5c:e7:5a:60:ef:cd:22:f2:37:39:6a:79:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:00:71:ad:a2:e8:8f:4b:24:24:ef:45:f4:0c:2d:9a:
        ae:b7:40:f1:c7:90:80:aa:06:36:ee:e6:24:5d:4d:d8:
        9c:3f:a9:32:be:de:d5:96:b2:53:55:5f:f9:be:bf:82:
        cf:64:6d:70:60:22:8f:19:dc:c9:db:6a:b9:f9:99:82:
        1e:ad:1e:e3:e6:1d:55:51:5d:88:32:49:d1:3a:00:4a:
        76:0c:da:b6:a4:93:55:fa:a2:31:40:ae:e1:1c:46:75:
        78:e9:f0:5a:6a:2d:8f:3d:94:98:1f:86:4b:24:a6:a7:
        77:e1:c7:da:59:8d:a6:54:b5:7d:9d:0e:04:1f:c1:c4:
        ea:f2:02:87:45:d5:a1:fd:94:9d:4d:60:14:4e:14:30:
        e4:49:d6:4c:98:3a:c3:4d:03:2d:bc:b9:2a:82:a8:fd:
        fd:e0:ef:45:18:c9:5a:84:26:df:dc:58:3a:b1:16:39:
        91:da:3e:ac:1f:25:b0:ae:af:4d:83:ab:33:cd:48:06:
        06:d8:74:35:80:a5:57:8b:b4:0e:d0:f8:d6:c5:ef:16:
        11:6b:b2:e3:9e:3c:58:6e:5a:c1:a8:77:14:b6:6c:cb:
        6a:79:62:68:95:5c:ae:b5:d8:73:e5:39:d5:25:73:d3:
        d9:a8:70:4b:af:53:b4:b0:c6:41:7e:a2:50:94:9c:33
    Fingerprint (SHA-256):
        1F:DF:99:15:80:CF:EA:27:58:55:DE:8A:EA:AB:F2:CC:BC:69:BD:4A:A4:98:99:16:47:B4:51:7A:8B:DE:09:23
    Fingerprint (SHA1):
        33:73:CB:77:E2:F2:FD:69:AB:5B:56:5F:A2:82:C9:AC:08:ED:AC:3B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11300: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11301: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11302: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123236 (0x1e67dce4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:35:00 2017
            Not After : Tue May 10 12:35:00 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f2:0c:23:81:b9:8a:aa:7e:d4:93:14:61:3a:f5:42:18:
                    f3:8e:33:9b:54:5f:4b:2b:86:e5:5e:fe:6f:63:9d:c8:
                    af:86:5e:73:c8:3c:00:48:c6:a2:f4:80:ef:5f:a9:e3:
                    5b:44:5c:d4:d4:c6:4f:3b:ed:79:d9:00:1e:28:4b:6b:
                    1a:5d:25:8c:bf:4e:ca:5d:33:ca:c8:f6:8c:e7:17:ab:
                    de:2d:6f:5d:d8:0f:ac:3f:cd:d2:7b:ad:f2:ce:1a:aa:
                    13:f1:90:f0:01:a7:ea:1d:59:da:53:ce:a3:00:be:ee:
                    62:a3:0c:6f:5a:ab:97:e6:05:ce:be:d5:74:d6:9b:84:
                    e3:25:c8:93:fb:f0:f0:c3:dc:51:69:ea:4b:a9:7d:e0:
                    73:aa:b4:bc:35:8c:3f:44:a3:d8:1d:66:3e:5d:0a:96:
                    f8:c1:c6:0a:25:4f:c9:4e:91:fd:a4:0e:6b:0b:21:d4:
                    b5:a5:6e:bd:f0:c9:8f:ea:73:2f:cb:f2:cc:20:de:24:
                    3b:88:af:3d:7a:d8:45:33:67:d8:63:82:d9:65:08:ae:
                    67:36:a9:fe:d6:43:91:80:7d:89:41:13:60:c1:34:4d:
                    20:ff:07:c4:6d:6f:7f:7f:3f:24:f3:cf:43:d9:e2:20:
                    0a:94:6f:13:77:cd:d2:9c:76:66:9a:a3:85:3b:0a:45
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:29:c6:9b:de:04:06:f2:91:d7:d8:05:59:31:6a:2d:
        fc:02:d4:c2:a7:d2:c8:2b:87:1c:16:ec:3b:d9:e9:f7:
        7e:da:41:06:06:79:0b:ed:e7:60:1d:a7:69:fb:32:cb:
        fd:d0:cd:fd:fb:d3:9e:e2:48:eb:53:7a:b2:07:ae:6b:
        36:14:69:b6:b2:71:5a:05:1b:54:af:fd:81:96:d5:f3:
        a2:bf:9e:d7:25:a4:50:e4:a1:83:c6:48:c7:b8:b6:58:
        71:12:85:18:6a:72:82:0c:26:63:d6:22:19:e0:21:d6:
        13:50:7f:d4:e2:41:9e:17:e2:e9:73:1f:cb:55:f3:86:
        7b:57:ab:f4:cf:b8:80:ac:6b:51:9f:f9:ab:ec:05:52:
        0c:d4:df:63:2c:3d:00:0c:e5:f4:55:c4:6f:c2:50:7b:
        3d:9e:f5:de:d4:6f:53:c9:38:93:77:61:ea:67:d9:f1:
        77:2a:cb:ab:c9:92:c5:39:53:a6:27:0f:46:47:22:4f:
        d2:a1:82:56:42:68:4a:ba:86:e8:ac:cb:6c:a1:59:29:
        ad:af:f4:42:43:35:95:09:f4:9e:84:ad:d8:7a:01:d3:
        aa:e1:34:b0:e0:1e:e5:63:6e:a7:24:86:90:cb:14:d2:
        89:63:98:8d:77:c0:42:cd:63:86:89:07:8d:51:2e:31
    Fingerprint (SHA-256):
        B5:71:99:8F:16:DB:BE:99:99:22:B9:7C:83:57:79:60:74:9B:F6:A8:C3:56:97:29:CA:AA:B8:57:90:4D:2D:41
    Fingerprint (SHA1):
        84:7A:58:DB:4E:9B:CA:84:B0:D5:8E:87:05:48:E7:D6:90:44:D5:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11303: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11304: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123239 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11305: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11306: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11307: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11308: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123240   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11309: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11310: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11311: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11312: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123241   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA1Root-510123148.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11313: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11314: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11315: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11316: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510123242   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11317: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11318: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11319: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123239 (0x1e67dce7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:35:08 2017
            Not After : Tue May 10 12:35:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:0c:c1:9c:6b:99:07:2f:d7:98:ea:fc:f5:5b:7d:b4:
                    07:6a:d9:ea:2f:bf:5c:88:74:56:9b:bd:a8:ea:22:53:
                    5e:1c:34:4d:29:7c:be:4b:7e:0f:94:31:61:3b:65:75:
                    bb:68:c2:58:ad:46:33:e1:a6:1b:64:f9:06:03:f7:77:
                    91:83:14:c9:a1:84:6a:09:2c:26:a7:69:eb:8b:53:4b:
                    69:2f:e4:f9:7e:b9:84:03:61:fc:16:88:b8:a8:27:48:
                    11:d2:5b:ea:86:2b:88:34:2d:e6:a2:ae:65:16:c7:7a:
                    65:a5:8f:c9:9d:15:7d:e6:06:71:bd:3d:27:11:5a:28:
                    c6:84:cd:97:50:2b:18:7e:b1:aa:42:3c:68:4e:c1:0a:
                    48:fa:f9:92:4f:53:b1:38:90:99:b8:2b:a8:75:f5:7a:
                    6e:c0:1b:9c:21:ef:40:9f:29:69:aa:a5:34:e5:62:de:
                    db:04:4f:99:fc:46:75:d0:20:54:0e:e5:87:89:70:56:
                    b3:6f:27:d1:57:0d:b3:86:0b:3c:8c:15:95:ed:2d:af:
                    48:2b:19:11:83:04:58:17:36:dd:56:a3:de:0a:21:0f:
                    20:c6:f0:ee:e1:3a:7d:c6:f2:d4:4d:71:55:1b:72:72:
                    ec:67:bb:8a:6e:2b:a4:8c:d4:48:ad:f1:59:99:70:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:15:eb:ec:cf:5e:4c:0e:32:59:c6:54:0d:e7:17:50:
        b3:e0:ea:2d:24:e4:27:d6:34:e1:2a:1f:74:84:b7:0e:
        cc:51:54:96:5d:95:4c:28:82:e3:cc:7a:9c:7e:61:02:
        2d:12:a8:98:12:8e:5a:10:ee:9b:82:b4:69:cb:84:06:
        4c:64:5d:05:26:e3:33:9f:b9:74:02:f5:c1:1c:ab:c8:
        09:bb:2b:ac:85:c9:7b:51:fc:4d:2b:03:c1:68:d5:4d:
        5c:55:c2:f3:73:87:57:e4:7c:7c:4b:97:1f:b2:ef:30:
        8d:4d:97:a5:27:15:33:a9:55:f9:96:52:3d:96:0b:f6:
        8c:95:ed:7f:fa:2e:6c:37:16:6a:af:d9:43:7c:45:1a:
        25:29:68:14:65:d3:60:7f:d4:6e:79:88:2c:4c:f9:f0:
        e8:c6:a6:77:a3:5b:92:41:d8:e6:da:88:65:19:b2:5c:
        db:3f:90:22:92:9e:5e:d3:a7:e4:c0:bf:87:c6:c2:3d:
        24:b3:32:79:a8:ed:a5:cf:7d:db:46:3c:0e:84:7a:07:
        75:09:2c:cd:75:23:66:c0:29:5b:3f:6a:ec:73:b4:ca:
        87:ba:d8:29:a3:0d:48:a7:5a:6f:a2:a5:81:54:a1:12:
        22:26:98:1a:fc:17:f3:c0:0c:c0:78:ca:5b:9f:dd:27
    Fingerprint (SHA-256):
        57:0E:C0:CD:32:80:88:56:F4:66:79:1E:9E:9C:13:9F:1E:43:91:00:E9:31:24:31:04:E7:C3:31:9D:9F:6B:3F
    Fingerprint (SHA1):
        AB:E2:BF:E8:17:6C:20:05:F7:33:9D:E6:4F:7E:F8:1E:34:36:04:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11320: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11321: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123243 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11322: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11323: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11324: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123244 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11325: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11326: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11327: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11328: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510123245 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11329: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11330: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510123246 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11331: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11332: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11333: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11334: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11335: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510123247   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510123149.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11336: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11337: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11338: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11339: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123248   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11340: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11341: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11342: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123243 (0x1e67dceb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:35:16 2017
            Not After : Tue May 10 12:35:16 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:03:71:81:31:68:6d:e4:22:39:64:29:7f:2e:c1:5f:
                    0e:7f:9f:95:eb:72:c9:fe:6e:f0:f3:09:b7:d7:84:96:
                    2f:1d:fc:83:42:58:6a:4c:48:e8:6e:0d:ff:8b:6f:0d:
                    09:1b:fe:2d:e4:f7:06:fd:1c:90:6d:b5:11:29:ba:ab:
                    eb:4d:e5:c7:07:eb:fe:78:ff:54:22:3a:cf:59:cc:30:
                    ee:5f:06:5a:70:b8:e6:a1:0c:30:f0:f5:46:03:fe:ec:
                    73:cb:b7:4c:4e:01:bb:c9:8a:c0:2b:c3:bb:4d:63:36:
                    db:16:64:dc:3a:25:24:fc:20:6f:32:56:f4:ed:9d:56:
                    ec:0a:e7:00:e4:03:7a:21:f9:c5:c8:62:6a:71:8c:28:
                    e9:ad:54:f3:41:b9:4c:ae:5f:5e:3b:4f:29:cc:3d:ed:
                    0e:34:a2:3e:d9:d7:de:2a:99:8a:62:3f:10:00:f2:39:
                    71:d3:09:61:65:74:08:97:b0:52:0c:9d:89:99:2f:38:
                    00:a8:91:f0:cd:c5:a7:58:bc:a4:f8:74:07:3f:c1:7b:
                    1c:04:61:aa:a0:15:4d:b0:c3:56:84:5f:41:59:ce:24:
                    95:1a:6f:55:85:61:ef:4b:6b:7f:74:dc:fb:c0:5a:7f:
                    2b:3b:50:bc:3b:ee:c7:db:19:ab:70:b6:6f:86:c2:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:6a:67:cf:79:bc:f7:1b:e2:93:9f:a9:cb:16:1b:30:
        28:e4:29:ea:1a:a9:27:6d:03:92:b6:86:83:38:4e:d5:
        fc:de:20:8f:41:57:d1:50:e6:96:32:d2:48:b1:a1:6e:
        d6:6b:6c:30:d7:dd:b7:49:86:1f:18:4b:83:3e:3c:2d:
        e5:42:8a:53:42:be:4c:b9:6a:58:67:db:71:6f:79:9b:
        59:50:73:14:df:50:27:9b:17:1c:4a:5b:63:18:e9:24:
        e5:87:3a:a9:1c:a3:28:eb:02:2a:33:75:05:0c:2e:8e:
        4d:30:11:20:83:73:80:68:2d:e3:db:1e:2b:69:d8:08:
        55:c6:0b:10:f9:09:26:de:47:d2:e9:78:e8:4a:49:ec:
        75:58:71:f1:06:a9:c3:e3:15:1b:08:e3:95:7d:52:cc:
        18:d9:6a:42:3f:4e:16:23:87:fc:cf:27:0d:c0:76:8f:
        b8:26:cf:de:0f:aa:6c:49:be:fc:e3:bf:d7:cd:90:65:
        b1:6f:23:c8:41:9b:28:f2:0e:33:5e:08:1e:49:54:44:
        82:3f:51:e5:b9:78:1c:03:7c:ca:bb:0b:77:fa:ea:20:
        2a:ec:4f:8a:07:da:d9:d2:21:dc:cf:ee:e6:06:88:f7:
        ee:04:1a:3a:2e:d2:49:09:b1:07:6e:f0:29:ba:e4:33
    Fingerprint (SHA-256):
        CB:B6:34:DA:F6:DD:69:D6:56:AE:BC:E2:4D:72:7D:30:81:71:D4:7E:4B:E9:F3:36:B6:13:86:8E:6C:63:A8:4E
    Fingerprint (SHA1):
        7F:BF:2A:5E:5D:D9:4C:14:69:3D:8B:41:20:4F:2B:4A:1E:89:E5:3B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11343: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123244 (0x1e67dcec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:18 2017
            Not After : Tue May 10 12:35:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:7a:d8:15:86:80:9b:4a:ae:87:28:43:4b:e0:0a:39:
                    08:b3:14:6a:8b:70:0a:b1:51:2e:d4:f2:4b:5b:91:58:
                    3d:e4:6a:ba:23:bd:64:f6:5c:f3:59:d5:d7:7a:92:ac:
                    13:66:ad:86:8d:38:fd:f6:6d:41:3c:fe:58:fb:35:92:
                    d5:af:b3:7b:df:f3:9f:1c:85:36:b7:3c:d9:c5:cd:3f:
                    e1:19:dd:c0:b3:12:13:a8:a6:94:8d:2b:05:9c:86:3a:
                    1e:2a:56:6b:d9:49:44:1e:a8:72:c7:d6:b2:86:ac:b9:
                    0b:27:1b:d5:99:2b:40:68:cd:03:09:38:01:c7:47:69:
                    ab:b0:38:ac:1a:29:5f:60:ad:6a:49:31:a1:cc:1a:82:
                    f6:06:88:e0:b9:69:58:13:11:66:4c:28:1f:87:69:89:
                    1d:4b:ab:67:6c:51:da:30:0b:c3:33:9e:7b:c6:7e:39:
                    de:b6:70:15:9f:0a:1f:49:02:ba:0e:46:d8:4c:7c:a1:
                    ff:86:26:0f:fd:f2:80:ee:0b:6e:1f:94:8e:6d:26:0c:
                    b0:75:ad:41:97:6f:bb:9a:ef:e5:58:02:9c:a8:61:75:
                    c1:e7:ee:c9:ab:5d:df:bc:db:da:87:3f:02:24:3c:33:
                    f8:ab:51:fc:ef:bd:9f:79:82:ef:ac:55:51:09:13:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:f7:49:ae:8c:3c:50:31:a0:3f:87:b0:9b:bf:34:f1:
        13:e1:88:cb:4c:e1:e3:71:30:88:68:b5:18:b0:14:63:
        65:19:8e:ac:04:0e:ed:5a:6a:48:29:d1:6a:9e:6b:6c:
        ae:a6:c3:17:62:f4:f4:d6:f5:22:fc:be:ef:21:ae:bc:
        17:28:25:9d:ac:16:51:fa:90:bc:3b:0c:3b:e6:af:1f:
        40:58:20:8c:2e:ea:43:61:20:7c:4f:59:18:7b:c7:e0:
        e8:e3:54:16:29:5d:d3:15:43:bb:b8:f1:e6:00:cd:c5:
        b5:b5:22:13:07:5b:9f:08:39:a7:f8:81:fc:f5:1f:ad:
        28:35:53:93:b1:6b:56:ed:33:f2:dd:ee:a4:a1:49:e7:
        6e:8e:26:e3:3f:f9:26:2b:ce:c7:1e:aa:99:04:1f:e1:
        3b:0b:b7:bb:b7:b6:25:7f:3b:1b:bc:8e:ca:e7:b9:4a:
        d7:2d:4d:a5:69:c4:d4:73:42:f5:97:18:7d:8f:ab:c2:
        37:59:cc:1d:85:8b:cc:d4:7a:a2:34:0d:31:03:b0:85:
        5a:b4:d0:59:f2:b0:76:28:82:f1:c9:86:25:37:d2:65:
        f4:ab:12:2b:09:40:30:64:de:49:59:cb:ae:de:0b:de:
        ac:7f:e3:78:57:73:eb:ac:f9:d9:75:06:2a:d5:61:95
    Fingerprint (SHA-256):
        08:AA:30:80:9B:E7:FA:62:31:76:AF:C5:D2:91:84:12:11:88:EC:7F:2C:BC:27:C8:90:AF:54:52:2F:AD:BB:BC
    Fingerprint (SHA1):
        CE:A5:DC:79:31:3A:70:C6:26:77:90:3F:18:65:F7:2B:83:B4:6F:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11344: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123244 (0x1e67dcec)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:18 2017
            Not After : Tue May 10 12:35:18 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:7a:d8:15:86:80:9b:4a:ae:87:28:43:4b:e0:0a:39:
                    08:b3:14:6a:8b:70:0a:b1:51:2e:d4:f2:4b:5b:91:58:
                    3d:e4:6a:ba:23:bd:64:f6:5c:f3:59:d5:d7:7a:92:ac:
                    13:66:ad:86:8d:38:fd:f6:6d:41:3c:fe:58:fb:35:92:
                    d5:af:b3:7b:df:f3:9f:1c:85:36:b7:3c:d9:c5:cd:3f:
                    e1:19:dd:c0:b3:12:13:a8:a6:94:8d:2b:05:9c:86:3a:
                    1e:2a:56:6b:d9:49:44:1e:a8:72:c7:d6:b2:86:ac:b9:
                    0b:27:1b:d5:99:2b:40:68:cd:03:09:38:01:c7:47:69:
                    ab:b0:38:ac:1a:29:5f:60:ad:6a:49:31:a1:cc:1a:82:
                    f6:06:88:e0:b9:69:58:13:11:66:4c:28:1f:87:69:89:
                    1d:4b:ab:67:6c:51:da:30:0b:c3:33:9e:7b:c6:7e:39:
                    de:b6:70:15:9f:0a:1f:49:02:ba:0e:46:d8:4c:7c:a1:
                    ff:86:26:0f:fd:f2:80:ee:0b:6e:1f:94:8e:6d:26:0c:
                    b0:75:ad:41:97:6f:bb:9a:ef:e5:58:02:9c:a8:61:75:
                    c1:e7:ee:c9:ab:5d:df:bc:db:da:87:3f:02:24:3c:33:
                    f8:ab:51:fc:ef:bd:9f:79:82:ef:ac:55:51:09:13:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:f7:49:ae:8c:3c:50:31:a0:3f:87:b0:9b:bf:34:f1:
        13:e1:88:cb:4c:e1:e3:71:30:88:68:b5:18:b0:14:63:
        65:19:8e:ac:04:0e:ed:5a:6a:48:29:d1:6a:9e:6b:6c:
        ae:a6:c3:17:62:f4:f4:d6:f5:22:fc:be:ef:21:ae:bc:
        17:28:25:9d:ac:16:51:fa:90:bc:3b:0c:3b:e6:af:1f:
        40:58:20:8c:2e:ea:43:61:20:7c:4f:59:18:7b:c7:e0:
        e8:e3:54:16:29:5d:d3:15:43:bb:b8:f1:e6:00:cd:c5:
        b5:b5:22:13:07:5b:9f:08:39:a7:f8:81:fc:f5:1f:ad:
        28:35:53:93:b1:6b:56:ed:33:f2:dd:ee:a4:a1:49:e7:
        6e:8e:26:e3:3f:f9:26:2b:ce:c7:1e:aa:99:04:1f:e1:
        3b:0b:b7:bb:b7:b6:25:7f:3b:1b:bc:8e:ca:e7:b9:4a:
        d7:2d:4d:a5:69:c4:d4:73:42:f5:97:18:7d:8f:ab:c2:
        37:59:cc:1d:85:8b:cc:d4:7a:a2:34:0d:31:03:b0:85:
        5a:b4:d0:59:f2:b0:76:28:82:f1:c9:86:25:37:d2:65:
        f4:ab:12:2b:09:40:30:64:de:49:59:cb:ae:de:0b:de:
        ac:7f:e3:78:57:73:eb:ac:f9:d9:75:06:2a:d5:61:95
    Fingerprint (SHA-256):
        08:AA:30:80:9B:E7:FA:62:31:76:AF:C5:D2:91:84:12:11:88:EC:7F:2C:BC:27:C8:90:AF:54:52:2F:AD:BB:BC
    Fingerprint (SHA1):
        CE:A5:DC:79:31:3A:70:C6:26:77:90:3F:18:65:F7:2B:83:B4:6F:AE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11345: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11346: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123249 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11347: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11348: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11349: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123250 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11350: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11351: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11352: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11353: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510123251 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11354: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11355: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510123252 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11356: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11357: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11358: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11359: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11360: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510123253   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510123150.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11361: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11362: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11363: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11364: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123254   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11365: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11366: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11367: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11368: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510123255   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-BridgeNavy-510123151.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11369: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11370: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11371: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11372: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510123256   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11373: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11374: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11375: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123249 (0x1e67dcf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:35:28 2017
            Not After : Tue May 10 12:35:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:ed:c6:0d:35:de:14:8a:a9:d0:7d:bf:75:06:c1:0e:
                    76:6a:6d:4e:a9:fb:72:62:50:ad:3b:08:6c:12:67:ce:
                    8a:f1:7c:69:21:6b:d3:84:98:8a:88:b3:4c:dc:99:9f:
                    67:4f:59:f8:d7:a7:12:89:74:d9:2f:cf:b3:58:96:d6:
                    23:a3:66:ef:ee:0a:5f:66:46:94:b1:92:3e:d3:fa:21:
                    3c:bf:90:90:6d:6a:da:0e:53:34:69:72:f8:67:d8:b4:
                    20:15:1c:3e:46:2c:1b:e9:e4:d8:35:ae:48:37:92:25:
                    5c:02:20:88:91:9a:fc:bf:0d:d9:5a:73:8d:9a:fa:f4:
                    d8:50:9e:ba:c5:1e:9b:04:6a:8e:08:78:ee:15:8c:8b:
                    49:9c:f0:f6:a5:08:d2:cc:58:7e:8f:bf:bc:f8:f6:90:
                    70:34:1b:b7:07:bc:d9:97:7e:9c:02:24:a2:6c:2b:7d:
                    79:2e:74:de:b8:1b:67:b0:dc:4f:e2:08:b9:3f:76:67:
                    61:da:5d:a9:02:78:59:d8:c0:28:fa:ee:8c:10:38:80:
                    69:ea:d4:18:25:6d:34:ab:44:66:17:a0:9c:0b:58:1a:
                    f7:35:74:96:1a:50:a5:68:e2:13:7a:f8:e5:b8:2a:36:
                    14:3e:d9:aa:a9:b0:81:fd:5e:e5:7c:16:e8:c9:e3:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:59:f4:cf:7b:c3:ff:aa:4c:ea:79:21:04:c0:3d:4d:
        25:a9:96:7c:23:de:48:90:00:22:37:2d:41:e0:a0:f7:
        9f:c2:2e:5a:7f:0e:97:ba:68:75:00:43:a1:98:6c:6b:
        b6:ca:db:a8:86:3f:03:b4:99:b2:40:82:3e:b0:2b:7c:
        c4:6e:61:53:aa:2b:93:c5:97:72:be:91:ce:04:b3:ee:
        3f:cd:3a:fc:a9:ec:93:3b:6b:fd:d3:d6:aa:ce:b7:33:
        6e:1a:03:3b:cf:2e:52:a6:d9:79:98:45:13:69:66:bd:
        8d:6f:77:5b:b4:05:41:16:6f:a4:7d:b8:82:e3:c5:81:
        c0:2a:78:ab:b5:a8:44:be:2b:c5:a7:02:c5:d5:c1:ed:
        7b:eb:c4:8f:60:fb:dd:97:b5:0f:b3:04:82:61:9f:23:
        42:d3:59:b0:f3:f5:30:a7:89:6f:50:02:f9:ef:29:c3:
        d7:6a:43:00:a8:18:80:f4:77:59:81:25:41:71:4a:26:
        86:42:f9:81:39:64:39:05:fc:12:66:1c:96:56:0d:7b:
        1f:cc:db:21:27:20:c8:83:d7:3b:46:87:36:8e:ec:cb:
        ba:6a:9b:6f:1b:e0:fb:01:15:9c:5d:2b:b9:6c:25:87:
        2b:a1:bc:f1:71:9a:65:4a:21:92:ef:3a:e6:ab:25:fb
    Fingerprint (SHA-256):
        1E:EF:78:07:AF:27:BD:0F:F0:21:0D:F3:D5:98:DC:06:DE:FD:51:81:98:72:B5:B4:73:13:33:AA:21:6C:F0:2D
    Fingerprint (SHA1):
        4C:20:DB:69:CB:25:0D:85:25:5D:68:69:22:95:45:21:C0:35:4E:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11376: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123250 (0x1e67dcf2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:31 2017
            Not After : Tue May 10 12:35:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:87:34:d6:4f:87:0c:8a:3f:c1:90:43:7a:24:00:d7:
                    15:69:40:c7:49:d3:e9:b3:65:51:19:27:e6:47:1c:31:
                    eb:d2:d4:9f:48:3a:39:fc:c2:15:34:a0:8c:9f:4f:a2:
                    46:67:9c:ed:97:bc:3f:46:69:ec:0b:44:a6:a1:c4:c5:
                    a9:ca:76:64:4e:91:a5:c0:4b:46:e6:4f:89:62:f2:de:
                    e4:0d:82:fc:cb:a2:1e:a1:0b:ec:a2:8e:70:90:a0:1f:
                    0a:42:3b:37:e8:6f:8c:a6:1b:c6:a2:87:f4:08:23:48:
                    33:98:51:3d:47:5f:65:eb:e7:1e:ec:ca:4d:2b:49:57:
                    7c:ea:93:ff:44:03:d0:ff:4c:08:cd:f3:6c:aa:dc:e5:
                    fe:c3:1c:f5:7b:9f:95:a0:90:eb:e3:5d:22:61:76:9f:
                    e1:67:e4:f8:58:f8:16:14:8b:b7:b0:65:e9:db:6a:58:
                    23:c1:7d:21:fd:c1:ca:3c:00:3c:b5:42:c9:31:0a:3c:
                    fd:3a:d2:82:4f:46:c4:0f:0a:1a:b6:9d:ed:ec:1c:a5:
                    48:5c:f8:85:62:79:52:8a:49:6d:3b:2f:e4:d7:f1:c9:
                    fb:be:9f:e5:a0:7d:9f:46:b9:c9:c1:a2:00:09:65:6c:
                    30:f2:dd:3f:5b:5b:4b:6e:29:fd:79:27:ff:bc:07:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:3c:42:76:9e:7a:f2:69:22:4c:e0:f6:6b:0f:5b:19:
        12:e5:45:42:73:0b:59:68:5f:d2:fc:2d:86:3a:74:33:
        33:27:d4:5a:83:7f:39:a0:36:4d:07:9e:7b:4b:99:7f:
        66:21:e7:fa:38:c4:e7:7c:3d:c4:a0:ca:b4:54:1b:c2:
        0a:9e:3b:8f:3c:b4:0a:7c:29:7c:35:00:6b:da:1a:69:
        39:69:16:ce:38:8c:45:fb:1b:fa:c6:c6:6a:a1:66:02:
        b5:9e:d4:e3:0b:cf:c0:ef:8a:29:78:e1:86:f1:bb:9d:
        e0:c6:b5:54:2e:43:f5:16:34:1d:c4:c1:ff:4e:c6:4e:
        f9:90:d9:86:41:5e:2d:2e:00:db:fe:be:ab:fe:bd:7d:
        5f:cc:fd:08:ed:9c:39:95:7d:f4:3a:11:0f:5c:ea:70:
        35:ce:e8:ae:a7:af:d8:52:8f:dc:ce:74:f0:97:7b:99:
        ec:76:18:ec:7f:ea:dc:3d:f3:b8:19:56:42:98:2d:ee:
        12:00:0b:d9:97:88:2d:47:28:fe:71:c3:74:5a:d9:97:
        4b:08:10:57:aa:0e:61:73:09:47:0f:52:b2:df:58:72:
        2d:f9:9e:63:ca:0d:26:b3:57:c8:08:a0:94:26:a1:33:
        7c:b6:1e:4d:d2:7c:a0:a0:61:dd:4c:b9:ce:e6:85:ea
    Fingerprint (SHA-256):
        F6:C4:27:76:0A:89:DE:BC:9A:74:5A:11:3F:47:3E:C1:AD:7C:58:2F:77:BA:34:FE:92:70:09:00:41:BE:9F:5A
    Fingerprint (SHA1):
        25:E2:A8:30:52:F6:D6:DD:32:B3:00:9F:FF:A0:69:4C:A2:59:09:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11377: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123250 (0x1e67dcf2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:31 2017
            Not After : Tue May 10 12:35:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:87:34:d6:4f:87:0c:8a:3f:c1:90:43:7a:24:00:d7:
                    15:69:40:c7:49:d3:e9:b3:65:51:19:27:e6:47:1c:31:
                    eb:d2:d4:9f:48:3a:39:fc:c2:15:34:a0:8c:9f:4f:a2:
                    46:67:9c:ed:97:bc:3f:46:69:ec:0b:44:a6:a1:c4:c5:
                    a9:ca:76:64:4e:91:a5:c0:4b:46:e6:4f:89:62:f2:de:
                    e4:0d:82:fc:cb:a2:1e:a1:0b:ec:a2:8e:70:90:a0:1f:
                    0a:42:3b:37:e8:6f:8c:a6:1b:c6:a2:87:f4:08:23:48:
                    33:98:51:3d:47:5f:65:eb:e7:1e:ec:ca:4d:2b:49:57:
                    7c:ea:93:ff:44:03:d0:ff:4c:08:cd:f3:6c:aa:dc:e5:
                    fe:c3:1c:f5:7b:9f:95:a0:90:eb:e3:5d:22:61:76:9f:
                    e1:67:e4:f8:58:f8:16:14:8b:b7:b0:65:e9:db:6a:58:
                    23:c1:7d:21:fd:c1:ca:3c:00:3c:b5:42:c9:31:0a:3c:
                    fd:3a:d2:82:4f:46:c4:0f:0a:1a:b6:9d:ed:ec:1c:a5:
                    48:5c:f8:85:62:79:52:8a:49:6d:3b:2f:e4:d7:f1:c9:
                    fb:be:9f:e5:a0:7d:9f:46:b9:c9:c1:a2:00:09:65:6c:
                    30:f2:dd:3f:5b:5b:4b:6e:29:fd:79:27:ff:bc:07:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:3c:42:76:9e:7a:f2:69:22:4c:e0:f6:6b:0f:5b:19:
        12:e5:45:42:73:0b:59:68:5f:d2:fc:2d:86:3a:74:33:
        33:27:d4:5a:83:7f:39:a0:36:4d:07:9e:7b:4b:99:7f:
        66:21:e7:fa:38:c4:e7:7c:3d:c4:a0:ca:b4:54:1b:c2:
        0a:9e:3b:8f:3c:b4:0a:7c:29:7c:35:00:6b:da:1a:69:
        39:69:16:ce:38:8c:45:fb:1b:fa:c6:c6:6a:a1:66:02:
        b5:9e:d4:e3:0b:cf:c0:ef:8a:29:78:e1:86:f1:bb:9d:
        e0:c6:b5:54:2e:43:f5:16:34:1d:c4:c1:ff:4e:c6:4e:
        f9:90:d9:86:41:5e:2d:2e:00:db:fe:be:ab:fe:bd:7d:
        5f:cc:fd:08:ed:9c:39:95:7d:f4:3a:11:0f:5c:ea:70:
        35:ce:e8:ae:a7:af:d8:52:8f:dc:ce:74:f0:97:7b:99:
        ec:76:18:ec:7f:ea:dc:3d:f3:b8:19:56:42:98:2d:ee:
        12:00:0b:d9:97:88:2d:47:28:fe:71:c3:74:5a:d9:97:
        4b:08:10:57:aa:0e:61:73:09:47:0f:52:b2:df:58:72:
        2d:f9:9e:63:ca:0d:26:b3:57:c8:08:a0:94:26:a1:33:
        7c:b6:1e:4d:d2:7c:a0:a0:61:dd:4c:b9:ce:e6:85:ea
    Fingerprint (SHA-256):
        F6:C4:27:76:0A:89:DE:BC:9A:74:5A:11:3F:47:3E:C1:AD:7C:58:2F:77:BA:34:FE:92:70:09:00:41:BE:9F:5A
    Fingerprint (SHA1):
        25:E2:A8:30:52:F6:D6:DD:32:B3:00:9F:FF:A0:69:4C:A2:59:09:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11378: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11379: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123249 (0x1e67dcf1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:35:28 2017
            Not After : Tue May 10 12:35:28 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:ed:c6:0d:35:de:14:8a:a9:d0:7d:bf:75:06:c1:0e:
                    76:6a:6d:4e:a9:fb:72:62:50:ad:3b:08:6c:12:67:ce:
                    8a:f1:7c:69:21:6b:d3:84:98:8a:88:b3:4c:dc:99:9f:
                    67:4f:59:f8:d7:a7:12:89:74:d9:2f:cf:b3:58:96:d6:
                    23:a3:66:ef:ee:0a:5f:66:46:94:b1:92:3e:d3:fa:21:
                    3c:bf:90:90:6d:6a:da:0e:53:34:69:72:f8:67:d8:b4:
                    20:15:1c:3e:46:2c:1b:e9:e4:d8:35:ae:48:37:92:25:
                    5c:02:20:88:91:9a:fc:bf:0d:d9:5a:73:8d:9a:fa:f4:
                    d8:50:9e:ba:c5:1e:9b:04:6a:8e:08:78:ee:15:8c:8b:
                    49:9c:f0:f6:a5:08:d2:cc:58:7e:8f:bf:bc:f8:f6:90:
                    70:34:1b:b7:07:bc:d9:97:7e:9c:02:24:a2:6c:2b:7d:
                    79:2e:74:de:b8:1b:67:b0:dc:4f:e2:08:b9:3f:76:67:
                    61:da:5d:a9:02:78:59:d8:c0:28:fa:ee:8c:10:38:80:
                    69:ea:d4:18:25:6d:34:ab:44:66:17:a0:9c:0b:58:1a:
                    f7:35:74:96:1a:50:a5:68:e2:13:7a:f8:e5:b8:2a:36:
                    14:3e:d9:aa:a9:b0:81:fd:5e:e5:7c:16:e8:c9:e3:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        67:59:f4:cf:7b:c3:ff:aa:4c:ea:79:21:04:c0:3d:4d:
        25:a9:96:7c:23:de:48:90:00:22:37:2d:41:e0:a0:f7:
        9f:c2:2e:5a:7f:0e:97:ba:68:75:00:43:a1:98:6c:6b:
        b6:ca:db:a8:86:3f:03:b4:99:b2:40:82:3e:b0:2b:7c:
        c4:6e:61:53:aa:2b:93:c5:97:72:be:91:ce:04:b3:ee:
        3f:cd:3a:fc:a9:ec:93:3b:6b:fd:d3:d6:aa:ce:b7:33:
        6e:1a:03:3b:cf:2e:52:a6:d9:79:98:45:13:69:66:bd:
        8d:6f:77:5b:b4:05:41:16:6f:a4:7d:b8:82:e3:c5:81:
        c0:2a:78:ab:b5:a8:44:be:2b:c5:a7:02:c5:d5:c1:ed:
        7b:eb:c4:8f:60:fb:dd:97:b5:0f:b3:04:82:61:9f:23:
        42:d3:59:b0:f3:f5:30:a7:89:6f:50:02:f9:ef:29:c3:
        d7:6a:43:00:a8:18:80:f4:77:59:81:25:41:71:4a:26:
        86:42:f9:81:39:64:39:05:fc:12:66:1c:96:56:0d:7b:
        1f:cc:db:21:27:20:c8:83:d7:3b:46:87:36:8e:ec:cb:
        ba:6a:9b:6f:1b:e0:fb:01:15:9c:5d:2b:b9:6c:25:87:
        2b:a1:bc:f1:71:9a:65:4a:21:92:ef:3a:e6:ab:25:fb
    Fingerprint (SHA-256):
        1E:EF:78:07:AF:27:BD:0F:F0:21:0D:F3:D5:98:DC:06:DE:FD:51:81:98:72:B5:B4:73:13:33:AA:21:6C:F0:2D
    Fingerprint (SHA1):
        4C:20:DB:69:CB:25:0D:85:25:5D:68:69:22:95:45:21:C0:35:4E:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11380: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123250 (0x1e67dcf2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:31 2017
            Not After : Tue May 10 12:35:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:87:34:d6:4f:87:0c:8a:3f:c1:90:43:7a:24:00:d7:
                    15:69:40:c7:49:d3:e9:b3:65:51:19:27:e6:47:1c:31:
                    eb:d2:d4:9f:48:3a:39:fc:c2:15:34:a0:8c:9f:4f:a2:
                    46:67:9c:ed:97:bc:3f:46:69:ec:0b:44:a6:a1:c4:c5:
                    a9:ca:76:64:4e:91:a5:c0:4b:46:e6:4f:89:62:f2:de:
                    e4:0d:82:fc:cb:a2:1e:a1:0b:ec:a2:8e:70:90:a0:1f:
                    0a:42:3b:37:e8:6f:8c:a6:1b:c6:a2:87:f4:08:23:48:
                    33:98:51:3d:47:5f:65:eb:e7:1e:ec:ca:4d:2b:49:57:
                    7c:ea:93:ff:44:03:d0:ff:4c:08:cd:f3:6c:aa:dc:e5:
                    fe:c3:1c:f5:7b:9f:95:a0:90:eb:e3:5d:22:61:76:9f:
                    e1:67:e4:f8:58:f8:16:14:8b:b7:b0:65:e9:db:6a:58:
                    23:c1:7d:21:fd:c1:ca:3c:00:3c:b5:42:c9:31:0a:3c:
                    fd:3a:d2:82:4f:46:c4:0f:0a:1a:b6:9d:ed:ec:1c:a5:
                    48:5c:f8:85:62:79:52:8a:49:6d:3b:2f:e4:d7:f1:c9:
                    fb:be:9f:e5:a0:7d:9f:46:b9:c9:c1:a2:00:09:65:6c:
                    30:f2:dd:3f:5b:5b:4b:6e:29:fd:79:27:ff:bc:07:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:3c:42:76:9e:7a:f2:69:22:4c:e0:f6:6b:0f:5b:19:
        12:e5:45:42:73:0b:59:68:5f:d2:fc:2d:86:3a:74:33:
        33:27:d4:5a:83:7f:39:a0:36:4d:07:9e:7b:4b:99:7f:
        66:21:e7:fa:38:c4:e7:7c:3d:c4:a0:ca:b4:54:1b:c2:
        0a:9e:3b:8f:3c:b4:0a:7c:29:7c:35:00:6b:da:1a:69:
        39:69:16:ce:38:8c:45:fb:1b:fa:c6:c6:6a:a1:66:02:
        b5:9e:d4:e3:0b:cf:c0:ef:8a:29:78:e1:86:f1:bb:9d:
        e0:c6:b5:54:2e:43:f5:16:34:1d:c4:c1:ff:4e:c6:4e:
        f9:90:d9:86:41:5e:2d:2e:00:db:fe:be:ab:fe:bd:7d:
        5f:cc:fd:08:ed:9c:39:95:7d:f4:3a:11:0f:5c:ea:70:
        35:ce:e8:ae:a7:af:d8:52:8f:dc:ce:74:f0:97:7b:99:
        ec:76:18:ec:7f:ea:dc:3d:f3:b8:19:56:42:98:2d:ee:
        12:00:0b:d9:97:88:2d:47:28:fe:71:c3:74:5a:d9:97:
        4b:08:10:57:aa:0e:61:73:09:47:0f:52:b2:df:58:72:
        2d:f9:9e:63:ca:0d:26:b3:57:c8:08:a0:94:26:a1:33:
        7c:b6:1e:4d:d2:7c:a0:a0:61:dd:4c:b9:ce:e6:85:ea
    Fingerprint (SHA-256):
        F6:C4:27:76:0A:89:DE:BC:9A:74:5A:11:3F:47:3E:C1:AD:7C:58:2F:77:BA:34:FE:92:70:09:00:41:BE:9F:5A
    Fingerprint (SHA1):
        25:E2:A8:30:52:F6:D6:DD:32:B3:00:9F:FF:A0:69:4C:A2:59:09:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11381: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123250 (0x1e67dcf2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:31 2017
            Not After : Tue May 10 12:35:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:87:34:d6:4f:87:0c:8a:3f:c1:90:43:7a:24:00:d7:
                    15:69:40:c7:49:d3:e9:b3:65:51:19:27:e6:47:1c:31:
                    eb:d2:d4:9f:48:3a:39:fc:c2:15:34:a0:8c:9f:4f:a2:
                    46:67:9c:ed:97:bc:3f:46:69:ec:0b:44:a6:a1:c4:c5:
                    a9:ca:76:64:4e:91:a5:c0:4b:46:e6:4f:89:62:f2:de:
                    e4:0d:82:fc:cb:a2:1e:a1:0b:ec:a2:8e:70:90:a0:1f:
                    0a:42:3b:37:e8:6f:8c:a6:1b:c6:a2:87:f4:08:23:48:
                    33:98:51:3d:47:5f:65:eb:e7:1e:ec:ca:4d:2b:49:57:
                    7c:ea:93:ff:44:03:d0:ff:4c:08:cd:f3:6c:aa:dc:e5:
                    fe:c3:1c:f5:7b:9f:95:a0:90:eb:e3:5d:22:61:76:9f:
                    e1:67:e4:f8:58:f8:16:14:8b:b7:b0:65:e9:db:6a:58:
                    23:c1:7d:21:fd:c1:ca:3c:00:3c:b5:42:c9:31:0a:3c:
                    fd:3a:d2:82:4f:46:c4:0f:0a:1a:b6:9d:ed:ec:1c:a5:
                    48:5c:f8:85:62:79:52:8a:49:6d:3b:2f:e4:d7:f1:c9:
                    fb:be:9f:e5:a0:7d:9f:46:b9:c9:c1:a2:00:09:65:6c:
                    30:f2:dd:3f:5b:5b:4b:6e:29:fd:79:27:ff:bc:07:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:3c:42:76:9e:7a:f2:69:22:4c:e0:f6:6b:0f:5b:19:
        12:e5:45:42:73:0b:59:68:5f:d2:fc:2d:86:3a:74:33:
        33:27:d4:5a:83:7f:39:a0:36:4d:07:9e:7b:4b:99:7f:
        66:21:e7:fa:38:c4:e7:7c:3d:c4:a0:ca:b4:54:1b:c2:
        0a:9e:3b:8f:3c:b4:0a:7c:29:7c:35:00:6b:da:1a:69:
        39:69:16:ce:38:8c:45:fb:1b:fa:c6:c6:6a:a1:66:02:
        b5:9e:d4:e3:0b:cf:c0:ef:8a:29:78:e1:86:f1:bb:9d:
        e0:c6:b5:54:2e:43:f5:16:34:1d:c4:c1:ff:4e:c6:4e:
        f9:90:d9:86:41:5e:2d:2e:00:db:fe:be:ab:fe:bd:7d:
        5f:cc:fd:08:ed:9c:39:95:7d:f4:3a:11:0f:5c:ea:70:
        35:ce:e8:ae:a7:af:d8:52:8f:dc:ce:74:f0:97:7b:99:
        ec:76:18:ec:7f:ea:dc:3d:f3:b8:19:56:42:98:2d:ee:
        12:00:0b:d9:97:88:2d:47:28:fe:71:c3:74:5a:d9:97:
        4b:08:10:57:aa:0e:61:73:09:47:0f:52:b2:df:58:72:
        2d:f9:9e:63:ca:0d:26:b3:57:c8:08:a0:94:26:a1:33:
        7c:b6:1e:4d:d2:7c:a0:a0:61:dd:4c:b9:ce:e6:85:ea
    Fingerprint (SHA-256):
        F6:C4:27:76:0A:89:DE:BC:9A:74:5A:11:3F:47:3E:C1:AD:7C:58:2F:77:BA:34:FE:92:70:09:00:41:BE:9F:5A
    Fingerprint (SHA1):
        25:E2:A8:30:52:F6:D6:DD:32:B3:00:9F:FF:A0:69:4C:A2:59:09:40
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11382: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11383: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123257 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11384: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11385: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11386: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123258 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11387: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11388: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11389: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11390: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510123259   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11391: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11392: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11393: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11394: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510123260   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11395: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11396: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11397: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11398: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510123261 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11399: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11400: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510123262 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11401: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11402: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11403: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11404: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11405: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510123263   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11406: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11407: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11408: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11409: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510123264   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11410: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11411: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11412: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11413: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123265   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11414: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11415: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11416: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11417: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510123266   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11418: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11419: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11420: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123257 (0x1e67dcf9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:35:45 2017
            Not After : Tue May 10 12:35:45 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    df:1a:4c:bc:a9:a3:95:f3:b2:30:f7:18:63:19:48:79:
                    9b:0a:2e:b1:d3:73:b1:20:ef:ec:d3:80:f4:cf:a8:b6:
                    62:ef:79:93:43:f1:14:cd:08:f7:8b:5c:a6:9a:b1:15:
                    67:39:d1:da:4a:33:24:9e:a5:a0:94:ec:d8:ff:0d:32:
                    26:ca:28:d0:b8:87:ee:49:b4:ea:52:e8:df:fc:03:4e:
                    d2:bf:df:43:6a:0d:ae:23:93:63:0e:84:c7:ee:6a:08:
                    b8:cc:c5:26:12:7f:61:19:65:3f:8d:c3:12:f7:06:97:
                    7e:cf:f2:4d:3a:79:ee:90:16:3d:a6:e3:8e:d3:6b:85:
                    bc:7f:06:8e:6d:11:03:52:de:d6:ff:26:06:60:f4:17:
                    d3:f1:49:5a:51:60:3d:39:d6:69:9e:82:46:65:5b:15:
                    2c:ee:4d:62:6d:90:e9:a0:33:ac:08:02:f9:6f:fb:3b:
                    28:c4:80:52:df:fe:42:bd:c5:d8:66:06:4c:eb:af:5f:
                    2c:94:ec:c2:09:e5:2c:52:1f:5a:dc:6f:82:f5:ce:85:
                    83:b9:49:a6:36:63:44:de:13:9c:33:98:18:e3:ae:f7:
                    94:0f:54:b6:96:c8:3c:2f:e6:db:2f:69:07:00:70:b8:
                    e8:a9:24:fc:52:2d:81:85:26:92:30:78:c8:16:4e:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d2:76:c9:64:ac:6b:1f:5f:d7:ba:3b:1c:1f:83:5e:eb:
        45:3d:2e:6d:18:2e:45:40:4f:bc:5d:5a:2c:f2:a7:db:
        d6:79:8b:c8:cb:9a:12:91:ef:9e:f4:dc:fa:56:a2:c4:
        95:85:f9:4c:a0:e2:37:8a:59:e0:ec:2c:64:58:29:00:
        a0:db:a9:87:9b:8e:68:55:ce:bb:90:0d:a6:a9:fe:63:
        c9:40:00:15:12:c6:6b:cc:6c:23:49:52:64:cd:ff:e9:
        eb:24:d2:0d:a7:4c:9d:eb:b1:6c:d0:7a:16:37:58:a8:
        7c:16:55:ac:15:c5:c9:35:93:b0:2f:24:42:5e:67:21:
        8c:93:ad:35:68:ed:90:f2:65:fc:78:0b:9a:9a:f8:fc:
        30:a3:87:6b:13:19:01:e9:45:dc:de:ea:74:10:60:27:
        e2:55:9b:6c:d3:68:a8:a5:26:7e:45:f9:8f:d8:f9:3b:
        9c:62:be:b7:2e:82:6f:c0:58:c0:f2:04:a3:57:81:cf:
        5e:17:5f:43:f1:80:e5:b2:6b:e3:20:ea:55:cf:bc:dc:
        88:45:d4:7d:49:56:28:62:79:7c:58:c3:3b:51:2a:52:
        23:e3:ed:b7:31:72:10:aa:4d:f6:3f:ad:65:a7:15:02:
        23:7c:8a:90:fd:f5:24:72:77:3b:24:77:1a:ca:30:9f
    Fingerprint (SHA-256):
        F5:23:2B:0B:11:D8:04:17:FC:57:B5:41:E8:27:0E:29:E6:9B:DE:42:87:57:39:6F:B6:4F:20:33:75:C4:08:A9
    Fingerprint (SHA1):
        9C:04:E1:68:31:E5:FC:2E:75:B8:89:04:32:EE:1A:02:C6:13:B9:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11421: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11422: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11423: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11424: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11425: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11426: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11427: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11428: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11429: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123258 (0x1e67dcfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:35:47 2017
            Not After : Tue May 10 12:35:47 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f1:f8:eb:77:74:0c:4f:3d:36:2e:9f:d1:8c:85:ce:db:
                    db:f6:da:2d:92:b8:68:4b:a5:6c:9e:06:93:73:e8:64:
                    83:ef:2c:29:fc:ac:65:91:27:be:9f:f2:84:55:5a:8d:
                    fd:c2:55:81:cd:d1:04:61:90:e6:0f:31:02:c3:c2:2c:
                    32:52:65:4c:20:19:61:5c:65:eb:ae:a0:1b:43:01:62:
                    ac:2a:cf:9b:c2:fd:37:7c:d7:62:d3:4e:e4:73:d4:7a:
                    cf:ef:aa:c5:12:d9:82:5e:f0:54:2d:c6:dc:6b:f9:56:
                    c1:d1:bc:14:a5:c0:8b:20:f8:a1:e4:00:aa:de:54:9c:
                    08:16:dd:45:4f:18:b1:e8:9a:28:f1:89:41:a1:f7:42:
                    a1:51:2f:0b:de:b3:c0:6d:8c:ca:2a:61:6b:08:2e:a7:
                    ff:c9:6a:45:a2:70:8e:6b:d0:9f:db:7d:9c:d6:25:ad:
                    d3:17:cf:10:42:33:da:52:6c:84:92:c0:83:c2:7c:0c:
                    ee:f0:62:29:e0:d8:58:a7:78:6a:ba:ad:c1:09:af:5b:
                    d0:c9:7e:96:33:47:8d:81:40:cd:ab:87:ee:69:ee:71:
                    5c:fa:a5:ce:24:b1:c8:8e:97:e0:46:9c:e2:40:7f:2e:
                    f2:b9:d3:e3:c7:bc:bb:38:41:aa:01:89:e2:0e:51:df
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:66:3c:97:4d:ed:25:25:34:3d:c4:2b:83:6f:d4:b6:
        74:11:7a:8b:a5:3b:98:53:57:cd:f5:86:13:d7:8d:4c:
        39:24:b2:5c:b3:5b:2c:c4:5c:50:70:32:11:3f:c5:f1:
        54:49:26:22:9b:8c:1d:53:39:f1:05:dc:c0:38:09:38:
        19:91:8e:c0:a4:67:d3:69:48:13:d9:f8:7e:73:51:40:
        43:dd:dc:26:a5:81:35:0e:af:f7:60:56:ef:7a:f7:71:
        43:22:2d:e7:e7:5e:fd:9a:a7:9f:44:2b:1a:26:45:2a:
        1a:bc:3c:cd:5c:90:88:17:de:ac:c9:0c:76:b7:3a:0c:
        6d:c1:fb:af:9d:53:e1:c9:6d:38:c8:a8:e6:b0:e1:86:
        12:42:35:a9:50:6e:52:52:4f:b7:12:1b:e8:11:c8:b5:
        d7:73:77:90:e2:13:bf:46:b8:40:4c:c4:ae:b9:d4:1a:
        4b:eb:92:07:3f:e0:62:85:d6:17:97:69:c2:0f:e0:78:
        58:df:91:29:4d:9d:1d:5f:e5:78:a3:1d:81:e9:ce:85:
        9b:c8:67:53:e1:1f:51:d5:c9:af:87:a2:15:fa:fc:4d:
        ca:2a:be:00:f5:e2:99:c2:16:71:d1:a8:d4:18:d2:0d:
        64:89:6a:3a:d1:cc:e0:de:28:9b:e7:9f:3e:84:8a:68
    Fingerprint (SHA-256):
        BD:88:93:7A:18:50:E3:B5:AE:ED:44:55:FB:97:03:5B:AE:37:E0:A0:B5:88:8C:B5:7D:15:5B:E7:97:0F:89:4E
    Fingerprint (SHA1):
        DB:72:F8:58:D9:5C:29:40:5D:D2:DD:6C:10:BA:C0:0D:BC:B8:63:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11430: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11431: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11432: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11433: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11434: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11435: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11436: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11437: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11438: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11439: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11440: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11441: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11442: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11443: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11444: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11445: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11446: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11447: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11448: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123267 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11449: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11450: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11451: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11452: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123268   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11453: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11454: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11455: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11456: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123269   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11457: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11458: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11459: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11460: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510123270   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11461: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11462: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11463: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11464: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510123271   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11465: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11466: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11467: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11468: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510123272   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11469: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11470: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11471: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11472: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510123273   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11473: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11474: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11475: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11476: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510123274   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11477: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11478: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11479: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11480: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510123275   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11481: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11482: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11483: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123267 (0x1e67dd03)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:08 2017
            Not After : Tue May 10 12:36:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    37:e1:11:7f:bd:4b:f1:75:5c:a4:76:3c:48:31:51:a5:
                    99:7d:af:80:9e:47:3f:7a:c6:c7:65:fe:4b:d1:8c:37:
                    cd:50:ae:fd:d4:dd:01:3b:8c:8a:6d:95:5f:40:1d:c8:
                    4c:60:b9:8f:6b:f2:f5:ac:65:6f:ce:3c:96:05:e9:c4:
                    b7:fc:78:11:0a:71:9a:15:46:94:ca:3f:ff:21:8e:36:
                    2e:46:ef:0c:d5:df:6d:ee:a5:5f:b6:fe:4d:15:31:b6:
                    49:fe:de:fc:b2:f3:68:3a:87:3e:56:10:f4:c2:65:15:
                    09:d2:3e:ce:da:88:10:c1:13:3d:1f:6e:51:af:2a:21:
                    88:5a:78:5e:d0:ae:85:4c:b8:ca:81:7f:cf:e3:57:d9:
                    4c:b6:97:21:c2:e7:46:8f:ee:7b:14:b7:1a:df:9e:ec:
                    cf:2f:b6:bb:78:2b:4b:d4:9e:02:3d:e3:f9:39:83:8d:
                    c5:b4:ee:c6:0a:1b:9b:76:33:e6:87:23:36:b3:0b:b9:
                    a5:e1:0f:01:7c:3f:d1:1c:6f:ca:34:23:4c:75:60:50:
                    44:23:93:17:0d:6a:d9:47:21:af:31:ef:90:44:84:fb:
                    d4:61:3d:a3:3d:c6:92:40:ec:a1:2a:ef:75:19:4a:81:
                    69:00:31:21:c0:04:9a:01:9f:bb:28:69:59:fa:22:39
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b0:d4:9b:cb:0c:9d:8c:05:11:47:a2:
        f9:6e:ce:1c:a7:d9:ea:d4:5c:48:38:61:6b:37:7f:61:
        5f:02:1d:00:ca:c9:e5:69:2a:6a:e4:35:e7:c6:d8:b4:
        df:e1:67:86:96:5d:6f:af:1d:35:cb:4e:b2:e7:44:c1
    Fingerprint (SHA-256):
        BB:88:48:56:82:AC:63:42:FE:00:4C:FE:01:ED:6E:88:59:D6:38:AA:4D:8D:B0:4D:18:4F:D2:FC:15:98:B2:20
    Fingerprint (SHA1):
        45:47:02:9F:80:42:8D:D2:E9:2D:51:47:3A:2E:B5:07:21:7A:AB:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11484: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123267 (0x1e67dd03)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:08 2017
            Not After : Tue May 10 12:36:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    37:e1:11:7f:bd:4b:f1:75:5c:a4:76:3c:48:31:51:a5:
                    99:7d:af:80:9e:47:3f:7a:c6:c7:65:fe:4b:d1:8c:37:
                    cd:50:ae:fd:d4:dd:01:3b:8c:8a:6d:95:5f:40:1d:c8:
                    4c:60:b9:8f:6b:f2:f5:ac:65:6f:ce:3c:96:05:e9:c4:
                    b7:fc:78:11:0a:71:9a:15:46:94:ca:3f:ff:21:8e:36:
                    2e:46:ef:0c:d5:df:6d:ee:a5:5f:b6:fe:4d:15:31:b6:
                    49:fe:de:fc:b2:f3:68:3a:87:3e:56:10:f4:c2:65:15:
                    09:d2:3e:ce:da:88:10:c1:13:3d:1f:6e:51:af:2a:21:
                    88:5a:78:5e:d0:ae:85:4c:b8:ca:81:7f:cf:e3:57:d9:
                    4c:b6:97:21:c2:e7:46:8f:ee:7b:14:b7:1a:df:9e:ec:
                    cf:2f:b6:bb:78:2b:4b:d4:9e:02:3d:e3:f9:39:83:8d:
                    c5:b4:ee:c6:0a:1b:9b:76:33:e6:87:23:36:b3:0b:b9:
                    a5:e1:0f:01:7c:3f:d1:1c:6f:ca:34:23:4c:75:60:50:
                    44:23:93:17:0d:6a:d9:47:21:af:31:ef:90:44:84:fb:
                    d4:61:3d:a3:3d:c6:92:40:ec:a1:2a:ef:75:19:4a:81:
                    69:00:31:21:c0:04:9a:01:9f:bb:28:69:59:fa:22:39
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b0:d4:9b:cb:0c:9d:8c:05:11:47:a2:
        f9:6e:ce:1c:a7:d9:ea:d4:5c:48:38:61:6b:37:7f:61:
        5f:02:1d:00:ca:c9:e5:69:2a:6a:e4:35:e7:c6:d8:b4:
        df:e1:67:86:96:5d:6f:af:1d:35:cb:4e:b2:e7:44:c1
    Fingerprint (SHA-256):
        BB:88:48:56:82:AC:63:42:FE:00:4C:FE:01:ED:6E:88:59:D6:38:AA:4D:8D:B0:4D:18:4F:D2:FC:15:98:B2:20
    Fingerprint (SHA1):
        45:47:02:9F:80:42:8D:D2:E9:2D:51:47:3A:2E:B5:07:21:7A:AB:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11485: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123267 (0x1e67dd03)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:08 2017
            Not After : Tue May 10 12:36:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    37:e1:11:7f:bd:4b:f1:75:5c:a4:76:3c:48:31:51:a5:
                    99:7d:af:80:9e:47:3f:7a:c6:c7:65:fe:4b:d1:8c:37:
                    cd:50:ae:fd:d4:dd:01:3b:8c:8a:6d:95:5f:40:1d:c8:
                    4c:60:b9:8f:6b:f2:f5:ac:65:6f:ce:3c:96:05:e9:c4:
                    b7:fc:78:11:0a:71:9a:15:46:94:ca:3f:ff:21:8e:36:
                    2e:46:ef:0c:d5:df:6d:ee:a5:5f:b6:fe:4d:15:31:b6:
                    49:fe:de:fc:b2:f3:68:3a:87:3e:56:10:f4:c2:65:15:
                    09:d2:3e:ce:da:88:10:c1:13:3d:1f:6e:51:af:2a:21:
                    88:5a:78:5e:d0:ae:85:4c:b8:ca:81:7f:cf:e3:57:d9:
                    4c:b6:97:21:c2:e7:46:8f:ee:7b:14:b7:1a:df:9e:ec:
                    cf:2f:b6:bb:78:2b:4b:d4:9e:02:3d:e3:f9:39:83:8d:
                    c5:b4:ee:c6:0a:1b:9b:76:33:e6:87:23:36:b3:0b:b9:
                    a5:e1:0f:01:7c:3f:d1:1c:6f:ca:34:23:4c:75:60:50:
                    44:23:93:17:0d:6a:d9:47:21:af:31:ef:90:44:84:fb:
                    d4:61:3d:a3:3d:c6:92:40:ec:a1:2a:ef:75:19:4a:81:
                    69:00:31:21:c0:04:9a:01:9f:bb:28:69:59:fa:22:39
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b0:d4:9b:cb:0c:9d:8c:05:11:47:a2:
        f9:6e:ce:1c:a7:d9:ea:d4:5c:48:38:61:6b:37:7f:61:
        5f:02:1d:00:ca:c9:e5:69:2a:6a:e4:35:e7:c6:d8:b4:
        df:e1:67:86:96:5d:6f:af:1d:35:cb:4e:b2:e7:44:c1
    Fingerprint (SHA-256):
        BB:88:48:56:82:AC:63:42:FE:00:4C:FE:01:ED:6E:88:59:D6:38:AA:4D:8D:B0:4D:18:4F:D2:FC:15:98:B2:20
    Fingerprint (SHA1):
        45:47:02:9F:80:42:8D:D2:E9:2D:51:47:3A:2E:B5:07:21:7A:AB:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11486: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123267 (0x1e67dd03)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:08 2017
            Not After : Tue May 10 12:36:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    37:e1:11:7f:bd:4b:f1:75:5c:a4:76:3c:48:31:51:a5:
                    99:7d:af:80:9e:47:3f:7a:c6:c7:65:fe:4b:d1:8c:37:
                    cd:50:ae:fd:d4:dd:01:3b:8c:8a:6d:95:5f:40:1d:c8:
                    4c:60:b9:8f:6b:f2:f5:ac:65:6f:ce:3c:96:05:e9:c4:
                    b7:fc:78:11:0a:71:9a:15:46:94:ca:3f:ff:21:8e:36:
                    2e:46:ef:0c:d5:df:6d:ee:a5:5f:b6:fe:4d:15:31:b6:
                    49:fe:de:fc:b2:f3:68:3a:87:3e:56:10:f4:c2:65:15:
                    09:d2:3e:ce:da:88:10:c1:13:3d:1f:6e:51:af:2a:21:
                    88:5a:78:5e:d0:ae:85:4c:b8:ca:81:7f:cf:e3:57:d9:
                    4c:b6:97:21:c2:e7:46:8f:ee:7b:14:b7:1a:df:9e:ec:
                    cf:2f:b6:bb:78:2b:4b:d4:9e:02:3d:e3:f9:39:83:8d:
                    c5:b4:ee:c6:0a:1b:9b:76:33:e6:87:23:36:b3:0b:b9:
                    a5:e1:0f:01:7c:3f:d1:1c:6f:ca:34:23:4c:75:60:50:
                    44:23:93:17:0d:6a:d9:47:21:af:31:ef:90:44:84:fb:
                    d4:61:3d:a3:3d:c6:92:40:ec:a1:2a:ef:75:19:4a:81:
                    69:00:31:21:c0:04:9a:01:9f:bb:28:69:59:fa:22:39
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b0:d4:9b:cb:0c:9d:8c:05:11:47:a2:
        f9:6e:ce:1c:a7:d9:ea:d4:5c:48:38:61:6b:37:7f:61:
        5f:02:1d:00:ca:c9:e5:69:2a:6a:e4:35:e7:c6:d8:b4:
        df:e1:67:86:96:5d:6f:af:1d:35:cb:4e:b2:e7:44:c1
    Fingerprint (SHA-256):
        BB:88:48:56:82:AC:63:42:FE:00:4C:FE:01:ED:6E:88:59:D6:38:AA:4D:8D:B0:4D:18:4F:D2:FC:15:98:B2:20
    Fingerprint (SHA1):
        45:47:02:9F:80:42:8D:D2:E9:2D:51:47:3A:2E:B5:07:21:7A:AB:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #11487: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11488: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11489: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11490: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11491: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11492: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11493: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11494: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11495: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11496: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11497: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11498: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11499: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11500: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11501: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11502: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #11503: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11504: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11505: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11506: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11507: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11508: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11509: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11510: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11511: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11512: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11513: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11514: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510123636Z
nextupdate=20180510123636Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:36:36 2017
    Next Update: Thu May 10 12:36:36 2018
    CRL Extensions:
chains.sh: #11515: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510123636Z
nextupdate=20180510123636Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:36:36 2017
    Next Update: Thu May 10 12:36:36 2018
    CRL Extensions:
chains.sh: #11516: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510123637Z
nextupdate=20180510123637Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:36:37 2017
    Next Update: Thu May 10 12:36:37 2018
    CRL Extensions:
chains.sh: #11517: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510123637Z
nextupdate=20180510123637Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:36:37 2017
    Next Update: Thu May 10 12:36:37 2018
    CRL Extensions:
chains.sh: #11518: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510123638Z
addcert 14 20170510123638Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:36:38 2017
    Next Update: Thu May 10 12:36:37 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:36:38 2017
    CRL Extensions:
chains.sh: #11519: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510123639Z
addcert 15 20170510123639Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:36:39 2017
    Next Update: Thu May 10 12:36:36 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:36:39 2017
    CRL Extensions:
chains.sh: #11520: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11521: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11522: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11523: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #11524: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #11525: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #11526: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #11527: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #11528: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #11529: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:23 2017
            Not After : Tue May 10 12:36:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:cc:a5:44:b4:ab:da:d6:81:1f:34:97:d7:3a:91:45:
                    dc:42:3a:12:cf:7c:91:70:3f:4d:05:0e:40:3b:27:53:
                    ef:df:46:3a:a9:d8:ae:71:12:89:b5:99:cd:ad:f0:bf:
                    15:ed:4b:90:b4:1d:28:64:54:92:3a:3d:c4:ed:43:19:
                    23:4d:4f:a6:81:67:65:7a:79:97:38:84:d9:9c:80:e0:
                    e0:03:52:70:f5:c6:c1:03:bf:08:aa:7f:76:1e:78:89:
                    29:d1:82:b4:a8:5d:8d:45:d7:33:f7:28:2c:d8:e9:87:
                    98:45:4c:7c:2c:52:05:fc:81:ac:6d:7e:35:d0:9a:25:
                    1e:27:f7:58:de:12:78:91:91:c7:b7:41:ac:ea:74:ad:
                    d3:0b:3f:65:56:24:33:8d:5c:a5:29:6b:4c:17:91:b9:
                    1c:6a:7a:e8:54:d5:de:93:88:c9:b0:9c:da:93:c9:c5:
                    6a:96:f1:28:d5:b6:83:b8:30:0c:8f:dd:6b:92:53:42:
                    0c:fa:47:3d:04:0f:a0:80:a3:e0:28:fc:87:05:47:be:
                    b0:24:5a:2d:45:a2:d2:91:40:5b:42:5a:0f:fe:01:9d:
                    0d:cc:77:95:ca:8b:82:c4:e8:ce:21:c2:a5:b0:69:19:
                    a0:d6:f5:00:41:ea:ca:6a:8f:b5:65:b0:fd:11:b1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:1c:40:de:ad:83:dc:4e:d6:82:9b:f7:90:e6:c9:69:
        95:1f:23:4a:d3:35:6e:df:8d:b9:22:b8:90:20:ce:98:
        7c:18:04:31:53:e4:ad:92:3c:85:5c:83:8f:24:f1:79:
        83:b3:05:f9:2a:c1:00:59:85:b7:9a:c4:9b:8e:86:17:
        83:9e:ee:f8:ff:c3:6c:4e:4a:e2:c6:77:67:43:88:cf:
        8c:85:2a:30:76:5c:05:e5:7c:a6:f9:f4:19:cf:f6:32:
        8d:1a:a2:a8:c2:78:53:bd:7a:77:fc:c4:c2:f4:d6:4f:
        ed:ca:98:c6:d7:6b:6f:63:34:8a:3d:c8:79:10:06:f3:
        45:f1:af:21:4a:d6:77:69:ce:f1:54:88:5c:1f:ed:7c:
        c3:ce:15:8c:f5:58:c3:13:c9:37:d5:4f:ef:1f:fb:10:
        8b:35:40:63:38:49:77:b8:06:9f:91:43:f1:7d:a9:91:
        82:76:41:cb:59:11:80:c8:6f:ea:fb:b7:91:9d:93:bd:
        2b:a6:0d:b4:8b:86:be:ab:80:79:4b:3e:c1:5f:dd:bf:
        90:ce:ee:01:ea:ee:98:62:99:ca:a3:39:a3:f1:54:a7:
        98:18:8e:33:46:c6:58:28:df:7f:e7:02:3c:c3:c2:1a:
        6e:74:19:37:50:8a:05:33:90:68:3d:3c:1e:95:f1:ff
    Fingerprint (SHA-256):
        50:41:2B:3E:07:42:30:9D:34:D9:1A:D7:44:32:3C:8D:E4:0E:65:4B:B5:92:02:90:7B:ED:75:96:B6:CC:FB:FE
    Fingerprint (SHA1):
        37:6B:E1:C8:12:6E:02:B8:2A:5E:98:A0:EF:C1:2C:CA:99:49:40:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11530: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11531: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:23 2017
            Not After : Tue May 10 12:36:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e3:cc:a5:44:b4:ab:da:d6:81:1f:34:97:d7:3a:91:45:
                    dc:42:3a:12:cf:7c:91:70:3f:4d:05:0e:40:3b:27:53:
                    ef:df:46:3a:a9:d8:ae:71:12:89:b5:99:cd:ad:f0:bf:
                    15:ed:4b:90:b4:1d:28:64:54:92:3a:3d:c4:ed:43:19:
                    23:4d:4f:a6:81:67:65:7a:79:97:38:84:d9:9c:80:e0:
                    e0:03:52:70:f5:c6:c1:03:bf:08:aa:7f:76:1e:78:89:
                    29:d1:82:b4:a8:5d:8d:45:d7:33:f7:28:2c:d8:e9:87:
                    98:45:4c:7c:2c:52:05:fc:81:ac:6d:7e:35:d0:9a:25:
                    1e:27:f7:58:de:12:78:91:91:c7:b7:41:ac:ea:74:ad:
                    d3:0b:3f:65:56:24:33:8d:5c:a5:29:6b:4c:17:91:b9:
                    1c:6a:7a:e8:54:d5:de:93:88:c9:b0:9c:da:93:c9:c5:
                    6a:96:f1:28:d5:b6:83:b8:30:0c:8f:dd:6b:92:53:42:
                    0c:fa:47:3d:04:0f:a0:80:a3:e0:28:fc:87:05:47:be:
                    b0:24:5a:2d:45:a2:d2:91:40:5b:42:5a:0f:fe:01:9d:
                    0d:cc:77:95:ca:8b:82:c4:e8:ce:21:c2:a5:b0:69:19:
                    a0:d6:f5:00:41:ea:ca:6a:8f:b5:65:b0:fd:11:b1:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:1c:40:de:ad:83:dc:4e:d6:82:9b:f7:90:e6:c9:69:
        95:1f:23:4a:d3:35:6e:df:8d:b9:22:b8:90:20:ce:98:
        7c:18:04:31:53:e4:ad:92:3c:85:5c:83:8f:24:f1:79:
        83:b3:05:f9:2a:c1:00:59:85:b7:9a:c4:9b:8e:86:17:
        83:9e:ee:f8:ff:c3:6c:4e:4a:e2:c6:77:67:43:88:cf:
        8c:85:2a:30:76:5c:05:e5:7c:a6:f9:f4:19:cf:f6:32:
        8d:1a:a2:a8:c2:78:53:bd:7a:77:fc:c4:c2:f4:d6:4f:
        ed:ca:98:c6:d7:6b:6f:63:34:8a:3d:c8:79:10:06:f3:
        45:f1:af:21:4a:d6:77:69:ce:f1:54:88:5c:1f:ed:7c:
        c3:ce:15:8c:f5:58:c3:13:c9:37:d5:4f:ef:1f:fb:10:
        8b:35:40:63:38:49:77:b8:06:9f:91:43:f1:7d:a9:91:
        82:76:41:cb:59:11:80:c8:6f:ea:fb:b7:91:9d:93:bd:
        2b:a6:0d:b4:8b:86:be:ab:80:79:4b:3e:c1:5f:dd:bf:
        90:ce:ee:01:ea:ee:98:62:99:ca:a3:39:a3:f1:54:a7:
        98:18:8e:33:46:c6:58:28:df:7f:e7:02:3c:c3:c2:1a:
        6e:74:19:37:50:8a:05:33:90:68:3d:3c:1e:95:f1:ff
    Fingerprint (SHA-256):
        50:41:2B:3E:07:42:30:9D:34:D9:1A:D7:44:32:3C:8D:E4:0E:65:4B:B5:92:02:90:7B:ED:75:96:B6:CC:FB:FE
    Fingerprint (SHA1):
        37:6B:E1:C8:12:6E:02:B8:2A:5E:98:A0:EF:C1:2C:CA:99:49:40:73
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11532: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11533: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11534: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123276 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11535: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11536: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11537: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11538: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510123277   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11539: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11540: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11541: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123167.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11542: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123152.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11543: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11544: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11545: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123167.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11546: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510123278   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11547: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11548: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11549: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123167.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11550: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123153.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11551: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11552: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11553: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11554: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510123279   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11555: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11556: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11557: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123167.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11558: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123154.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11559: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11560: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11561: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123167.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11562: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123155.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11563: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11564: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510123701Z
nextupdate=20180510123701Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:37:01 2017
    Next Update: Thu May 10 12:37:01 2018
    CRL Extensions:
chains.sh: #11565: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510123702Z
nextupdate=20180510123702Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:37:02 2017
    Next Update: Thu May 10 12:37:02 2018
    CRL Extensions:
chains.sh: #11566: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510123702Z
nextupdate=20180510123702Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:37:02 2017
    Next Update: Thu May 10 12:37:02 2018
    CRL Extensions:
chains.sh: #11567: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510123702Z
nextupdate=20180510123702Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:37:02 2017
    Next Update: Thu May 10 12:37:02 2018
    CRL Extensions:
chains.sh: #11568: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510123703Z
addcert 20 20170510123703Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:37:03 2017
    Next Update: Thu May 10 12:37:02 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:37:03 2017
    CRL Extensions:
chains.sh: #11569: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510123704Z
addcert 40 20170510123704Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:37:04 2017
    Next Update: Thu May 10 12:37:02 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:37:03 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:37:04 2017
    CRL Extensions:
chains.sh: #11570: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11571: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11572: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11573: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123276 (0x1e67dd0c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:47 2017
            Not After : Tue May 10 12:36:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:ca:9e:1d:52:d7:7b:e0:dd:42:59:c0:e8:b2:13:22:
                    84:a6:19:73:a6:31:e5:f9:9f:58:76:0b:02:51:48:64:
                    d6:c6:b0:77:1d:bd:da:2b:76:6f:5b:09:b0:31:ba:1d:
                    2a:68:6b:a0:41:55:0f:2d:43:b5:56:3f:97:5f:2d:9b:
                    62:5e:06:8f:6b:45:a3:52:9b:be:4b:86:a5:ee:07:49:
                    2f:18:c8:ba:0f:e9:1a:ea:05:46:9d:e3:a8:d5:f5:2e:
                    bf:4f:16:66:7d:01:21:b3:e3:10:34:51:4a:60:5e:f5:
                    d3:a2:76:ea:bf:73:a0:09:97:42:db:8e:3e:49:d6:12:
                    d0:a2:2f:87:99:cc:6e:0f:12:93:03:e5:71:87:59:58:
                    d1:97:ef:13:3a:5c:a0:a7:34:51:01:f5:5d:3d:d7:c0:
                    3b:aa:6c:7f:0c:f6:0a:51:d8:d3:44:a1:99:10:1d:ad:
                    0f:5e:7a:99:32:b1:63:26:83:f8:f4:c0:47:2c:8a:1b:
                    14:16:ff:19:40:91:3c:51:10:86:c0:ad:a0:8a:8d:a6:
                    b1:fc:9b:9e:cb:0e:43:13:54:3e:82:8c:10:21:47:4b:
                    d8:49:42:55:c0:0f:43:8f:bf:66:ce:95:87:0b:2d:64:
                    f8:ae:e2:b9:e1:57:58:42:96:d3:62:99:19:86:c9:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:1b:3c:49:21:d0:6e:9e:08:91:22:ab:20:b6:71:4b:
        e2:c6:c0:2d:22:09:72:3c:bd:c1:0e:4c:47:d2:23:34:
        9e:19:5a:3c:49:d4:59:3c:bb:06:39:70:09:d9:cb:9b:
        c2:8d:b5:52:96:3d:b7:65:2d:28:23:2d:25:22:a6:c4:
        51:d3:e3:39:1b:db:f3:7b:cc:fc:cf:9e:4b:24:c4:53:
        60:27:b2:fc:fe:e9:93:d4:30:3d:d7:12:fa:7d:c9:ad:
        b8:6a:7c:c9:3e:71:ac:13:07:a6:7a:ad:59:24:6c:ee:
        da:d6:c2:50:13:72:4d:08:bc:f8:21:25:a7:36:94:32:
        29:ad:99:48:65:4d:a8:a9:ab:79:4f:59:20:fb:60:08:
        8f:f2:c2:4d:ae:8e:7e:9b:eb:9a:68:2f:75:40:96:32:
        f2:9c:67:09:d5:ca:66:7d:90:e7:e9:8a:eb:62:ad:72:
        6f:20:ed:21:3a:a4:fc:d1:de:9e:b3:b1:4c:8f:13:e2:
        18:dc:51:76:ce:38:43:4f:85:19:90:d0:9e:77:37:a1:
        63:5b:ef:42:5b:9e:0a:42:96:21:5d:30:07:d4:ef:b1:
        45:c5:8c:6d:85:54:8c:f8:91:11:9d:a8:78:01:f0:fe:
        ac:3d:25:09:df:a4:83:07:b9:2f:5f:92:02:68:59:91
    Fingerprint (SHA-256):
        BE:C0:20:FF:83:FF:81:8B:B6:33:51:A0:D5:C7:E8:7A:6B:F8:9E:96:D2:F4:CA:61:E4:31:FA:C6:F9:7D:17:E0
    Fingerprint (SHA1):
        2A:4D:29:7E:4B:65:4B:A4:3B:56:11:81:BD:F9:35:65:63:E9:44:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11574: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11575: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123276 (0x1e67dd0c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:36:47 2017
            Not After : Tue May 10 12:36:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:ca:9e:1d:52:d7:7b:e0:dd:42:59:c0:e8:b2:13:22:
                    84:a6:19:73:a6:31:e5:f9:9f:58:76:0b:02:51:48:64:
                    d6:c6:b0:77:1d:bd:da:2b:76:6f:5b:09:b0:31:ba:1d:
                    2a:68:6b:a0:41:55:0f:2d:43:b5:56:3f:97:5f:2d:9b:
                    62:5e:06:8f:6b:45:a3:52:9b:be:4b:86:a5:ee:07:49:
                    2f:18:c8:ba:0f:e9:1a:ea:05:46:9d:e3:a8:d5:f5:2e:
                    bf:4f:16:66:7d:01:21:b3:e3:10:34:51:4a:60:5e:f5:
                    d3:a2:76:ea:bf:73:a0:09:97:42:db:8e:3e:49:d6:12:
                    d0:a2:2f:87:99:cc:6e:0f:12:93:03:e5:71:87:59:58:
                    d1:97:ef:13:3a:5c:a0:a7:34:51:01:f5:5d:3d:d7:c0:
                    3b:aa:6c:7f:0c:f6:0a:51:d8:d3:44:a1:99:10:1d:ad:
                    0f:5e:7a:99:32:b1:63:26:83:f8:f4:c0:47:2c:8a:1b:
                    14:16:ff:19:40:91:3c:51:10:86:c0:ad:a0:8a:8d:a6:
                    b1:fc:9b:9e:cb:0e:43:13:54:3e:82:8c:10:21:47:4b:
                    d8:49:42:55:c0:0f:43:8f:bf:66:ce:95:87:0b:2d:64:
                    f8:ae:e2:b9:e1:57:58:42:96:d3:62:99:19:86:c9:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:1b:3c:49:21:d0:6e:9e:08:91:22:ab:20:b6:71:4b:
        e2:c6:c0:2d:22:09:72:3c:bd:c1:0e:4c:47:d2:23:34:
        9e:19:5a:3c:49:d4:59:3c:bb:06:39:70:09:d9:cb:9b:
        c2:8d:b5:52:96:3d:b7:65:2d:28:23:2d:25:22:a6:c4:
        51:d3:e3:39:1b:db:f3:7b:cc:fc:cf:9e:4b:24:c4:53:
        60:27:b2:fc:fe:e9:93:d4:30:3d:d7:12:fa:7d:c9:ad:
        b8:6a:7c:c9:3e:71:ac:13:07:a6:7a:ad:59:24:6c:ee:
        da:d6:c2:50:13:72:4d:08:bc:f8:21:25:a7:36:94:32:
        29:ad:99:48:65:4d:a8:a9:ab:79:4f:59:20:fb:60:08:
        8f:f2:c2:4d:ae:8e:7e:9b:eb:9a:68:2f:75:40:96:32:
        f2:9c:67:09:d5:ca:66:7d:90:e7:e9:8a:eb:62:ad:72:
        6f:20:ed:21:3a:a4:fc:d1:de:9e:b3:b1:4c:8f:13:e2:
        18:dc:51:76:ce:38:43:4f:85:19:90:d0:9e:77:37:a1:
        63:5b:ef:42:5b:9e:0a:42:96:21:5d:30:07:d4:ef:b1:
        45:c5:8c:6d:85:54:8c:f8:91:11:9d:a8:78:01:f0:fe:
        ac:3d:25:09:df:a4:83:07:b9:2f:5f:92:02:68:59:91
    Fingerprint (SHA-256):
        BE:C0:20:FF:83:FF:81:8B:B6:33:51:A0:D5:C7:E8:7A:6B:F8:9E:96:D2:F4:CA:61:E4:31:FA:C6:F9:7D:17:E0
    Fingerprint (SHA1):
        2A:4D:29:7E:4B:65:4B:A4:3B:56:11:81:BD:F9:35:65:63:E9:44:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11576: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11577: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11578: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123280 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11579: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11580: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11581: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11582: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510123281   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11583: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11584: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11585: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11586: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123282   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11587: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11588: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11589: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11590: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510123283   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11591: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11592: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #11593: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123284 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11594: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #11595: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #11596: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11597: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510123285   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11598: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11599: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11600: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11601: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510123286   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11602: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11603: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #11604: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #11605: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #11606: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123280 (0x1e67dd10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:37:07 2017
            Not After : Tue May 10 12:37:07 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:b1:64:a4:91:1b:3b:6e:7c:85:0a:74:ef:83:cb:9a:
                    65:22:3a:b1:d1:80:ae:92:be:b6:c8:db:4f:82:ae:23:
                    0f:6e:9b:87:b9:f2:9d:47:e4:73:40:40:8e:35:40:35:
                    d5:0b:06:3d:84:c6:43:9b:7f:58:f2:eb:96:26:d0:03:
                    62:b4:36:ad:80:22:9f:bd:82:c4:7a:c0:77:94:d1:a3:
                    53:f2:b8:17:59:e1:e0:d1:6a:8f:11:85:4d:3e:66:cc:
                    6c:27:78:4b:29:cf:8b:05:91:d6:3d:8f:a8:ac:d4:f5:
                    00:23:bc:27:88:12:ad:f1:69:10:bb:1a:ad:4b:2a:a9:
                    55:69:91:08:29:bd:ae:46:4f:fc:3d:0c:01:a5:b2:bf:
                    db:2b:c9:44:18:30:8c:1c:9a:a7:95:b2:ff:83:00:21:
                    6b:70:9c:6d:89:bc:8c:ab:aa:ca:e5:f0:75:56:3d:1e:
                    5e:10:e6:22:94:2f:ad:89:bc:ab:ce:6d:bc:ae:98:1d:
                    91:d7:4d:12:48:d7:7b:d9:6d:9e:86:47:e9:43:1a:04:
                    7f:be:50:c6:c1:d8:eb:4c:17:29:2e:b2:53:14:86:3d:
                    9d:75:ef:24:15:b3:1b:37:3a:7b:e5:2b:ad:e4:6d:03:
                    b5:99:e8:c6:d3:21:74:2c:8b:84:bf:6e:46:a0:b8:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:bc:1e:e2:cb:d5:98:fd:ef:05:50:20:f7:f3:10:4a:
        a0:a3:ae:b1:96:61:8f:fe:d9:c5:7d:90:8e:81:e4:95:
        25:94:f5:f8:ee:38:42:30:f1:3d:7d:ed:a9:cf:2b:2e:
        9b:48:13:cf:13:03:70:8c:ab:da:e5:0b:ce:c4:67:9e:
        af:b9:bc:31:03:28:7d:56:33:4b:35:f3:ec:63:0f:95:
        45:bd:07:8e:fc:d9:93:dd:51:67:7a:64:e7:0c:2e:90:
        e1:cf:52:d6:fe:7f:5f:1b:59:c8:26:9b:81:8d:b1:09:
        5f:1d:7b:45:9b:a2:b0:58:38:7f:a0:17:db:ef:ea:27:
        99:c2:c0:56:7c:e0:d1:69:88:69:2a:ff:07:99:ac:af:
        8c:79:54:ad:5f:21:55:94:60:78:93:1d:35:f2:df:e0:
        d2:7f:26:10:da:c1:21:5f:4c:96:49:27:c8:0b:64:2c:
        90:12:51:e6:23:d2:84:62:3f:96:e3:9f:28:a1:ea:68:
        45:9d:dd:10:97:b9:d7:99:a8:76:e8:01:f3:ae:95:6a:
        c7:b4:26:cd:22:e8:c4:f1:83:90:27:6e:d7:9e:eb:1e:
        fd:af:ce:50:45:28:8b:e1:62:38:5c:be:74:66:0b:05:
        9b:a5:e0:ac:6a:a0:1d:a9:6d:bd:dd:ac:e8:49:05:b4
    Fingerprint (SHA-256):
        56:59:FF:C3:B6:F7:0E:B9:4D:9B:85:A3:D7:70:3C:0F:1B:AD:99:66:F7:1D:A4:05:8A:A7:F1:0B:1C:6F:A0:BA
    Fingerprint (SHA1):
        E3:18:99:E9:B1:59:9D:B1:93:04:30:38:7E:78:A8:EF:A8:C4:53:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11607: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123282 (0x1e67dd12)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:37:10 2017
            Not After : Tue May 10 12:37:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:4e:31:bc:ab:80:46:de:6b:2c:1c:69:1f:74:6a:90:
                    bb:a8:19:91:3d:1e:db:50:18:1e:a7:e1:c7:22:90:49:
                    c1:ce:9f:b7:08:8a:f5:44:58:ed:06:be:1c:7d:54:f5:
                    a6:e9:72:ce:87:4d:f8:ce:a6:48:9d:a7:82:da:52:48:
                    3a:16:18:fc:cb:26:84:46:d1:ac:fc:19:22:a1:93:cd:
                    da:f6:5f:0a:96:f2:77:39:7e:48:34:4b:c8:f5:42:f0:
                    44:42:17:9d:80:e7:e4:50:10:2b:cf:51:48:5b:ef:c1:
                    84:d8:fb:d8:63:45:0e:12:18:66:77:6a:f5:47:7b:26:
                    78:3c:0f:08:ac:e2:ba:b5:f8:60:95:1f:2a:0a:8e:84:
                    f9:1e:ba:ab:f1:fc:8b:6d:38:a5:74:3a:5c:d2:a3:c6:
                    8e:37:4e:e9:c6:ae:37:0c:3a:38:77:e5:62:1a:cb:41:
                    19:dd:a3:b0:50:3f:03:a0:3d:e8:56:7e:05:89:08:e8:
                    5c:06:65:7a:30:ae:8e:cd:c4:f3:98:cc:92:b6:c3:8f:
                    6d:72:33:f9:ec:51:67:32:a6:a2:ad:98:35:69:a5:eb:
                    39:25:42:7c:4f:11:58:70:2b:85:38:d0:a8:2d:df:08:
                    77:6d:e8:ee:61:0d:15:85:cc:ff:38:0c:24:6b:fb:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:28:88:80:f9:d2:69:67:7e:38:78:07:39:1d:fb:7b:
        ae:77:7b:d1:f5:3b:a2:db:a4:81:ca:7b:5f:3d:27:3f:
        e8:e5:f4:25:5a:4d:90:9c:63:57:23:5a:cd:9b:cf:f6:
        3f:b2:e8:d6:8d:53:63:52:d1:f2:a9:52:2c:1f:72:fd:
        eb:15:ab:fc:19:64:92:2a:cc:29:d5:b4:5d:83:d7:34:
        f0:06:53:39:20:42:4c:04:0b:fd:60:df:1a:56:3a:23:
        ab:f7:35:f0:a8:bf:1f:ae:14:e7:b6:cd:cc:cc:98:fc:
        2e:32:75:a0:9b:89:08:29:4d:27:06:88:3c:78:e8:4e:
        e4:d5:bb:12:5a:a9:51:b2:c7:fd:e4:3c:d4:8c:f7:65:
        a1:4a:87:c9:ff:b4:04:1f:7f:f8:e2:50:6d:e1:51:63:
        cb:c2:c5:7b:4c:30:44:3e:2b:bc:7a:c8:84:02:29:02:
        e5:e3:a2:31:68:eb:3d:ee:36:b6:9b:3f:62:b2:fd:f5:
        f5:bf:f0:f9:ff:a0:d3:7c:0d:e6:b6:73:57:f4:67:35:
        ce:ae:95:66:b2:33:9c:c7:36:8f:d7:73:6b:b7:0a:52:
        d9:a2:54:cb:c9:93:d8:e4:5e:7a:46:96:44:05:9f:7e:
        cf:84:69:53:ce:2e:e0:3b:e2:13:56:f4:f0:78:bc:16
    Fingerprint (SHA-256):
        97:4B:BB:C6:44:E5:7A:80:FD:B9:7D:3A:03:78:16:87:89:B7:E7:D3:73:5F:76:5F:5C:46:1A:2C:D6:64:19:05
    Fingerprint (SHA1):
        9B:82:3A:6E:87:D0:7D:CF:C5:8B:06:86:47:98:B6:09:5D:D0:5A:5F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11608: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123280 (0x1e67dd10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:37:07 2017
            Not After : Tue May 10 12:37:07 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:b1:64:a4:91:1b:3b:6e:7c:85:0a:74:ef:83:cb:9a:
                    65:22:3a:b1:d1:80:ae:92:be:b6:c8:db:4f:82:ae:23:
                    0f:6e:9b:87:b9:f2:9d:47:e4:73:40:40:8e:35:40:35:
                    d5:0b:06:3d:84:c6:43:9b:7f:58:f2:eb:96:26:d0:03:
                    62:b4:36:ad:80:22:9f:bd:82:c4:7a:c0:77:94:d1:a3:
                    53:f2:b8:17:59:e1:e0:d1:6a:8f:11:85:4d:3e:66:cc:
                    6c:27:78:4b:29:cf:8b:05:91:d6:3d:8f:a8:ac:d4:f5:
                    00:23:bc:27:88:12:ad:f1:69:10:bb:1a:ad:4b:2a:a9:
                    55:69:91:08:29:bd:ae:46:4f:fc:3d:0c:01:a5:b2:bf:
                    db:2b:c9:44:18:30:8c:1c:9a:a7:95:b2:ff:83:00:21:
                    6b:70:9c:6d:89:bc:8c:ab:aa:ca:e5:f0:75:56:3d:1e:
                    5e:10:e6:22:94:2f:ad:89:bc:ab:ce:6d:bc:ae:98:1d:
                    91:d7:4d:12:48:d7:7b:d9:6d:9e:86:47:e9:43:1a:04:
                    7f:be:50:c6:c1:d8:eb:4c:17:29:2e:b2:53:14:86:3d:
                    9d:75:ef:24:15:b3:1b:37:3a:7b:e5:2b:ad:e4:6d:03:
                    b5:99:e8:c6:d3:21:74:2c:8b:84:bf:6e:46:a0:b8:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:bc:1e:e2:cb:d5:98:fd:ef:05:50:20:f7:f3:10:4a:
        a0:a3:ae:b1:96:61:8f:fe:d9:c5:7d:90:8e:81:e4:95:
        25:94:f5:f8:ee:38:42:30:f1:3d:7d:ed:a9:cf:2b:2e:
        9b:48:13:cf:13:03:70:8c:ab:da:e5:0b:ce:c4:67:9e:
        af:b9:bc:31:03:28:7d:56:33:4b:35:f3:ec:63:0f:95:
        45:bd:07:8e:fc:d9:93:dd:51:67:7a:64:e7:0c:2e:90:
        e1:cf:52:d6:fe:7f:5f:1b:59:c8:26:9b:81:8d:b1:09:
        5f:1d:7b:45:9b:a2:b0:58:38:7f:a0:17:db:ef:ea:27:
        99:c2:c0:56:7c:e0:d1:69:88:69:2a:ff:07:99:ac:af:
        8c:79:54:ad:5f:21:55:94:60:78:93:1d:35:f2:df:e0:
        d2:7f:26:10:da:c1:21:5f:4c:96:49:27:c8:0b:64:2c:
        90:12:51:e6:23:d2:84:62:3f:96:e3:9f:28:a1:ea:68:
        45:9d:dd:10:97:b9:d7:99:a8:76:e8:01:f3:ae:95:6a:
        c7:b4:26:cd:22:e8:c4:f1:83:90:27:6e:d7:9e:eb:1e:
        fd:af:ce:50:45:28:8b:e1:62:38:5c:be:74:66:0b:05:
        9b:a5:e0:ac:6a:a0:1d:a9:6d:bd:dd:ac:e8:49:05:b4
    Fingerprint (SHA-256):
        56:59:FF:C3:B6:F7:0E:B9:4D:9B:85:A3:D7:70:3C:0F:1B:AD:99:66:F7:1D:A4:05:8A:A7:F1:0B:1C:6F:A0:BA
    Fingerprint (SHA1):
        E3:18:99:E9:B1:59:9D:B1:93:04:30:38:7E:78:A8:EF:A8:C4:53:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11609: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #11610: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123280 (0x1e67dd10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:37:07 2017
            Not After : Tue May 10 12:37:07 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:b1:64:a4:91:1b:3b:6e:7c:85:0a:74:ef:83:cb:9a:
                    65:22:3a:b1:d1:80:ae:92:be:b6:c8:db:4f:82:ae:23:
                    0f:6e:9b:87:b9:f2:9d:47:e4:73:40:40:8e:35:40:35:
                    d5:0b:06:3d:84:c6:43:9b:7f:58:f2:eb:96:26:d0:03:
                    62:b4:36:ad:80:22:9f:bd:82:c4:7a:c0:77:94:d1:a3:
                    53:f2:b8:17:59:e1:e0:d1:6a:8f:11:85:4d:3e:66:cc:
                    6c:27:78:4b:29:cf:8b:05:91:d6:3d:8f:a8:ac:d4:f5:
                    00:23:bc:27:88:12:ad:f1:69:10:bb:1a:ad:4b:2a:a9:
                    55:69:91:08:29:bd:ae:46:4f:fc:3d:0c:01:a5:b2:bf:
                    db:2b:c9:44:18:30:8c:1c:9a:a7:95:b2:ff:83:00:21:
                    6b:70:9c:6d:89:bc:8c:ab:aa:ca:e5:f0:75:56:3d:1e:
                    5e:10:e6:22:94:2f:ad:89:bc:ab:ce:6d:bc:ae:98:1d:
                    91:d7:4d:12:48:d7:7b:d9:6d:9e:86:47:e9:43:1a:04:
                    7f:be:50:c6:c1:d8:eb:4c:17:29:2e:b2:53:14:86:3d:
                    9d:75:ef:24:15:b3:1b:37:3a:7b:e5:2b:ad:e4:6d:03:
                    b5:99:e8:c6:d3:21:74:2c:8b:84:bf:6e:46:a0:b8:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:bc:1e:e2:cb:d5:98:fd:ef:05:50:20:f7:f3:10:4a:
        a0:a3:ae:b1:96:61:8f:fe:d9:c5:7d:90:8e:81:e4:95:
        25:94:f5:f8:ee:38:42:30:f1:3d:7d:ed:a9:cf:2b:2e:
        9b:48:13:cf:13:03:70:8c:ab:da:e5:0b:ce:c4:67:9e:
        af:b9:bc:31:03:28:7d:56:33:4b:35:f3:ec:63:0f:95:
        45:bd:07:8e:fc:d9:93:dd:51:67:7a:64:e7:0c:2e:90:
        e1:cf:52:d6:fe:7f:5f:1b:59:c8:26:9b:81:8d:b1:09:
        5f:1d:7b:45:9b:a2:b0:58:38:7f:a0:17:db:ef:ea:27:
        99:c2:c0:56:7c:e0:d1:69:88:69:2a:ff:07:99:ac:af:
        8c:79:54:ad:5f:21:55:94:60:78:93:1d:35:f2:df:e0:
        d2:7f:26:10:da:c1:21:5f:4c:96:49:27:c8:0b:64:2c:
        90:12:51:e6:23:d2:84:62:3f:96:e3:9f:28:a1:ea:68:
        45:9d:dd:10:97:b9:d7:99:a8:76:e8:01:f3:ae:95:6a:
        c7:b4:26:cd:22:e8:c4:f1:83:90:27:6e:d7:9e:eb:1e:
        fd:af:ce:50:45:28:8b:e1:62:38:5c:be:74:66:0b:05:
        9b:a5:e0:ac:6a:a0:1d:a9:6d:bd:dd:ac:e8:49:05:b4
    Fingerprint (SHA-256):
        56:59:FF:C3:B6:F7:0E:B9:4D:9B:85:A3:D7:70:3C:0F:1B:AD:99:66:F7:1D:A4:05:8A:A7:F1:0B:1C:6F:A0:BA
    Fingerprint (SHA1):
        E3:18:99:E9:B1:59:9D:B1:93:04:30:38:7E:78:A8:EF:A8:C4:53:72
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11611: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123282 (0x1e67dd12)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:37:10 2017
            Not After : Tue May 10 12:37:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:4e:31:bc:ab:80:46:de:6b:2c:1c:69:1f:74:6a:90:
                    bb:a8:19:91:3d:1e:db:50:18:1e:a7:e1:c7:22:90:49:
                    c1:ce:9f:b7:08:8a:f5:44:58:ed:06:be:1c:7d:54:f5:
                    a6:e9:72:ce:87:4d:f8:ce:a6:48:9d:a7:82:da:52:48:
                    3a:16:18:fc:cb:26:84:46:d1:ac:fc:19:22:a1:93:cd:
                    da:f6:5f:0a:96:f2:77:39:7e:48:34:4b:c8:f5:42:f0:
                    44:42:17:9d:80:e7:e4:50:10:2b:cf:51:48:5b:ef:c1:
                    84:d8:fb:d8:63:45:0e:12:18:66:77:6a:f5:47:7b:26:
                    78:3c:0f:08:ac:e2:ba:b5:f8:60:95:1f:2a:0a:8e:84:
                    f9:1e:ba:ab:f1:fc:8b:6d:38:a5:74:3a:5c:d2:a3:c6:
                    8e:37:4e:e9:c6:ae:37:0c:3a:38:77:e5:62:1a:cb:41:
                    19:dd:a3:b0:50:3f:03:a0:3d:e8:56:7e:05:89:08:e8:
                    5c:06:65:7a:30:ae:8e:cd:c4:f3:98:cc:92:b6:c3:8f:
                    6d:72:33:f9:ec:51:67:32:a6:a2:ad:98:35:69:a5:eb:
                    39:25:42:7c:4f:11:58:70:2b:85:38:d0:a8:2d:df:08:
                    77:6d:e8:ee:61:0d:15:85:cc:ff:38:0c:24:6b:fb:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:28:88:80:f9:d2:69:67:7e:38:78:07:39:1d:fb:7b:
        ae:77:7b:d1:f5:3b:a2:db:a4:81:ca:7b:5f:3d:27:3f:
        e8:e5:f4:25:5a:4d:90:9c:63:57:23:5a:cd:9b:cf:f6:
        3f:b2:e8:d6:8d:53:63:52:d1:f2:a9:52:2c:1f:72:fd:
        eb:15:ab:fc:19:64:92:2a:cc:29:d5:b4:5d:83:d7:34:
        f0:06:53:39:20:42:4c:04:0b:fd:60:df:1a:56:3a:23:
        ab:f7:35:f0:a8:bf:1f:ae:14:e7:b6:cd:cc:cc:98:fc:
        2e:32:75:a0:9b:89:08:29:4d:27:06:88:3c:78:e8:4e:
        e4:d5:bb:12:5a:a9:51:b2:c7:fd:e4:3c:d4:8c:f7:65:
        a1:4a:87:c9:ff:b4:04:1f:7f:f8:e2:50:6d:e1:51:63:
        cb:c2:c5:7b:4c:30:44:3e:2b:bc:7a:c8:84:02:29:02:
        e5:e3:a2:31:68:eb:3d:ee:36:b6:9b:3f:62:b2:fd:f5:
        f5:bf:f0:f9:ff:a0:d3:7c:0d:e6:b6:73:57:f4:67:35:
        ce:ae:95:66:b2:33:9c:c7:36:8f:d7:73:6b:b7:0a:52:
        d9:a2:54:cb:c9:93:d8:e4:5e:7a:46:96:44:05:9f:7e:
        cf:84:69:53:ce:2e:e0:3b:e2:13:56:f4:f0:78:bc:16
    Fingerprint (SHA-256):
        97:4B:BB:C6:44:E5:7A:80:FD:B9:7D:3A:03:78:16:87:89:B7:E7:D3:73:5F:76:5F:5C:46:1A:2C:D6:64:19:05
    Fingerprint (SHA1):
        9B:82:3A:6E:87:D0:7D:CF:C5:8B:06:86:47:98:B6:09:5D:D0:5A:5F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11612: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #11613: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #11614: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #11615: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123280 (0x1e67dd10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:37:07 2017
            Not After : Tue May 10 12:37:07 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:b1:64:a4:91:1b:3b:6e:7c:85:0a:74:ef:83:cb:9a:
                    65:22:3a:b1:d1:80:ae:92:be:b6:c8:db:4f:82:ae:23:
                    0f:6e:9b:87:b9:f2:9d:47:e4:73:40:40:8e:35:40:35:
                    d5:0b:06:3d:84:c6:43:9b:7f:58:f2:eb:96:26:d0:03:
                    62:b4:36:ad:80:22:9f:bd:82:c4:7a:c0:77:94:d1:a3:
                    53:f2:b8:17:59:e1:e0:d1:6a:8f:11:85:4d:3e:66:cc:
                    6c:27:78:4b:29:cf:8b:05:91:d6:3d:8f:a8:ac:d4:f5:
                    00:23:bc:27:88:12:ad:f1:69:10:bb:1a:ad:4b:2a:a9:
                    55:69:91:08:29:bd:ae:46:4f:fc:3d:0c:01:a5:b2:bf:
                    db:2b:c9:44:18:30:8c:1c:9a:a7:95:b2:ff:83:00:21:
                    6b:70:9c:6d:89:bc:8c:ab:aa:ca:e5:f0:75:56:3d:1e:
                    5e:10:e6:22:94:2f:ad:89:bc:ab:ce:6d:bc:ae:98:1d:
                    91:d7:4d:12:48:d7:7b:d9:6d:9e:86:47:e9:43:1a:04:
                    7f:be:50:c6:c1:d8:eb:4c:17:29:2e:b2:53:14:86:3d:
                    9d:75:ef:24:15:b3:1b:37:3a:7b:e5:2b:ad:e4:6d:03:
                    b5:99:e8:c6:d3:21:74:2c:8b:84:bf:6e:46:a0:b8:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:bc:1e:e2:cb:d5:98:fd:ef:05:50:20:f7:f3:10:4a:
        a0:a3:ae:b1:96:61:8f:fe:d9:c5:7d:90:8e:81:e4:95:
        25:94:f5:f8:ee:38:42:30:f1:3d:7d:ed:a9:cf:2b:2e:
        9b:48:13:cf:13:03:70:8c:ab:da:e5:0b:ce:c4:67:9e:
        af:b9:bc:31:03:28:7d:56:33:4b:35:f3:ec:63:0f:95:
        45:bd:07:8e:fc:d9:93:dd:51:67:7a:64:e7:0c:2e:90:
        e1:cf:52:d6:fe:7f:5f:1b:59:c8:26:9b:81:8d:b1:09:
        5f:1d:7b:45:9b:a2:b0:58:38:7f:a0:17:db:ef:ea:27:
        99:c2:c0:56:7c:e0:d1:69:88:69:2a:ff:07:99:ac:af:
        8c:79:54:ad:5f:21:55:94:60:78:93:1d:35:f2:df:e0:
        d2:7f:26:10:da:c1:21:5f:4c:96:49:27:c8:0b:64:2c:
        90:12:51:e6:23:d2:84:62:3f:96:e3:9f:28:a1:ea:68:
        45:9d:dd:10:97:b9:d7:99:a8:76:e8:01:f3:ae:95:6a:
        c7:b4:26:cd:22:e8:c4:f1:83:90:27:6e:d7:9e:eb:1e:
        fd:af:ce:50:45:28:8b:e1:62:38:5c:be:74:66:0b:05:
        9b:a5:e0:ac:6a:a0:1d:a9:6d:bd:dd:ac:e8:49:05:b4
    Fingerprint (SHA-256):
        56:59:FF:C3:B6:F7:0E:B9:4D:9B:85:A3:D7:70:3C:0F:1B:AD:99:66:F7:1D:A4:05:8A:A7:F1:0B:1C:6F:A0:BA
    Fingerprint (SHA1):
        E3:18:99:E9:B1:59:9D:B1:93:04:30:38:7E:78:A8:EF:A8:C4:53:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11616: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123284 (0x1e67dd14)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:37:14 2017
            Not After : Tue May 10 12:37:14 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d2:a4:58:00:74:fd:0c:83:fb:04:a7:9d:c3:06:0f:13:
                    cc:84:b0:d5:69:9c:22:d2:6d:d2:4c:7b:f4:e2:6c:8d:
                    2a:11:8c:e7:68:e9:06:a7:fa:1b:30:50:de:f7:45:fb:
                    bc:ab:b0:c8:ea:c7:d6:cb:43:28:61:4e:8f:38:f3:05:
                    26:b1:a7:74:ad:3b:e4:46:69:41:83:0b:dc:70:f4:17:
                    53:fe:ce:87:1d:c9:34:f1:d3:1c:7b:a6:1e:1d:ad:a0:
                    10:17:c2:33:01:fa:2d:2c:8b:f9:70:1e:a4:47:32:69:
                    67:05:39:88:db:6c:01:15:ef:20:29:d1:dc:a9:77:a7:
                    55:be:e0:f1:df:0c:ad:b9:70:41:78:b0:6e:4b:29:fd:
                    e0:9f:fe:0b:ba:ff:2d:69:0f:3c:7a:9b:bf:bf:ba:86:
                    59:ae:16:ef:12:02:94:50:8e:f4:0b:4f:a5:9c:f7:5e:
                    7d:ed:d5:dd:ab:7d:c7:a5:db:da:b5:81:9d:93:60:77:
                    5b:11:35:61:ba:fa:76:c5:5b:cd:8d:86:65:90:a3:1e:
                    ff:1b:f2:44:91:0e:2e:37:64:1f:bd:d7:f9:ed:2d:81:
                    25:f8:23:b7:5d:8e:c2:ca:49:3b:d8:3a:27:6a:12:da:
                    83:09:a7:cf:53:38:0d:bd:ca:b5:a7:8f:73:18:1a:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        43:b1:15:5e:25:66:0f:5d:d4:08:ea:89:56:ae:a4:af:
        60:db:4b:5b:e7:f6:98:c8:c2:73:8a:9c:b0:f6:aa:5a:
        c8:0b:e4:a9:67:75:8a:f0:b9:c4:da:de:ee:0d:7f:c3:
        8c:90:1a:da:1c:aa:f0:31:a8:e5:bc:ba:4d:bc:5c:6f:
        21:b1:1b:c4:32:a3:70:ee:ca:50:9b:5b:9f:bc:a2:d7:
        75:ad:09:a9:6d:92:ae:52:82:53:1d:9c:1f:0a:24:b3:
        13:4d:33:4f:23:bd:32:53:8d:4f:b3:05:f4:ec:e9:03:
        54:b9:04:0b:6f:c2:01:f0:c0:6b:6c:e4:e4:74:6d:97:
        dc:89:de:2d:52:0c:45:39:3a:ab:79:e2:8f:bc:45:dd:
        99:aa:8c:e2:29:c3:b6:ea:4c:3d:9e:fe:c9:55:56:14:
        14:aa:83:25:be:46:c2:b6:d7:e3:e9:d2:27:53:ee:cc:
        01:4b:67:bc:98:4c:7b:79:60:fd:c0:54:1a:32:9e:fd:
        93:6b:2e:5e:68:dc:4c:bf:61:99:ea:d8:32:01:01:07:
        46:fa:ca:53:db:ef:ae:b7:9f:e1:2b:b4:2c:db:f0:2c:
        b1:e6:2a:8e:d9:6d:1a:85:b1:92:c6:5a:5e:cf:f2:5e:
        97:a3:8e:5a:b6:b0:1f:80:08:d0:c0:43:78:91:2a:3f
    Fingerprint (SHA-256):
        98:43:EA:EB:05:67:D4:57:7F:84:7D:41:8A:99:75:7C:FD:5B:26:15:B6:A6:51:51:20:41:AB:FE:AE:9B:34:F1
    Fingerprint (SHA1):
        F1:5A:F2:98:C9:2B:B9:A1:2D:0A:15:7D:5E:BB:D5:25:65:26:D2:65
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #11617: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123280 (0x1e67dd10)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:37:07 2017
            Not After : Tue May 10 12:37:07 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:b1:64:a4:91:1b:3b:6e:7c:85:0a:74:ef:83:cb:9a:
                    65:22:3a:b1:d1:80:ae:92:be:b6:c8:db:4f:82:ae:23:
                    0f:6e:9b:87:b9:f2:9d:47:e4:73:40:40:8e:35:40:35:
                    d5:0b:06:3d:84:c6:43:9b:7f:58:f2:eb:96:26:d0:03:
                    62:b4:36:ad:80:22:9f:bd:82:c4:7a:c0:77:94:d1:a3:
                    53:f2:b8:17:59:e1:e0:d1:6a:8f:11:85:4d:3e:66:cc:
                    6c:27:78:4b:29:cf:8b:05:91:d6:3d:8f:a8:ac:d4:f5:
                    00:23:bc:27:88:12:ad:f1:69:10:bb:1a:ad:4b:2a:a9:
                    55:69:91:08:29:bd:ae:46:4f:fc:3d:0c:01:a5:b2:bf:
                    db:2b:c9:44:18:30:8c:1c:9a:a7:95:b2:ff:83:00:21:
                    6b:70:9c:6d:89:bc:8c:ab:aa:ca:e5:f0:75:56:3d:1e:
                    5e:10:e6:22:94:2f:ad:89:bc:ab:ce:6d:bc:ae:98:1d:
                    91:d7:4d:12:48:d7:7b:d9:6d:9e:86:47:e9:43:1a:04:
                    7f:be:50:c6:c1:d8:eb:4c:17:29:2e:b2:53:14:86:3d:
                    9d:75:ef:24:15:b3:1b:37:3a:7b:e5:2b:ad:e4:6d:03:
                    b5:99:e8:c6:d3:21:74:2c:8b:84:bf:6e:46:a0:b8:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:bc:1e:e2:cb:d5:98:fd:ef:05:50:20:f7:f3:10:4a:
        a0:a3:ae:b1:96:61:8f:fe:d9:c5:7d:90:8e:81:e4:95:
        25:94:f5:f8:ee:38:42:30:f1:3d:7d:ed:a9:cf:2b:2e:
        9b:48:13:cf:13:03:70:8c:ab:da:e5:0b:ce:c4:67:9e:
        af:b9:bc:31:03:28:7d:56:33:4b:35:f3:ec:63:0f:95:
        45:bd:07:8e:fc:d9:93:dd:51:67:7a:64:e7:0c:2e:90:
        e1:cf:52:d6:fe:7f:5f:1b:59:c8:26:9b:81:8d:b1:09:
        5f:1d:7b:45:9b:a2:b0:58:38:7f:a0:17:db:ef:ea:27:
        99:c2:c0:56:7c:e0:d1:69:88:69:2a:ff:07:99:ac:af:
        8c:79:54:ad:5f:21:55:94:60:78:93:1d:35:f2:df:e0:
        d2:7f:26:10:da:c1:21:5f:4c:96:49:27:c8:0b:64:2c:
        90:12:51:e6:23:d2:84:62:3f:96:e3:9f:28:a1:ea:68:
        45:9d:dd:10:97:b9:d7:99:a8:76:e8:01:f3:ae:95:6a:
        c7:b4:26:cd:22:e8:c4:f1:83:90:27:6e:d7:9e:eb:1e:
        fd:af:ce:50:45:28:8b:e1:62:38:5c:be:74:66:0b:05:
        9b:a5:e0:ac:6a:a0:1d:a9:6d:bd:dd:ac:e8:49:05:b4
    Fingerprint (SHA-256):
        56:59:FF:C3:B6:F7:0E:B9:4D:9B:85:A3:D7:70:3C:0F:1B:AD:99:66:F7:1D:A4:05:8A:A7:F1:0B:1C:6F:A0:BA
    Fingerprint (SHA1):
        E3:18:99:E9:B1:59:9D:B1:93:04:30:38:7E:78:A8:EF:A8:C4:53:72
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11618: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #11619: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #11620: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #11621: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #11622: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #11623: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123285 (0x1e67dd15)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:37:15 2017
            Not After : Tue May 10 12:37:15 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:7b:af:0e:2b:ad:5d:5e:86:08:bb:a3:cf:f1:f8:f4:
                    06:7d:75:3f:47:c8:c4:cb:1a:0c:e8:31:83:25:05:42:
                    47:5d:2f:64:a9:dc:af:68:fb:0b:0b:ce:62:eb:8e:b2:
                    43:f9:a1:47:11:8f:a9:60:33:b4:56:21:c2:d0:17:ac:
                    98:a0:c1:f6:fb:83:a2:af:04:48:78:30:f4:c2:ad:1b:
                    3a:fc:fc:b3:5c:ae:ff:31:f2:b8:d6:45:22:35:91:8a:
                    48:4f:5f:a0:2a:d6:33:d4:f9:87:60:04:49:f3:c2:9a:
                    da:98:95:bc:46:1f:b2:34:42:ed:86:02:3b:db:83:8a:
                    05:0a:a5:0b:fa:8e:44:84:88:63:2a:85:91:38:dc:fb:
                    0a:52:b1:78:a6:0c:cf:82:44:bd:e8:79:33:5e:e4:66:
                    63:01:e5:ae:f8:cf:df:d1:d3:24:cb:97:ee:23:7b:24:
                    92:81:ea:bc:cf:0d:22:e6:3a:c5:58:8d:89:db:e4:42:
                    22:99:b8:6f:e7:20:4a:31:e9:01:ee:47:ed:21:b4:4c:
                    25:fa:1a:38:ab:00:5a:85:a7:f9:6c:6e:58:52:c0:a1:
                    35:e6:a7:e1:ba:47:a3:87:50:8d:13:7a:19:93:b4:8b:
                    f2:de:b0:61:d2:1b:31:2e:df:16:38:a2:f8:e4:a6:c5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:51:38:71:2b:14:4c:3f:6b:2d:68:f8:aa:c7:88:42:
        e8:35:c3:42:c0:d2:f2:8b:45:40:d8:06:fa:8e:bc:0e:
        ef:d2:9b:13:17:a1:b1:74:ac:56:09:ab:00:54:6d:c0:
        c5:a0:25:3b:8c:ba:9a:29:20:e8:4d:f3:15:e1:7b:17:
        df:ce:43:f5:6d:fc:93:3b:1d:15:0c:e5:08:86:4a:fc:
        33:cc:20:a2:3d:2a:a0:d0:b7:7f:63:97:9b:eb:37:61:
        36:f2:c9:7a:da:62:64:e8:04:81:61:6a:77:c7:78:2e:
        a1:b6:5f:2f:b7:8f:5b:d2:11:3f:eb:38:bb:e2:93:54:
        a0:78:ea:97:73:9f:5d:74:07:13:5e:0a:2a:2e:2b:ab:
        21:5f:de:8b:f6:fd:ba:0c:65:eb:d0:62:f2:1c:13:50:
        29:41:3e:a5:0d:43:cc:3e:8f:7c:a0:4c:20:8a:d1:33:
        ca:7d:fd:9b:17:c6:ee:6f:a2:92:cc:62:14:e4:e6:c3:
        c3:ce:a9:eb:a2:06:f3:20:a2:0e:4d:21:91:87:29:de:
        9e:b1:1a:f2:07:3b:8e:97:71:c4:dd:5b:d4:ad:5b:e5:
        e5:e0:46:91:a1:a5:4b:a5:e8:d8:17:a1:eb:06:ed:5a:
        bb:c1:b1:54:7f:0a:fb:7d:83:52:ad:f4:e9:55:c6:c1
    Fingerprint (SHA-256):
        61:84:3F:C6:64:56:A0:63:A5:5D:85:17:F1:8A:7F:F0:11:7B:25:86:EC:04:07:CE:8F:BB:70:8D:43:BB:DA:26
    Fingerprint (SHA1):
        7C:57:7B:CE:39:0B:B4:5B:7B:1E:62:C9:D2:D2:C4:C0:96:B0:5E:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11624: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #11625: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #11626: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #11627: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #11628: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11629: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11630: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11631: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11632: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11633: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11634: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11635: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11636: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11637: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11638: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11639: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11640: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11641: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11642: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11643: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11644: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11645: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11646: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11647: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 18492 at Wed May 10 12:37:31 UTC 2017
kill -USR1 18492
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 18492 killed at Wed May 10 12:37:31 UTC 2017
httpserv starting at Wed May 10 12:37:31 UTC 2017
httpserv -D -p 9515  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17937  &
trying to connect to httpserv at Wed May 10 12:37:31 UTC 2017
tstclnt -p 9515 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9515 (address=::1)
tstclnt: exiting with return code 0
kill -0 1509 >/dev/null 2>/dev/null
httpserv with PID 1509 found at Wed May 10 12:37:31 UTC 2017
httpserv with PID 1509 started at Wed May 10 12:37:31 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11648: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123287 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11649: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11650: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11651: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123288 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11652: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11653: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11654: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11655: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510123289 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11656: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11657: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510123290 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11658: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11659: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11660: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11661: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11662: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 510123291   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11663: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11664: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11665: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #11666: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #11667: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123288 (0x1e67dd18)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:37:35 2017
            Not After : Tue May 10 12:37:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:03:86:82:76:70:32:7c:30:aa:35:cb:4f:74:e5:af:
                    e4:30:2d:e6:50:f7:15:c5:39:22:fa:ba:e3:db:5f:d9:
                    b0:bc:76:4f:6e:4d:fe:54:7a:3d:83:f3:32:f7:f5:3c:
                    19:be:b9:29:98:95:3c:d7:0b:5a:4d:c0:14:ba:16:6b:
                    33:a5:c9:b7:fa:b1:9e:b8:7d:a0:03:6e:5f:9f:6d:9d:
                    48:01:a1:23:10:1e:60:79:3d:c0:2b:c8:97:d6:84:36:
                    1d:dc:ce:67:ad:c6:8f:a3:bd:11:06:56:33:6b:f2:26:
                    12:48:c7:16:71:84:2e:f4:14:c2:96:e6:30:e2:1d:a3:
                    bc:27:9a:71:86:1e:73:e7:db:41:db:7c:de:fa:ae:3b:
                    d5:f9:fe:6e:be:90:81:8d:f7:1c:8a:a0:5c:fb:92:17:
                    00:0e:e4:88:4b:4a:4b:06:fc:eb:89:1b:45:4b:43:17:
                    87:e9:cf:2c:da:96:d2:d4:b1:f2:92:55:97:1c:b3:ce:
                    74:25:95:bf:3d:fb:89:8e:eb:a1:c1:11:39:2b:db:3c:
                    ba:8d:10:ea:ea:22:ed:6b:88:43:2e:29:a3:58:77:89:
                    70:62:e8:81:d0:ce:3f:3b:db:d6:07:24:8e:d1:94:c3:
                    97:e1:3a:a1:54:cb:63:fb:69:b3:f1:d7:90:e9:e4:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:56:0d:0a:c0:11:c6:de:84:49:4c:2d:25:12:37:7a:
        03:15:88:fd:ae:1b:89:b3:ad:b5:67:45:64:a4:5b:3a:
        1d:f8:ae:09:12:91:e8:57:ef:69:a5:77:1f:b4:42:ba:
        da:28:9c:03:6e:1b:e8:f3:92:c5:d9:cc:b1:c3:97:68:
        0a:36:69:e0:9b:f3:f3:80:42:06:b1:fd:d5:d7:cc:d9:
        95:db:ec:e6:6d:06:d6:7a:d2:2e:9d:ed:36:ec:2a:48:
        f3:53:dc:89:7e:1b:fd:b2:77:40:2d:89:27:df:b4:68:
        2c:03:81:d6:12:c3:6b:3a:f6:3b:d2:47:3b:a3:ec:19:
        fd:39:61:c4:f6:06:b3:62:7b:cd:94:02:31:61:3f:12:
        ad:0d:7e:37:d8:fc:88:cc:10:98:0e:30:a0:ae:9c:56:
        28:d5:65:2b:e1:6a:7e:52:60:f1:b6:6c:32:80:5c:95:
        93:f2:69:5f:06:13:69:6c:5d:87:25:1d:d8:2b:6b:0b:
        3e:6d:b1:0a:11:a7:e6:c8:53:01:dd:72:96:75:05:ee:
        eb:62:a4:f8:ea:32:7f:b9:4d:5a:7a:a1:5e:e5:65:ff:
        fc:77:91:42:7f:16:53:1f:a8:3f:55:9f:b4:bf:fd:53:
        5c:8d:4a:2a:97:93:bf:2e:2f:21:eb:49:56:91:18:5a
    Fingerprint (SHA-256):
        2D:63:97:06:BB:A3:F9:06:7C:48:17:D9:D7:FF:23:E3:B0:A7:BB:B7:17:32:B6:F6:61:B2:32:8B:9A:29:51:86
    Fingerprint (SHA1):
        95:78:87:28:47:63:C3:F1:65:EE:DF:A4:B4:4D:E7:35:01:C3:A1:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11668: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123287 (0x1e67dd17)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:37:32 2017
            Not After : Tue May 10 12:37:32 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:30:06:1a:cd:e7:83:84:05:fe:cc:d3:19:4a:65:13:
                    4d:b8:7c:b0:f0:f0:92:0c:c4:5e:e2:f3:af:4d:f5:98:
                    f4:5e:78:45:b6:e5:e3:d9:cb:e3:05:96:4d:5c:f4:1f:
                    ce:4c:65:08:a1:fc:44:29:a7:7a:70:c3:1c:22:05:21:
                    4b:22:66:a7:95:7b:d4:97:03:92:78:56:2f:2a:3a:36:
                    f9:66:4b:a7:36:9e:c2:e7:f6:73:ca:c3:b4:73:cb:6d:
                    a7:1c:0a:36:40:10:f2:0c:2a:c8:d4:6b:8e:d0:88:3d:
                    bf:6d:2a:5f:79:ad:a3:81:ab:15:5a:ac:2b:29:33:67:
                    95:56:80:f6:14:50:e1:44:dc:ec:12:38:f7:1c:d6:ce:
                    3b:63:db:93:a2:96:57:9c:7e:4c:cd:39:c3:7b:53:12:
                    61:b9:81:bd:4e:6c:b5:1b:f7:e9:4e:7f:77:de:95:12:
                    cf:88:4f:47:02:18:33:6e:b0:76:f9:04:0a:34:3e:3d:
                    fa:3a:3a:43:9a:eb:74:23:92:76:15:e7:85:b4:81:c8:
                    cd:5a:81:cf:f8:61:46:58:ef:3c:60:b2:ef:0a:5e:96:
                    ac:fd:af:96:20:fb:7b:44:87:1b:7a:f2:b7:b2:ae:48:
                    09:d2:1a:50:dd:06:b3:cc:5c:96:2a:ed:5f:dc:b1:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:4c:cb:c5:4f:4c:66:46:e6:93:ba:95:11:66:25:91:
        c7:70:4b:ae:8c:3f:69:65:56:b1:e6:22:72:6e:8e:04:
        33:13:ba:33:08:0c:c8:a8:2c:90:6a:35:56:5e:14:45:
        de:38:86:a6:84:dd:74:9f:ae:3b:79:95:36:aa:58:b3:
        78:be:cd:35:eb:06:fb:78:b7:43:9a:34:78:c9:cb:b0:
        ce:07:7e:72:4c:9b:76:dc:63:89:42:f3:c0:6d:ae:4d:
        82:53:50:70:dd:9f:e2:31:16:60:ef:34:00:ab:ee:18:
        08:03:67:66:44:5e:d3:c6:99:75:cd:19:05:f6:3b:13:
        90:96:50:e9:c2:e3:e9:a3:67:7b:17:1b:83:28:6d:4b:
        cf:cd:6a:53:8c:f5:51:d2:bc:dd:a7:67:86:19:bd:e2:
        bc:ec:d5:44:ac:0b:25:49:69:3b:bf:b4:e7:d5:4e:f0:
        7f:1e:52:a0:27:20:30:20:64:90:ba:23:82:46:b8:4c:
        28:4e:46:ac:1f:a6:8b:3f:f0:fb:0d:dd:fa:35:8b:19:
        a5:a1:0d:4c:91:54:a3:d7:45:aa:a0:f8:32:d8:d4:16:
        47:08:2f:23:12:22:b8:0a:ac:af:77:3f:da:f3:aa:ed:
        18:26:dd:e4:f8:54:c1:f8:ba:25:4d:92:f4:63:73:7f
    Fingerprint (SHA-256):
        3B:F1:05:C6:E7:C9:4C:64:89:3A:02:BE:38:64:95:0B:09:D3:41:CA:1B:C3:A2:D1:72:DA:B5:91:01:EA:AD:36
    Fingerprint (SHA1):
        8F:7C:46:C7:79:42:5D:06:63:54:99:92:61:67:68:34:79:56:DF:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11669: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11670: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #11671: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #11672: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123287 (0x1e67dd17)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:37:32 2017
            Not After : Tue May 10 12:37:32 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:30:06:1a:cd:e7:83:84:05:fe:cc:d3:19:4a:65:13:
                    4d:b8:7c:b0:f0:f0:92:0c:c4:5e:e2:f3:af:4d:f5:98:
                    f4:5e:78:45:b6:e5:e3:d9:cb:e3:05:96:4d:5c:f4:1f:
                    ce:4c:65:08:a1:fc:44:29:a7:7a:70:c3:1c:22:05:21:
                    4b:22:66:a7:95:7b:d4:97:03:92:78:56:2f:2a:3a:36:
                    f9:66:4b:a7:36:9e:c2:e7:f6:73:ca:c3:b4:73:cb:6d:
                    a7:1c:0a:36:40:10:f2:0c:2a:c8:d4:6b:8e:d0:88:3d:
                    bf:6d:2a:5f:79:ad:a3:81:ab:15:5a:ac:2b:29:33:67:
                    95:56:80:f6:14:50:e1:44:dc:ec:12:38:f7:1c:d6:ce:
                    3b:63:db:93:a2:96:57:9c:7e:4c:cd:39:c3:7b:53:12:
                    61:b9:81:bd:4e:6c:b5:1b:f7:e9:4e:7f:77:de:95:12:
                    cf:88:4f:47:02:18:33:6e:b0:76:f9:04:0a:34:3e:3d:
                    fa:3a:3a:43:9a:eb:74:23:92:76:15:e7:85:b4:81:c8:
                    cd:5a:81:cf:f8:61:46:58:ef:3c:60:b2:ef:0a:5e:96:
                    ac:fd:af:96:20:fb:7b:44:87:1b:7a:f2:b7:b2:ae:48:
                    09:d2:1a:50:dd:06:b3:cc:5c:96:2a:ed:5f:dc:b1:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:4c:cb:c5:4f:4c:66:46:e6:93:ba:95:11:66:25:91:
        c7:70:4b:ae:8c:3f:69:65:56:b1:e6:22:72:6e:8e:04:
        33:13:ba:33:08:0c:c8:a8:2c:90:6a:35:56:5e:14:45:
        de:38:86:a6:84:dd:74:9f:ae:3b:79:95:36:aa:58:b3:
        78:be:cd:35:eb:06:fb:78:b7:43:9a:34:78:c9:cb:b0:
        ce:07:7e:72:4c:9b:76:dc:63:89:42:f3:c0:6d:ae:4d:
        82:53:50:70:dd:9f:e2:31:16:60:ef:34:00:ab:ee:18:
        08:03:67:66:44:5e:d3:c6:99:75:cd:19:05:f6:3b:13:
        90:96:50:e9:c2:e3:e9:a3:67:7b:17:1b:83:28:6d:4b:
        cf:cd:6a:53:8c:f5:51:d2:bc:dd:a7:67:86:19:bd:e2:
        bc:ec:d5:44:ac:0b:25:49:69:3b:bf:b4:e7:d5:4e:f0:
        7f:1e:52:a0:27:20:30:20:64:90:ba:23:82:46:b8:4c:
        28:4e:46:ac:1f:a6:8b:3f:f0:fb:0d:dd:fa:35:8b:19:
        a5:a1:0d:4c:91:54:a3:d7:45:aa:a0:f8:32:d8:d4:16:
        47:08:2f:23:12:22:b8:0a:ac:af:77:3f:da:f3:aa:ed:
        18:26:dd:e4:f8:54:c1:f8:ba:25:4d:92:f4:63:73:7f
    Fingerprint (SHA-256):
        3B:F1:05:C6:E7:C9:4C:64:89:3A:02:BE:38:64:95:0B:09:D3:41:CA:1B:C3:A2:D1:72:DA:B5:91:01:EA:AD:36
    Fingerprint (SHA1):
        8F:7C:46:C7:79:42:5D:06:63:54:99:92:61:67:68:34:79:56:DF:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11673: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123288 (0x1e67dd18)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:37:35 2017
            Not After : Tue May 10 12:37:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:03:86:82:76:70:32:7c:30:aa:35:cb:4f:74:e5:af:
                    e4:30:2d:e6:50:f7:15:c5:39:22:fa:ba:e3:db:5f:d9:
                    b0:bc:76:4f:6e:4d:fe:54:7a:3d:83:f3:32:f7:f5:3c:
                    19:be:b9:29:98:95:3c:d7:0b:5a:4d:c0:14:ba:16:6b:
                    33:a5:c9:b7:fa:b1:9e:b8:7d:a0:03:6e:5f:9f:6d:9d:
                    48:01:a1:23:10:1e:60:79:3d:c0:2b:c8:97:d6:84:36:
                    1d:dc:ce:67:ad:c6:8f:a3:bd:11:06:56:33:6b:f2:26:
                    12:48:c7:16:71:84:2e:f4:14:c2:96:e6:30:e2:1d:a3:
                    bc:27:9a:71:86:1e:73:e7:db:41:db:7c:de:fa:ae:3b:
                    d5:f9:fe:6e:be:90:81:8d:f7:1c:8a:a0:5c:fb:92:17:
                    00:0e:e4:88:4b:4a:4b:06:fc:eb:89:1b:45:4b:43:17:
                    87:e9:cf:2c:da:96:d2:d4:b1:f2:92:55:97:1c:b3:ce:
                    74:25:95:bf:3d:fb:89:8e:eb:a1:c1:11:39:2b:db:3c:
                    ba:8d:10:ea:ea:22:ed:6b:88:43:2e:29:a3:58:77:89:
                    70:62:e8:81:d0:ce:3f:3b:db:d6:07:24:8e:d1:94:c3:
                    97:e1:3a:a1:54:cb:63:fb:69:b3:f1:d7:90:e9:e4:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:56:0d:0a:c0:11:c6:de:84:49:4c:2d:25:12:37:7a:
        03:15:88:fd:ae:1b:89:b3:ad:b5:67:45:64:a4:5b:3a:
        1d:f8:ae:09:12:91:e8:57:ef:69:a5:77:1f:b4:42:ba:
        da:28:9c:03:6e:1b:e8:f3:92:c5:d9:cc:b1:c3:97:68:
        0a:36:69:e0:9b:f3:f3:80:42:06:b1:fd:d5:d7:cc:d9:
        95:db:ec:e6:6d:06:d6:7a:d2:2e:9d:ed:36:ec:2a:48:
        f3:53:dc:89:7e:1b:fd:b2:77:40:2d:89:27:df:b4:68:
        2c:03:81:d6:12:c3:6b:3a:f6:3b:d2:47:3b:a3:ec:19:
        fd:39:61:c4:f6:06:b3:62:7b:cd:94:02:31:61:3f:12:
        ad:0d:7e:37:d8:fc:88:cc:10:98:0e:30:a0:ae:9c:56:
        28:d5:65:2b:e1:6a:7e:52:60:f1:b6:6c:32:80:5c:95:
        93:f2:69:5f:06:13:69:6c:5d:87:25:1d:d8:2b:6b:0b:
        3e:6d:b1:0a:11:a7:e6:c8:53:01:dd:72:96:75:05:ee:
        eb:62:a4:f8:ea:32:7f:b9:4d:5a:7a:a1:5e:e5:65:ff:
        fc:77:91:42:7f:16:53:1f:a8:3f:55:9f:b4:bf:fd:53:
        5c:8d:4a:2a:97:93:bf:2e:2f:21:eb:49:56:91:18:5a
    Fingerprint (SHA-256):
        2D:63:97:06:BB:A3:F9:06:7C:48:17:D9:D7:FF:23:E3:B0:A7:BB:B7:17:32:B6:F6:61:B2:32:8B:9A:29:51:86
    Fingerprint (SHA1):
        95:78:87:28:47:63:C3:F1:65:EE:DF:A4:B4:4D:E7:35:01:C3:A1:22
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11674: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #11675: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #11676: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11677: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11678: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11679: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123288 (0x1e67dd18)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:37:35 2017
            Not After : Tue May 10 12:37:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:03:86:82:76:70:32:7c:30:aa:35:cb:4f:74:e5:af:
                    e4:30:2d:e6:50:f7:15:c5:39:22:fa:ba:e3:db:5f:d9:
                    b0:bc:76:4f:6e:4d:fe:54:7a:3d:83:f3:32:f7:f5:3c:
                    19:be:b9:29:98:95:3c:d7:0b:5a:4d:c0:14:ba:16:6b:
                    33:a5:c9:b7:fa:b1:9e:b8:7d:a0:03:6e:5f:9f:6d:9d:
                    48:01:a1:23:10:1e:60:79:3d:c0:2b:c8:97:d6:84:36:
                    1d:dc:ce:67:ad:c6:8f:a3:bd:11:06:56:33:6b:f2:26:
                    12:48:c7:16:71:84:2e:f4:14:c2:96:e6:30:e2:1d:a3:
                    bc:27:9a:71:86:1e:73:e7:db:41:db:7c:de:fa:ae:3b:
                    d5:f9:fe:6e:be:90:81:8d:f7:1c:8a:a0:5c:fb:92:17:
                    00:0e:e4:88:4b:4a:4b:06:fc:eb:89:1b:45:4b:43:17:
                    87:e9:cf:2c:da:96:d2:d4:b1:f2:92:55:97:1c:b3:ce:
                    74:25:95:bf:3d:fb:89:8e:eb:a1:c1:11:39:2b:db:3c:
                    ba:8d:10:ea:ea:22:ed:6b:88:43:2e:29:a3:58:77:89:
                    70:62:e8:81:d0:ce:3f:3b:db:d6:07:24:8e:d1:94:c3:
                    97:e1:3a:a1:54:cb:63:fb:69:b3:f1:d7:90:e9:e4:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:56:0d:0a:c0:11:c6:de:84:49:4c:2d:25:12:37:7a:
        03:15:88:fd:ae:1b:89:b3:ad:b5:67:45:64:a4:5b:3a:
        1d:f8:ae:09:12:91:e8:57:ef:69:a5:77:1f:b4:42:ba:
        da:28:9c:03:6e:1b:e8:f3:92:c5:d9:cc:b1:c3:97:68:
        0a:36:69:e0:9b:f3:f3:80:42:06:b1:fd:d5:d7:cc:d9:
        95:db:ec:e6:6d:06:d6:7a:d2:2e:9d:ed:36:ec:2a:48:
        f3:53:dc:89:7e:1b:fd:b2:77:40:2d:89:27:df:b4:68:
        2c:03:81:d6:12:c3:6b:3a:f6:3b:d2:47:3b:a3:ec:19:
        fd:39:61:c4:f6:06:b3:62:7b:cd:94:02:31:61:3f:12:
        ad:0d:7e:37:d8:fc:88:cc:10:98:0e:30:a0:ae:9c:56:
        28:d5:65:2b:e1:6a:7e:52:60:f1:b6:6c:32:80:5c:95:
        93:f2:69:5f:06:13:69:6c:5d:87:25:1d:d8:2b:6b:0b:
        3e:6d:b1:0a:11:a7:e6:c8:53:01:dd:72:96:75:05:ee:
        eb:62:a4:f8:ea:32:7f:b9:4d:5a:7a:a1:5e:e5:65:ff:
        fc:77:91:42:7f:16:53:1f:a8:3f:55:9f:b4:bf:fd:53:
        5c:8d:4a:2a:97:93:bf:2e:2f:21:eb:49:56:91:18:5a
    Fingerprint (SHA-256):
        2D:63:97:06:BB:A3:F9:06:7C:48:17:D9:D7:FF:23:E3:B0:A7:BB:B7:17:32:B6:F6:61:B2:32:8B:9A:29:51:86
    Fingerprint (SHA1):
        95:78:87:28:47:63:C3:F1:65:EE:DF:A4:B4:4D:E7:35:01:C3:A1:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11680: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123288 (0x1e67dd18)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:37:35 2017
            Not After : Tue May 10 12:37:35 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:03:86:82:76:70:32:7c:30:aa:35:cb:4f:74:e5:af:
                    e4:30:2d:e6:50:f7:15:c5:39:22:fa:ba:e3:db:5f:d9:
                    b0:bc:76:4f:6e:4d:fe:54:7a:3d:83:f3:32:f7:f5:3c:
                    19:be:b9:29:98:95:3c:d7:0b:5a:4d:c0:14:ba:16:6b:
                    33:a5:c9:b7:fa:b1:9e:b8:7d:a0:03:6e:5f:9f:6d:9d:
                    48:01:a1:23:10:1e:60:79:3d:c0:2b:c8:97:d6:84:36:
                    1d:dc:ce:67:ad:c6:8f:a3:bd:11:06:56:33:6b:f2:26:
                    12:48:c7:16:71:84:2e:f4:14:c2:96:e6:30:e2:1d:a3:
                    bc:27:9a:71:86:1e:73:e7:db:41:db:7c:de:fa:ae:3b:
                    d5:f9:fe:6e:be:90:81:8d:f7:1c:8a:a0:5c:fb:92:17:
                    00:0e:e4:88:4b:4a:4b:06:fc:eb:89:1b:45:4b:43:17:
                    87:e9:cf:2c:da:96:d2:d4:b1:f2:92:55:97:1c:b3:ce:
                    74:25:95:bf:3d:fb:89:8e:eb:a1:c1:11:39:2b:db:3c:
                    ba:8d:10:ea:ea:22:ed:6b:88:43:2e:29:a3:58:77:89:
                    70:62:e8:81:d0:ce:3f:3b:db:d6:07:24:8e:d1:94:c3:
                    97:e1:3a:a1:54:cb:63:fb:69:b3:f1:d7:90:e9:e4:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:56:0d:0a:c0:11:c6:de:84:49:4c:2d:25:12:37:7a:
        03:15:88:fd:ae:1b:89:b3:ad:b5:67:45:64:a4:5b:3a:
        1d:f8:ae:09:12:91:e8:57:ef:69:a5:77:1f:b4:42:ba:
        da:28:9c:03:6e:1b:e8:f3:92:c5:d9:cc:b1:c3:97:68:
        0a:36:69:e0:9b:f3:f3:80:42:06:b1:fd:d5:d7:cc:d9:
        95:db:ec:e6:6d:06:d6:7a:d2:2e:9d:ed:36:ec:2a:48:
        f3:53:dc:89:7e:1b:fd:b2:77:40:2d:89:27:df:b4:68:
        2c:03:81:d6:12:c3:6b:3a:f6:3b:d2:47:3b:a3:ec:19:
        fd:39:61:c4:f6:06:b3:62:7b:cd:94:02:31:61:3f:12:
        ad:0d:7e:37:d8:fc:88:cc:10:98:0e:30:a0:ae:9c:56:
        28:d5:65:2b:e1:6a:7e:52:60:f1:b6:6c:32:80:5c:95:
        93:f2:69:5f:06:13:69:6c:5d:87:25:1d:d8:2b:6b:0b:
        3e:6d:b1:0a:11:a7:e6:c8:53:01:dd:72:96:75:05:ee:
        eb:62:a4:f8:ea:32:7f:b9:4d:5a:7a:a1:5e:e5:65:ff:
        fc:77:91:42:7f:16:53:1f:a8:3f:55:9f:b4:bf:fd:53:
        5c:8d:4a:2a:97:93:bf:2e:2f:21:eb:49:56:91:18:5a
    Fingerprint (SHA-256):
        2D:63:97:06:BB:A3:F9:06:7C:48:17:D9:D7:FF:23:E3:B0:A7:BB:B7:17:32:B6:F6:61:B2:32:8B:9A:29:51:86
    Fingerprint (SHA1):
        95:78:87:28:47:63:C3:F1:65:EE:DF:A4:B4:4D:E7:35:01:C3:A1:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11681: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #11682: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #11683: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11684: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11685: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11686: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123287 (0x1e67dd17)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:37:32 2017
            Not After : Tue May 10 12:37:32 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:30:06:1a:cd:e7:83:84:05:fe:cc:d3:19:4a:65:13:
                    4d:b8:7c:b0:f0:f0:92:0c:c4:5e:e2:f3:af:4d:f5:98:
                    f4:5e:78:45:b6:e5:e3:d9:cb:e3:05:96:4d:5c:f4:1f:
                    ce:4c:65:08:a1:fc:44:29:a7:7a:70:c3:1c:22:05:21:
                    4b:22:66:a7:95:7b:d4:97:03:92:78:56:2f:2a:3a:36:
                    f9:66:4b:a7:36:9e:c2:e7:f6:73:ca:c3:b4:73:cb:6d:
                    a7:1c:0a:36:40:10:f2:0c:2a:c8:d4:6b:8e:d0:88:3d:
                    bf:6d:2a:5f:79:ad:a3:81:ab:15:5a:ac:2b:29:33:67:
                    95:56:80:f6:14:50:e1:44:dc:ec:12:38:f7:1c:d6:ce:
                    3b:63:db:93:a2:96:57:9c:7e:4c:cd:39:c3:7b:53:12:
                    61:b9:81:bd:4e:6c:b5:1b:f7:e9:4e:7f:77:de:95:12:
                    cf:88:4f:47:02:18:33:6e:b0:76:f9:04:0a:34:3e:3d:
                    fa:3a:3a:43:9a:eb:74:23:92:76:15:e7:85:b4:81:c8:
                    cd:5a:81:cf:f8:61:46:58:ef:3c:60:b2:ef:0a:5e:96:
                    ac:fd:af:96:20:fb:7b:44:87:1b:7a:f2:b7:b2:ae:48:
                    09:d2:1a:50:dd:06:b3:cc:5c:96:2a:ed:5f:dc:b1:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:4c:cb:c5:4f:4c:66:46:e6:93:ba:95:11:66:25:91:
        c7:70:4b:ae:8c:3f:69:65:56:b1:e6:22:72:6e:8e:04:
        33:13:ba:33:08:0c:c8:a8:2c:90:6a:35:56:5e:14:45:
        de:38:86:a6:84:dd:74:9f:ae:3b:79:95:36:aa:58:b3:
        78:be:cd:35:eb:06:fb:78:b7:43:9a:34:78:c9:cb:b0:
        ce:07:7e:72:4c:9b:76:dc:63:89:42:f3:c0:6d:ae:4d:
        82:53:50:70:dd:9f:e2:31:16:60:ef:34:00:ab:ee:18:
        08:03:67:66:44:5e:d3:c6:99:75:cd:19:05:f6:3b:13:
        90:96:50:e9:c2:e3:e9:a3:67:7b:17:1b:83:28:6d:4b:
        cf:cd:6a:53:8c:f5:51:d2:bc:dd:a7:67:86:19:bd:e2:
        bc:ec:d5:44:ac:0b:25:49:69:3b:bf:b4:e7:d5:4e:f0:
        7f:1e:52:a0:27:20:30:20:64:90:ba:23:82:46:b8:4c:
        28:4e:46:ac:1f:a6:8b:3f:f0:fb:0d:dd:fa:35:8b:19:
        a5:a1:0d:4c:91:54:a3:d7:45:aa:a0:f8:32:d8:d4:16:
        47:08:2f:23:12:22:b8:0a:ac:af:77:3f:da:f3:aa:ed:
        18:26:dd:e4:f8:54:c1:f8:ba:25:4d:92:f4:63:73:7f
    Fingerprint (SHA-256):
        3B:F1:05:C6:E7:C9:4C:64:89:3A:02:BE:38:64:95:0B:09:D3:41:CA:1B:C3:A2:D1:72:DA:B5:91:01:EA:AD:36
    Fingerprint (SHA1):
        8F:7C:46:C7:79:42:5D:06:63:54:99:92:61:67:68:34:79:56:DF:99
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11687: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123287 (0x1e67dd17)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:37:32 2017
            Not After : Tue May 10 12:37:32 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:30:06:1a:cd:e7:83:84:05:fe:cc:d3:19:4a:65:13:
                    4d:b8:7c:b0:f0:f0:92:0c:c4:5e:e2:f3:af:4d:f5:98:
                    f4:5e:78:45:b6:e5:e3:d9:cb:e3:05:96:4d:5c:f4:1f:
                    ce:4c:65:08:a1:fc:44:29:a7:7a:70:c3:1c:22:05:21:
                    4b:22:66:a7:95:7b:d4:97:03:92:78:56:2f:2a:3a:36:
                    f9:66:4b:a7:36:9e:c2:e7:f6:73:ca:c3:b4:73:cb:6d:
                    a7:1c:0a:36:40:10:f2:0c:2a:c8:d4:6b:8e:d0:88:3d:
                    bf:6d:2a:5f:79:ad:a3:81:ab:15:5a:ac:2b:29:33:67:
                    95:56:80:f6:14:50:e1:44:dc:ec:12:38:f7:1c:d6:ce:
                    3b:63:db:93:a2:96:57:9c:7e:4c:cd:39:c3:7b:53:12:
                    61:b9:81:bd:4e:6c:b5:1b:f7:e9:4e:7f:77:de:95:12:
                    cf:88:4f:47:02:18:33:6e:b0:76:f9:04:0a:34:3e:3d:
                    fa:3a:3a:43:9a:eb:74:23:92:76:15:e7:85:b4:81:c8:
                    cd:5a:81:cf:f8:61:46:58:ef:3c:60:b2:ef:0a:5e:96:
                    ac:fd:af:96:20:fb:7b:44:87:1b:7a:f2:b7:b2:ae:48:
                    09:d2:1a:50:dd:06:b3:cc:5c:96:2a:ed:5f:dc:b1:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:4c:cb:c5:4f:4c:66:46:e6:93:ba:95:11:66:25:91:
        c7:70:4b:ae:8c:3f:69:65:56:b1:e6:22:72:6e:8e:04:
        33:13:ba:33:08:0c:c8:a8:2c:90:6a:35:56:5e:14:45:
        de:38:86:a6:84:dd:74:9f:ae:3b:79:95:36:aa:58:b3:
        78:be:cd:35:eb:06:fb:78:b7:43:9a:34:78:c9:cb:b0:
        ce:07:7e:72:4c:9b:76:dc:63:89:42:f3:c0:6d:ae:4d:
        82:53:50:70:dd:9f:e2:31:16:60:ef:34:00:ab:ee:18:
        08:03:67:66:44:5e:d3:c6:99:75:cd:19:05:f6:3b:13:
        90:96:50:e9:c2:e3:e9:a3:67:7b:17:1b:83:28:6d:4b:
        cf:cd:6a:53:8c:f5:51:d2:bc:dd:a7:67:86:19:bd:e2:
        bc:ec:d5:44:ac:0b:25:49:69:3b:bf:b4:e7:d5:4e:f0:
        7f:1e:52:a0:27:20:30:20:64:90:ba:23:82:46:b8:4c:
        28:4e:46:ac:1f:a6:8b:3f:f0:fb:0d:dd:fa:35:8b:19:
        a5:a1:0d:4c:91:54:a3:d7:45:aa:a0:f8:32:d8:d4:16:
        47:08:2f:23:12:22:b8:0a:ac:af:77:3f:da:f3:aa:ed:
        18:26:dd:e4:f8:54:c1:f8:ba:25:4d:92:f4:63:73:7f
    Fingerprint (SHA-256):
        3B:F1:05:C6:E7:C9:4C:64:89:3A:02:BE:38:64:95:0B:09:D3:41:CA:1B:C3:A2:D1:72:DA:B5:91:01:EA:AD:36
    Fingerprint (SHA1):
        8F:7C:46:C7:79:42:5D:06:63:54:99:92:61:67:68:34:79:56:DF:99
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11688: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #11689: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123292 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11690: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #11691: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #11692: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123293 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11693: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #11694: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #11695: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123294 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11696: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #11697: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #11698: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123295 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11699: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #11700: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #11701: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123296 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11702: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #11703: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #11704: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123297 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11705: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #11706: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #11707: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123298 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11708: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #11709: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #11710: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123299 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11711: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #11712: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #11713: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123300 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11714: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #11715: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #11716: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11717: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 510123301 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11718: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11719: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 510123302 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11720: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11721: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 510123303 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11722: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11723: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #11724: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #11725: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11726: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 510123304 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11727: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11728: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 510123305 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11729: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11730: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 510123306 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11731: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11732: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #11733: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #11734: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11735: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 510123307 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11736: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11737: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 510123308 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11738: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11739: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 510123309 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11740: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11741: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #11742: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #11743: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11744: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 510123310 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11745: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11746: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 510123311 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11747: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11748: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 510123312 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11749: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11750: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #11751: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11752: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11753: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 510123313   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11754: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11755: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11756: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11757: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123314   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11758: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11759: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123292 (0x1e67dd1c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Wed May 10 12:37:48 2017
            Not After : Tue May 10 12:37:48 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:a9:89:2b:29:ef:6e:5d:46:db:c9:11:b4:00:fc:42:
                    46:bb:3c:05:50:f3:fb:8a:69:fb:2c:63:44:e3:50:27:
                    d1:e5:27:de:f4:45:2e:6a:c8:01:29:75:d2:62:9a:7b:
                    25:c9:07:0a:a5:f3:ee:d9:83:c5:23:c7:9a:a4:8d:2a:
                    66:9a:5a:ad:1c:b9:f6:01:c4:79:7c:10:3b:20:e6:80:
                    9e:77:2e:7f:bf:a1:52:72:90:25:42:34:04:32:b1:47:
                    0e:94:73:56:ec:f4:33:d1:00:99:d6:77:0e:11:fd:58:
                    e4:e9:ec:ba:fb:ac:f2:d6:74:2d:57:b4:9d:37:1d:40:
                    c9:63:2c:2a:51:e0:a0:f3:30:df:f3:f7:1c:2f:75:88:
                    b0:0d:d8:5c:29:75:35:c2:75:12:65:68:b2:20:3f:d7:
                    c6:58:fe:c1:dd:a2:cd:92:f6:5f:60:41:c9:98:17:f8:
                    7d:53:91:54:2b:7f:60:7d:b0:b5:16:80:79:dc:75:3e:
                    00:eb:21:83:6f:0a:50:13:e9:50:c7:93:4a:b1:d2:73:
                    c4:ec:97:ca:02:5a:1c:ee:9d:dc:f6:aa:01:4d:97:76:
                    43:a6:da:c6:f2:4d:8b:db:64:31:8c:b3:75:d1:0d:28:
                    20:39:ba:9b:bb:6c:8a:d1:55:c0:3f:91:a5:6e:06:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        de:28:0b:a1:0d:da:12:70:7e:bc:ac:ac:17:5d:bc:f0:
        bd:ee:96:11:87:37:51:e7:69:88:07:a5:a6:c4:82:12:
        63:43:a4:f8:05:8b:c9:a8:f5:91:3f:82:43:b4:b1:51:
        f3:72:02:72:73:7e:08:81:99:0f:ef:ab:29:ce:5d:01:
        bb:db:44:d3:2f:70:b3:ee:c7:bc:2d:d0:73:c5:ce:5d:
        e8:71:64:ac:39:06:74:82:62:21:cd:26:51:73:00:83:
        61:56:60:80:8b:a2:bd:c8:aa:8f:18:c3:93:d4:19:cc:
        8a:b9:78:40:0f:70:a6:d9:2f:4c:93:fd:b8:77:61:62:
        8e:a9:6b:23:64:57:d0:7b:ab:66:25:f3:c8:89:41:e5:
        4b:9e:51:84:fb:42:12:63:3b:f8:c1:38:e6:e5:f4:8c:
        1e:6c:6c:2c:a3:b3:c4:68:cd:37:75:ef:6d:6c:04:dd:
        44:73:cd:30:1e:84:a9:c4:8c:0f:5e:ad:a6:3e:b7:f8:
        e3:ca:37:ed:a2:ad:41:d8:78:28:52:d8:e0:7d:5a:71:
        b6:9b:9e:ce:75:a5:89:c5:12:18:90:f3:e8:20:0b:f1:
        3e:90:e8:02:9a:e1:58:e6:a7:0e:28:48:5d:87:df:c2:
        00:a6:09:97:dd:49:99:c5:06:cd:ba:7e:84:44:26:31
    Fingerprint (SHA-256):
        D8:60:06:7D:F6:FB:46:06:07:62:46:C1:C6:3C:CB:E9:53:33:7C:7C:D8:41:07:48:5C:80:F1:15:AA:D2:08:ED
    Fingerprint (SHA1):
        0F:ED:0C:1B:D4:A1:5D:CE:CB:E4:DE:84:B3:BD:84:1F:94:7A:61:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11760: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123293 (0x1e67dd1d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Wed May 10 12:37:49 2017
            Not After : Tue May 10 12:37:49 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:e9:09:bb:d1:e8:be:7a:69:e1:23:3d:60:dc:8b:d7:
                    28:06:fd:d1:71:a4:72:48:57:9b:8a:e0:52:9d:f9:8d:
                    2e:4b:2f:9c:5a:f6:94:9a:35:2e:e1:9d:ee:e8:18:9e:
                    9e:f9:6b:32:1f:10:9f:04:82:9a:11:db:ba:40:0d:e9:
                    ec:02:1d:c1:24:19:ee:21:e8:78:af:1d:b6:02:df:60:
                    0c:76:25:fb:31:8c:f1:1b:2e:fc:99:95:a5:2f:09:2d:
                    bd:2d:ef:de:d7:c6:8a:b6:69:0a:0f:06:08:0c:46:31:
                    ff:03:ab:5d:39:cd:be:9b:fa:a6:67:b7:35:10:aa:97:
                    b6:49:91:55:b4:57:11:e5:6f:bf:09:7f:ba:fe:c7:ec:
                    df:d3:06:e9:2d:56:51:44:80:31:ac:08:35:61:ca:d4:
                    91:97:48:f8:84:35:78:2c:d9:1b:b4:d8:f0:59:34:d2:
                    42:70:bf:fa:90:5e:3d:0d:99:bd:e3:27:a7:24:d6:cf:
                    f0:16:f3:57:bb:28:d0:38:24:e5:fa:8b:d1:f2:61:c9:
                    11:0f:31:86:b7:5e:9b:99:26:c5:54:3b:b2:0b:06:5b:
                    bf:4f:08:9b:f8:19:f9:12:bf:07:53:03:20:f7:4f:ef:
                    da:b4:2e:0d:f5:7a:2a:7d:5f:a0:17:41:b1:24:36:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:50:4c:48:d1:b1:6d:90:a9:1d:39:02:29:ff:4f:e6:
        86:86:18:1f:f6:16:41:83:6e:61:f2:07:87:77:8d:57:
        92:67:8a:98:da:c3:b4:76:18:bc:39:64:61:19:7f:f2:
        35:34:4f:e7:ee:8b:2f:8e:2c:2a:89:e8:82:70:c7:a4:
        b4:b3:65:c7:8f:85:15:53:8b:c4:c4:ed:fb:6d:46:55:
        fa:82:c3:a0:aa:e3:f9:61:91:60:e6:5a:ea:79:2e:1e:
        aa:de:c4:ec:77:ea:31:d1:23:1e:c1:11:94:ff:92:49:
        f2:34:14:19:22:c5:27:f2:05:c5:7f:b6:5a:26:e5:0f:
        e5:20:c0:be:87:33:da:ad:e1:24:7a:52:3f:99:ee:1e:
        08:84:15:2e:ee:23:1a:af:6d:b5:22:68:6d:23:68:c5:
        60:7b:ef:0f:1e:a5:ef:2e:42:26:86:0d:8d:fb:02:1f:
        95:41:85:43:e1:18:0d:f8:d7:de:40:a4:ba:2a:f4:79:
        50:d2:87:e1:49:a1:da:28:fc:dc:d6:11:0a:4f:5a:90:
        a1:2a:7d:e7:65:5c:f6:0a:e9:31:33:38:dd:5b:4e:50:
        d5:21:5e:15:12:7b:cb:e9:a8:05:4d:c7:62:74:cc:98:
        ed:ba:e4:a1:a9:75:b5:bc:5d:38:bc:0c:28:ab:06:5e
    Fingerprint (SHA-256):
        EB:6D:C4:61:D7:71:32:31:0B:E1:5D:D9:38:2D:C1:43:39:3F:B7:29:9D:45:62:96:FB:03:85:5F:6D:F7:FE:93
    Fingerprint (SHA1):
        51:33:7D:A6:A5:78:A5:66:7A:C4:5D:0F:67:9D:DF:A1:98:62:BA:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11761: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123294 (0x1e67dd1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Wed May 10 12:37:52 2017
            Not After : Tue May 10 12:37:52 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:eb:ba:09:b0:fb:9e:2c:01:25:ac:2a:98:0d:29:11:
                    46:e0:95:30:8e:f9:fc:20:f9:0c:92:98:5f:94:cf:1f:
                    86:23:c4:38:bf:86:1c:3a:3e:a4:b1:dd:a4:b9:78:60:
                    ea:6f:47:95:7f:fe:d9:bb:80:f7:54:f3:49:17:85:52:
                    66:6d:a1:fe:3d:9d:a3:98:94:2c:dd:88:95:d4:a5:a0:
                    29:df:f7:dd:ca:ab:b3:cb:28:72:00:a4:ab:39:c8:37:
                    01:2a:37:9b:18:67:52:c2:94:2d:0c:5e:39:16:10:72:
                    22:d5:d4:4b:6e:dd:69:8e:70:56:90:f2:f9:aa:95:2f:
                    08:cc:de:0d:7b:26:e4:13:db:7a:83:58:02:61:17:3c:
                    c4:e1:82:1e:19:0a:d9:81:35:6d:cd:92:d1:77:13:44:
                    ab:ad:52:9f:9d:c3:89:8c:fc:7c:74:19:91:d3:d6:17:
                    0e:a2:de:94:bc:27:55:d7:c3:a0:e8:82:37:b5:9b:ca:
                    25:22:df:1f:7e:09:38:6f:67:76:05:aa:96:1e:bc:14:
                    31:dc:bd:d4:8c:8a:6e:dd:b4:6e:06:11:4c:82:fe:19:
                    30:e7:a2:bc:2e:92:c9:ae:1b:2a:bf:d3:9c:1a:c9:7f:
                    33:bf:85:0d:00:42:e3:7f:91:d1:52:a3:26:58:bb:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        13:ee:ca:cb:49:ef:0a:cd:01:fb:0f:1d:0b:04:a9:70:
        41:c6:83:00:ce:a8:72:a6:2b:30:f9:14:0a:fd:ed:75:
        b6:0c:b1:31:46:12:0d:a2:fd:b1:99:1b:77:34:3a:ec:
        9e:5a:71:75:c7:2b:71:8e:18:ae:16:2f:0a:82:06:99:
        42:23:f1:f1:1e:15:ba:a8:fd:cf:63:e7:d9:2e:e9:87:
        76:72:3e:4b:1f:c0:c2:00:e0:e0:ba:01:d4:c8:c9:ae:
        24:64:a1:54:01:db:f8:cb:d7:54:e8:34:4e:21:4c:2b:
        a3:f9:3c:08:ff:05:f8:84:18:08:0b:21:9b:17:03:a9:
        9d:eb:7e:05:14:0f:2b:5e:8b:71:f7:ca:59:32:83:92:
        9b:8b:63:2b:10:a7:91:e5:67:88:a6:fe:f2:4b:9e:a5:
        79:4e:e1:9d:3c:f3:47:7a:7e:09:60:5d:3d:af:2f:5a:
        44:35:89:1b:22:0e:44:85:ec:f9:d1:d6:5a:8c:76:2f:
        d6:07:62:e1:28:bf:a5:2e:45:7c:0f:45:df:1a:81:c2:
        41:5e:d1:10:5c:6a:c1:e3:91:c4:d9:e5:9e:6e:9c:49:
        2f:30:dc:81:ef:4a:8e:8a:1c:b9:58:1a:fe:6d:f4:c5:
        9e:98:a4:f7:95:b1:f2:61:6e:e9:2e:60:c8:b0:cb:85
    Fingerprint (SHA-256):
        E4:C8:CC:03:73:E4:14:6C:1C:45:3B:E8:BD:89:CB:DA:E9:CC:DC:A3:9B:FB:1F:E5:B8:62:F9:51:94:7A:18:52
    Fingerprint (SHA1):
        FE:F1:70:A9:47:4B:44:CE:AD:BA:46:86:5F:D7:BB:24:AF:6E:F2:30
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11762: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123295 (0x1e67dd1f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Wed May 10 12:37:53 2017
            Not After : Tue May 10 12:37:53 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ac:61:7b:ee:92:99:75:e4:4a:c2:61:41:fb:f5:46:
                    9d:06:a7:7c:8e:69:5c:40:23:3e:09:d9:fc:c8:00:54:
                    36:a1:01:d9:37:c8:00:1a:62:a0:e1:ed:32:88:47:7d:
                    a6:7c:88:70:bb:b6:e4:3f:49:96:a6:14:7d:a5:53:c1:
                    1a:52:c6:84:68:96:4f:95:e6:81:09:1c:ad:42:b9:0c:
                    89:d8:d2:4a:f8:10:c6:1d:f7:c9:b5:86:29:a0:3e:80:
                    9e:51:99:97:43:a4:0b:14:9c:63:1f:2d:ec:d6:38:7a:
                    35:30:4e:fe:53:44:c9:9c:3c:5d:71:a6:37:88:36:d4:
                    f7:d3:cb:25:6e:a0:63:bd:0c:07:6c:79:fc:f1:9a:cb:
                    ae:42:eb:bf:88:20:d9:91:b5:dd:a3:ca:da:6e:5e:5e:
                    70:68:49:10:c4:1e:03:34:69:8b:0f:3e:f8:9f:55:16:
                    ab:a9:b0:25:02:87:d0:85:45:6a:15:8b:64:e1:db:75:
                    92:a2:ce:61:5f:66:89:53:57:4a:b2:e6:74:d4:83:a9:
                    36:9d:6f:de:52:58:43:5f:44:17:12:77:40:49:95:12:
                    b5:6f:29:02:f1:a6:e3:3a:45:62:4f:b5:34:ad:98:3f:
                    ac:16:48:df:de:0b:35:96:21:c6:1f:55:9e:40:4b:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:56:c8:f2:1d:56:2e:9b:d6:49:0e:3f:6e:07:68:38:
        0f:6b:0c:44:ba:b5:e9:4c:ca:3a:51:f1:89:5b:c7:44:
        eb:14:58:7a:d0:26:75:f2:34:08:2e:3e:46:9f:9b:7c:
        67:b8:68:31:f2:c0:9f:80:08:d5:06:88:5f:83:fa:1d:
        b5:42:99:b9:fd:e7:5c:4f:84:d1:6b:23:8c:a1:2b:f1:
        0d:cc:87:a7:45:c0:15:9d:6a:2a:75:13:be:8f:ff:ec:
        32:30:0c:da:95:6f:84:45:51:ec:4e:8f:8d:2f:42:72:
        23:02:55:1b:10:04:a1:43:ba:c6:70:10:81:4e:ed:0b:
        6a:80:10:d8:ae:73:a2:3f:69:a6:1d:4f:23:b1:4b:45:
        48:6b:8c:ae:f9:e9:42:99:be:77:5a:70:d9:81:f0:77:
        0e:fd:d0:bf:02:a7:e0:9f:af:8d:ea:22:b1:39:3d:c3:
        64:b0:46:56:79:0f:69:2d:d3:99:f3:c1:71:03:e7:c9:
        fd:53:98:db:b5:7c:e8:e6:be:44:e8:9f:ed:99:c7:92:
        b9:ea:d7:65:3d:6a:a4:57:8a:2d:78:90:84:9b:05:a2:
        d8:7d:5b:2e:05:8a:e1:8a:b1:05:7d:5e:6a:4a:99:52:
        38:fd:61:eb:b5:e7:7e:bc:b8:70:5e:41:9f:b2:3c:33
    Fingerprint (SHA-256):
        60:DD:7A:C3:DA:D9:D0:B1:22:F9:C6:4F:C5:A0:B2:D4:24:A2:DB:30:B7:44:9E:B2:D5:C3:4D:9C:8C:68:B6:12
    Fingerprint (SHA1):
        8D:14:F8:01:DC:DE:AA:73:AF:F8:FB:72:00:BC:F4:E9:21:88:76:21
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11763: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123296 (0x1e67dd20)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Wed May 10 12:37:54 2017
            Not After : Tue May 10 12:37:54 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:8c:39:5a:d7:a8:3a:97:f1:42:3a:77:d6:f6:54:b1:
                    b1:db:68:15:33:18:c9:34:85:a2:6b:5d:db:48:81:9b:
                    10:e4:00:f1:14:90:64:e9:d0:0b:f7:3c:ec:77:be:d4:
                    ca:43:bf:26:ef:6e:71:48:41:c5:69:23:ea:4e:f9:b8:
                    f3:aa:42:2e:23:c7:b6:c4:15:63:74:11:0a:9e:08:e9:
                    e1:4b:dd:2b:b5:8b:cf:50:dc:8f:d5:bb:6f:a8:f9:fd:
                    1d:2d:9f:3c:64:dc:58:23:47:1e:95:a8:52:3b:a8:b1:
                    21:36:26:3a:49:7e:12:fc:20:c7:10:c5:02:48:d2:68:
                    45:ee:32:7e:64:e1:a8:01:52:a7:a7:b2:5a:06:37:4d:
                    fb:3a:04:2c:7f:c8:6b:0f:b3:5c:71:53:91:26:ac:ad:
                    ff:70:d5:fd:ec:78:3e:ea:43:82:7c:1d:df:fd:13:7b:
                    61:f0:e2:be:22:25:b4:53:62:0c:dd:17:38:07:79:ea:
                    f1:49:83:8c:dd:e1:46:f2:f2:20:91:99:32:b0:b3:8a:
                    1a:42:78:0f:75:44:cf:28:28:79:90:c8:c3:38:3f:63:
                    93:eb:cb:4f:ef:3f:c2:8a:15:a5:6a:7e:60:d1:b5:8a:
                    af:2a:3e:c7:d0:44:55:1d:51:33:76:42:2b:51:3c:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:fc:45:fa:1a:98:fb:17:57:e7:52:de:d4:59:f6:5f:
        7a:e7:a9:8a:c1:d8:5a:50:d2:4b:cc:35:00:ea:a5:7c:
        6f:43:19:4e:0b:66:8e:36:ae:cb:bd:ae:9a:09:7c:b6:
        77:5b:1a:3c:04:ba:24:fe:2b:ed:fe:0b:0d:97:fb:52:
        a4:ae:c0:47:24:30:be:3d:89:2d:e5:c4:5b:db:0b:98:
        0e:40:fd:10:78:0f:62:4c:c8:c1:71:59:68:ba:d0:1f:
        71:fd:f1:76:1d:8f:53:ab:d2:0e:04:a1:29:8b:af:c6:
        ce:05:c7:3d:d7:18:4b:77:83:55:6d:fa:7f:fb:41:b6:
        17:af:96:2b:31:ae:76:e9:73:44:5e:fb:8d:f9:d4:b3:
        57:4d:38:37:3e:f7:b9:84:a6:54:b8:ee:87:e2:30:8e:
        ac:b4:38:df:97:70:b8:4f:cc:95:02:13:8b:5c:dc:7f:
        1e:af:83:89:ef:ac:87:d7:b5:17:53:24:e5:37:d7:35:
        b4:7c:46:cf:ae:96:0a:9a:ab:1b:c3:5c:ec:3b:5a:2c:
        e6:43:96:d1:ed:bc:08:9c:64:9f:c5:b1:1d:39:27:d9:
        a2:93:b4:dd:f7:7d:ec:a3:0a:b5:75:3b:c7:60:00:44:
        9d:dd:1b:5f:ae:f2:7a:b5:24:87:b3:51:85:24:57:e2
    Fingerprint (SHA-256):
        26:A4:C8:5C:BD:79:52:23:E2:31:09:9A:E6:F0:A0:13:65:3E:4C:46:85:51:ED:33:8A:AA:49:D0:17:7D:A5:E1
    Fingerprint (SHA1):
        FB:4F:3A:47:6C:41:E7:E6:82:90:E6:5B:F8:F7:79:99:30:39:B5:67
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11764: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123297 (0x1e67dd21)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Wed May 10 12:37:55 2017
            Not After : Tue May 10 12:37:55 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    90:55:9f:d6:8e:7c:65:b8:c5:0c:11:8d:5b:dd:67:b5:
                    ef:1d:58:99:a3:ef:5a:25:91:7f:3e:dd:d4:5f:f5:ae:
                    3b:38:fe:39:77:ba:49:f9:36:84:3b:7b:bb:5a:20:81:
                    b6:7a:1f:dd:ac:41:ac:55:e8:be:ed:58:97:ea:13:35:
                    2f:57:75:d0:11:b5:a0:f2:e9:28:67:43:ac:55:68:e3:
                    fe:c2:a4:a5:cd:83:42:74:48:9a:27:2c:15:f8:af:9f:
                    85:c8:eb:b8:0b:23:8d:96:fb:4a:e3:b3:04:e2:44:f4:
                    bf:1a:87:cf:47:24:4c:04:28:7d:fc:f8:2a:df:34:07:
                    2e:78:dc:25:0a:ef:7e:8e:ff:b6:d8:fb:c0:b5:ad:16:
                    b7:44:57:9a:e9:85:a2:fc:a7:c8:e7:99:ca:55:8f:37:
                    e2:59:26:ab:48:56:db:57:71:6e:1a:d3:2b:21:fe:d8:
                    75:43:97:cd:d7:01:f0:a3:b8:d9:1c:1d:fe:6e:d7:1c:
                    4b:e1:d2:a8:8a:f7:21:b2:c9:92:fa:79:1c:45:9b:0e:
                    b9:ab:14:f9:50:d8:b4:c9:2f:17:5f:e5:18:74:a7:b7:
                    97:c9:af:f4:ad:48:1a:ff:10:2d:8f:a7:b3:cb:40:a4:
                    fe:48:95:66:7f:04:4e:a3:7b:e9:b4:78:e7:7d:1b:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:40:c2:1a:cc:90:34:2e:00:47:ef:b2:8d:63:cd:df:
        61:e0:26:6c:20:e2:0d:85:1e:4d:8d:04:07:4c:a3:d1:
        06:0e:3a:9b:b3:e8:97:3c:56:6d:a3:7c:77:ee:f1:09:
        1a:08:8d:74:0a:3b:cf:13:15:7f:70:7e:c4:ed:cc:f8:
        0f:8b:24:8c:2c:01:05:e5:62:bd:7d:3c:0a:5e:cd:4e:
        cd:43:13:09:1c:f1:1f:18:19:b0:b0:ed:3e:3c:b4:48:
        88:c8:3d:4a:41:60:49:53:ff:66:10:33:62:1a:cb:32:
        40:a2:c4:5d:57:7a:60:f5:d5:6b:8b:59:62:d1:ed:bd:
        4f:fd:0f:7f:b0:7f:6b:48:b0:c3:4e:44:3d:26:db:ba:
        0a:e0:01:6a:64:b8:e3:30:00:ed:8d:69:5c:56:01:f0:
        f6:56:3d:42:08:d5:56:1d:c8:77:0b:dd:2e:4a:d1:4f:
        1c:f3:ab:85:c4:de:bc:ec:2c:ac:15:f1:bb:42:77:34:
        e5:1a:4e:f4:84:88:f7:f4:12:39:de:2e:fc:1a:33:11:
        12:97:fb:97:7b:48:2e:41:27:c2:43:c2:8d:62:3a:da:
        4e:48:cc:20:f9:9d:ec:8f:40:fd:49:a3:8c:4a:32:6d:
        f3:5a:dc:55:41:13:d9:e7:06:fc:57:36:e3:43:8c:b1
    Fingerprint (SHA-256):
        86:08:AD:BF:8C:0D:24:56:24:C4:01:77:7D:4B:93:3E:EF:D3:FF:83:AB:A4:CE:9A:A3:BD:19:E1:1F:F6:63:23
    Fingerprint (SHA1):
        6B:65:42:37:9E:63:E2:24:32:BA:5D:29:AE:E9:4E:2E:EE:88:50:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11765: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123298 (0x1e67dd22)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Wed May 10 12:37:56 2017
            Not After : Tue May 10 12:37:56 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:9c:4a:76:d9:1c:a3:33:18:c0:17:fb:f2:0a:53:df:
                    8b:42:99:68:ad:17:be:44:37:f0:12:19:f1:c4:da:e0:
                    53:c8:00:14:98:c8:17:0f:14:6c:a5:93:6b:f1:b8:43:
                    b0:89:73:24:16:23:7b:73:72:0e:52:3e:5d:14:0e:e5:
                    ab:2b:70:80:57:45:80:fe:a3:82:af:6d:a0:4a:10:01:
                    04:d2:1d:cc:c4:a0:ec:be:c2:88:10:d9:f6:fe:5a:99:
                    ac:72:ff:6a:c0:45:16:f3:70:e1:32:6e:4c:6c:07:1a:
                    cf:43:f4:63:6f:26:3a:88:47:68:b0:9a:87:64:32:47:
                    4c:ec:70:c7:80:1f:2f:29:22:d6:19:53:ec:bd:4a:f2:
                    6a:a0:ac:1c:81:64:57:ac:cd:a9:3f:ed:8a:23:3f:2b:
                    fc:47:99:c9:b0:43:8b:ac:69:42:f7:f4:40:29:43:a2:
                    6f:92:af:d4:bb:0e:fa:43:27:9e:de:ad:dc:28:d9:ac:
                    b1:90:0b:d3:40:65:0e:af:56:eb:f4:d3:7f:22:c6:ba:
                    15:1f:a8:e7:bb:71:18:9f:1c:28:c8:93:64:04:dd:09:
                    3b:ee:48:8e:a0:8d:4e:d9:4b:e4:dd:0f:d2:f0:59:25:
                    7f:e9:f5:cf:23:c4:f8:97:60:42:27:7e:e7:2a:9d:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:14:fd:03:b5:f5:d2:aa:ce:9f:d7:13:61:b2:50:f1:
        07:90:9b:7b:33:11:53:56:4b:ee:8e:47:04:b3:37:18:
        cb:c4:47:13:98:53:06:b0:3e:87:7d:17:3d:37:37:0b:
        00:cc:19:ff:78:a2:4b:e6:15:1e:ce:69:bc:9e:0c:92:
        40:35:73:10:d5:d7:fd:d6:a7:e3:3c:a4:ee:5e:6d:a4:
        16:8c:8f:6f:f1:d7:5e:fe:fd:54:14:e4:e5:fd:48:e9:
        5f:c2:27:8b:74:c3:fd:4e:8b:05:d7:0b:dc:46:e4:09:
        86:a0:9c:b0:91:20:53:4d:e7:dc:3f:37:29:0f:ab:3e:
        07:65:ad:2a:ca:00:24:ff:84:4c:dc:f2:8f:b9:14:ff:
        17:db:96:28:f2:e6:83:05:93:6a:7d:8d:e9:63:a8:d1:
        68:a6:36:5d:e2:be:63:6e:a3:58:96:ed:f6:0e:56:cf:
        9d:19:46:f5:36:31:c4:fb:a2:76:12:fd:1e:7b:f7:50:
        2e:3b:64:3b:6a:68:61:eb:40:9b:6c:7e:53:28:ec:fd:
        9c:04:46:f7:4e:2b:5b:46:7a:7f:04:16:cf:16:41:da:
        1a:6c:8b:a5:cf:70:bd:ed:2b:03:72:5d:1e:1a:ec:d4:
        33:a7:b7:48:b5:69:6d:ee:03:a1:cb:46:1e:ce:43:98
    Fingerprint (SHA-256):
        2E:3D:8E:F6:05:27:8A:6C:4D:7D:21:E8:8B:9B:FC:D2:E8:FC:C9:E2:15:E5:6C:67:AE:61:72:CF:96:7A:E6:D7
    Fingerprint (SHA1):
        48:C8:92:6D:4B:4C:07:A1:7B:AC:32:0E:D5:E6:90:54:49:8A:60:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11766: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123299 (0x1e67dd23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Wed May 10 12:37:58 2017
            Not After : Tue May 10 12:37:58 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:60:ce:f3:7e:52:2b:35:81:99:8f:d1:a4:9e:41:07:
                    d8:d0:3b:1b:9f:4f:39:a7:56:4b:5d:ca:81:e1:9c:cc:
                    80:34:ea:36:8a:b8:66:3a:c2:42:4d:c4:19:95:97:7f:
                    a5:7d:a6:30:54:53:68:76:5b:50:5e:3f:4a:f6:6c:c8:
                    e9:b1:c4:a6:cc:97:ba:25:82:1d:02:c6:7a:62:52:8e:
                    1c:84:28:22:e6:51:9a:05:b2:a7:ac:ba:b2:2c:38:95:
                    95:e9:dd:ed:03:16:4f:61:31:81:c5:ab:76:93:c5:6b:
                    99:c0:35:9e:82:97:e6:39:03:99:28:d3:ef:ab:d8:71:
                    8a:fa:54:21:44:c0:61:6b:55:ff:27:1e:7b:58:34:30:
                    f5:f8:17:3d:d5:19:dc:c8:5c:4e:ef:5a:19:37:8c:fb:
                    c9:b2:ca:6b:f5:d8:7c:c5:6a:db:d4:33:96:42:67:4e:
                    b1:89:f7:45:23:7a:f7:1e:c4:ab:bf:91:3e:82:65:92:
                    85:7d:27:d6:c7:71:dc:ac:a7:be:75:57:ac:f5:6a:5b:
                    f3:da:d2:72:7a:b4:bc:3b:1a:82:46:c7:ab:f1:c2:ce:
                    89:04:7f:ec:f8:68:2e:89:b9:4c:df:bf:7a:20:05:97:
                    43:2c:3e:18:f6:f0:dd:d1:ad:33:8f:13:a1:3c:ce:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:93:f3:8e:4f:b1:0d:42:0d:ed:57:d9:f4:5d:77:b6:
        88:6b:80:42:bb:1f:eb:0c:d2:5e:31:77:41:eb:dd:77:
        21:04:1c:fa:56:95:78:e3:11:fe:98:c1:f6:b9:b8:dd:
        05:15:aa:da:a4:e5:bf:70:bb:84:a4:06:90:42:d5:93:
        a9:11:af:50:1d:9f:f2:74:27:85:de:5c:20:35:10:48:
        02:d4:41:ac:4d:31:ec:71:1b:d9:a0:bc:df:bf:da:e1:
        2f:84:31:9e:9a:bd:c9:b4:42:b2:65:6a:45:64:0f:7d:
        44:34:fa:ef:eb:4c:23:31:60:ff:3a:ec:0f:fc:5a:35:
        b5:10:3a:86:67:b5:46:8a:1f:ef:cc:a1:ff:b6:7b:e9:
        52:02:73:e7:47:42:fa:fe:8f:c6:6c:03:ca:be:b2:db:
        bf:73:57:37:ec:79:73:ec:fa:b5:3c:e5:10:02:92:f2:
        94:ad:21:f0:df:a4:f9:a5:22:c8:ed:47:f8:e8:34:05:
        40:50:d0:fb:57:04:7d:68:b0:2a:0f:ae:87:db:7d:28:
        d3:3e:60:7a:e8:f3:f3:15:dc:73:33:fb:e8:fb:16:b2:
        6e:35:e4:a4:f9:2e:36:e0:4c:cb:ec:0b:7a:8b:38:93:
        b4:e5:aa:78:66:9f:fc:3a:a3:64:35:63:85:98:51:14
    Fingerprint (SHA-256):
        06:3E:AD:A2:77:0F:30:11:80:B1:DE:D9:CC:07:86:12:95:3B:0D:84:3C:C0:D3:BC:3F:98:4B:9D:64:A4:72:D5
    Fingerprint (SHA1):
        43:51:CB:5C:95:BD:56:5A:30:CE:B5:82:11:0C:D9:DE:AA:E8:BD:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11767: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123300 (0x1e67dd24)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Wed May 10 12:37:59 2017
            Not After : Tue May 10 12:37:59 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:80:46:ef:4e:24:29:be:3c:36:70:8e:48:fc:84:5e:
                    ff:f8:1e:4a:29:4d:52:08:93:ea:4e:3b:60:ec:d0:07:
                    fd:0e:0a:9f:4e:bb:3b:c4:e3:34:69:a8:19:8f:cd:7b:
                    2c:a4:20:86:21:90:4a:11:4e:ba:cb:3b:6f:38:68:9b:
                    22:dd:fc:9b:0e:24:fb:25:39:54:07:99:a5:eb:d7:f1:
                    84:e5:ab:99:f6:05:54:59:3a:9e:1c:db:d1:24:96:65:
                    73:16:bf:97:36:46:87:66:42:77:1e:84:54:93:5b:24:
                    39:55:92:db:54:0e:a3:75:d0:cf:ef:7d:02:d6:79:66:
                    85:16:2a:7e:e4:89:6f:4c:ee:5e:c4:47:77:55:fd:07:
                    d9:02:0d:d5:8b:52:42:37:e3:69:a7:86:04:c8:14:a9:
                    8b:81:76:47:38:04:1c:9d:f4:52:aa:b3:9e:a8:45:95:
                    fc:fb:e9:9d:2f:48:f1:b0:50:0a:7e:ad:46:98:6c:ef:
                    9b:b9:02:67:68:6c:95:ae:3b:01:ba:9a:52:73:70:87:
                    29:cf:d4:1b:05:2d:50:26:b2:db:68:f4:22:0d:d5:12:
                    21:47:75:fe:ef:c3:ae:05:6e:c4:c6:8e:e0:60:97:2a:
                    8c:18:4c:2f:97:86:e9:1c:63:9b:93:e1:f0:3c:65:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:c2:8e:69:63:4b:a1:5f:44:db:4b:8c:c0:6f:5d:e1:
        86:8b:1f:72:86:4a:73:5d:a8:23:9b:87:29:a8:7d:63:
        30:ed:ca:50:a8:fd:dc:d7:e9:1b:d7:1a:85:ee:7a:4b:
        89:7d:e4:44:4c:55:b5:69:9e:7f:61:ab:cc:45:2a:91:
        c0:9c:e3:c7:40:bf:c9:ec:ea:d5:03:35:80:d2:3a:55:
        9b:4d:aa:ed:fc:2e:7f:04:ee:fb:b6:90:82:52:83:c5:
        22:6a:77:78:9c:19:86:95:e8:62:d4:5f:01:8c:3b:8a:
        ca:51:d1:04:dc:5a:76:b0:82:f5:4f:9b:df:93:cb:1a:
        5c:b6:6b:b7:ba:e9:1c:cb:96:ec:da:1f:cb:3f:f5:8a:
        a6:9d:71:d8:61:93:db:9f:77:cf:07:53:52:4f:9e:30:
        13:84:3f:ab:ea:39:12:46:c9:23:dc:f4:48:ba:f7:ce:
        54:04:cb:ce:03:38:cb:9c:f6:ed:e8:fa:da:67:ff:be:
        12:9f:9e:38:6d:dd:75:76:6c:44:eb:46:4e:1d:c6:63:
        6a:4d:52:8a:37:1d:5c:a2:0c:cf:56:f9:88:d2:42:0e:
        89:90:56:66:cb:59:7f:60:23:bf:b0:48:88:9d:6e:a8:
        8f:fd:61:f5:e1:e7:9a:bf:9f:53:0d:2f:87:09:d6:5f
    Fingerprint (SHA-256):
        57:67:13:2C:01:31:CC:92:EC:CE:ED:23:CF:FB:88:B9:A0:01:2D:84:EC:0C:CC:84:53:8C:EF:9E:0F:5D:A0:A8
    Fingerprint (SHA1):
        58:C2:76:28:39:C3:74:E0:39:A1:C2:06:0A:9F:63:40:36:26:42:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11768: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11769: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123315 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11770: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11771: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11772: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11773: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123316   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11774: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11775: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11776: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11777: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123317   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11778: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11779: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11780: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11781: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510123318   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11782: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11783: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11784: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123315 (0x1e67dd33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:13 2017
            Not After : Tue May 10 12:38:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:c3:11:09:18:11:30:78:ab:bb:47:31:26:4e:61:74:
                    1a:2d:06:a8:6c:20:4d:08:20:9b:3b:aa:11:a1:de:1e:
                    31:b0:ab:7d:b9:03:3b:fa:4c:2a:88:d8:d1:97:6b:f7:
                    83:30:66:25:16:9b:59:13:ae:62:17:4c:aa:b5:69:6f:
                    67:02:d2:34:32:a9:54:ad:f4:ea:9a:00:27:8b:b5:70:
                    6e:98:d2:83:05:5a:7d:99:fb:04:b4:bc:9f:53:b0:86:
                    13:1b:d4:c9:3f:3f:7f:c9:3a:af:f1:65:89:5b:5f:7c:
                    fb:71:53:bf:fd:c1:f7:0b:6c:68:cc:82:2d:e9:d8:46:
                    d2:3d:09:b0:4a:41:2c:1f:ec:ae:29:a6:cd:9a:20:f4:
                    d0:66:a6:c2:4e:3e:9c:1b:45:28:51:3c:2b:ad:81:bf:
                    ed:dc:71:7f:80:a7:87:fa:bb:85:ab:8b:e0:83:a9:6b:
                    d1:47:5f:6e:3c:dc:0d:08:ca:d8:a2:47:e0:a4:8b:d6:
                    e0:ae:a6:60:2b:c4:84:d6:10:1f:9b:db:c7:01:ca:31:
                    c6:aa:97:c5:be:6f:c5:c7:12:12:ff:05:cb:d9:eb:65:
                    e0:d7:0b:ee:4e:32:57:d8:13:89:bc:89:95:96:31:29:
                    b8:ef:94:6b:3c:54:ba:a6:60:a4:7f:c7:25:64:5b:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:1e:06:f4:b0:a6:a8:39:4f:cc:05:9a:10:dd:3d:34:
        0b:ee:6b:6b:7f:7d:8b:f8:0f:a5:2e:de:fd:83:31:fd:
        d6:b2:e9:70:08:72:8a:7a:e0:6f:00:5c:fc:ac:a4:93:
        51:dc:48:9b:ff:4a:6c:fc:3d:c1:e1:80:f4:49:b3:48:
        3a:5e:2b:41:5c:8d:54:ec:08:80:81:e3:9c:2c:3d:65:
        aa:ad:fc:16:8c:62:b6:52:bf:98:51:a0:3a:2b:05:89:
        21:1c:0f:fe:63:cc:87:bc:08:c3:1f:16:58:e5:c0:05:
        cc:7d:0f:94:a8:27:4c:f1:3d:0e:5f:e8:73:1e:39:ae:
        a7:f3:d1:a9:4f:c8:a0:37:7c:6b:62:f2:35:b7:f6:eb:
        e5:4f:75:3a:2e:4a:1d:39:3f:58:7b:bf:62:ea:db:92:
        7a:21:16:76:9f:a2:a4:fb:50:21:aa:21:4b:13:21:14:
        7a:6d:1a:11:7a:9e:67:76:21:01:da:0d:ed:ab:00:54:
        87:5c:33:9d:97:10:13:cb:9c:a7:f4:3b:aa:30:55:21:
        df:48:6a:25:62:34:2a:9f:eb:53:47:89:1c:a7:7a:90:
        e8:49:67:e9:82:33:72:94:fa:60:bf:22:a0:a0:ca:19:
        fb:f1:ab:ae:f5:31:4f:72:bf:6b:26:c8:25:dd:e4:ef
    Fingerprint (SHA-256):
        E3:95:D5:99:A5:72:62:B5:62:9B:21:5A:26:88:5D:DB:80:51:94:FC:30:E4:D0:2A:AA:1F:F0:34:E8:F7:0E:59
    Fingerprint (SHA1):
        20:54:C2:FE:9F:FB:7B:FE:B4:61:9F:87:F2:D7:8A:F4:06:63:9A:DD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11785: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11786: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123316 (0x1e67dd34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:14 2017
            Not After : Tue May 10 12:38:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:94:6f:f0:ae:b9:3f:8b:fc:9f:c4:5d:75:f2:01:7e:
                    d6:fb:5c:ca:67:60:86:c7:8a:2c:df:13:9f:11:31:9e:
                    b3:d6:77:0b:8b:b7:b9:b0:fd:23:a1:86:03:16:13:42:
                    1c:f4:50:13:7d:9a:e6:57:d7:5e:98:ab:37:9c:7a:e0:
                    16:63:ef:f3:c1:d9:10:02:e4:37:38:7b:72:62:4c:ff:
                    6e:ea:10:ca:26:08:c2:fd:f5:5e:1f:6d:5f:aa:b1:32:
                    51:65:e7:d4:63:2b:95:d5:ee:99:2f:3d:ff:ca:71:36:
                    bd:87:eb:58:26:dc:e3:7c:77:26:ec:1c:a4:cf:48:cb:
                    83:be:91:bd:65:8b:6d:2a:e7:6f:83:7e:d7:16:1b:70:
                    63:a9:da:5f:7c:86:1f:17:17:25:06:4e:d1:32:e7:12:
                    c8:d1:d0:f1:98:95:cc:9b:af:78:8e:b8:65:a5:c8:55:
                    6a:f2:67:5d:85:f5:11:77:64:ef:47:a4:e9:2e:72:47:
                    92:d6:c3:60:ff:89:a6:cb:23:5b:26:b9:79:4e:45:60:
                    a4:ba:3c:0c:94:29:76:b4:12:62:0f:dd:57:a4:8e:02:
                    68:ef:32:b7:39:2e:9c:30:2e:8e:84:17:3f:01:70:bd:
                    1a:ef:22:58:77:ec:d2:af:56:68:2a:d8:d5:0d:20:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:9b:12:d6:3e:48:0a:fe:65:62:66:c5:fe:ce:dd:d4:
        d7:b0:21:6d:5d:4d:55:22:38:4e:b7:d8:be:de:b6:39:
        d7:2f:fc:aa:43:fe:08:df:ba:87:e7:36:0b:18:d6:5a:
        32:b5:33:96:89:85:33:f1:4e:f4:23:34:10:da:f7:b8:
        ec:f8:bc:b4:7f:2d:fc:97:c9:f6:73:e5:d1:ae:02:84:
        c8:a2:a4:fc:7a:ef:20:78:2a:10:92:c2:6b:bd:1d:93:
        38:73:a7:a5:02:fb:32:12:4d:96:23:cb:18:1d:8b:74:
        99:ce:58:30:54:21:e5:1f:80:ff:ce:de:f9:a8:c0:31:
        b1:10:ec:65:3e:dd:7d:76:86:5a:06:e7:00:6f:b3:25:
        71:53:e5:aa:5c:47:6b:a5:79:70:a5:81:5e:8a:13:fb:
        7c:de:40:76:02:9f:c0:4e:02:93:9e:0d:66:c1:1e:ad:
        2d:9d:08:2e:1d:5c:0b:54:0a:b5:d0:83:88:ed:1f:0c:
        3f:ea:a1:88:05:39:b7:ee:7b:57:a0:5b:34:d2:95:d5:
        47:ba:0c:dd:b7:5a:1b:58:36:57:8f:1e:8b:7b:48:36:
        60:fc:9a:00:7a:db:62:69:69:51:17:ad:cd:2d:4c:12:
        6a:19:85:84:8a:b4:81:ff:1b:0a:99:ed:d2:56:47:01
    Fingerprint (SHA-256):
        4C:71:2B:86:79:A2:2B:39:06:6D:1F:61:C8:4E:91:E0:BE:B0:31:88:05:A7:D8:C1:5A:76:01:C3:A6:34:01:76
    Fingerprint (SHA1):
        5E:76:1D:C7:ED:CA:74:BB:A7:6B:D6:33:69:CD:F2:A9:36:D9:AA:0B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11787: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11788: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123317 (0x1e67dd35)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:38:16 2017
            Not After : Tue May 10 12:38:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:91:09:b6:3c:3d:a8:96:5b:66:5d:0e:4e:c2:80:59:
                    30:3b:8b:15:4e:d8:2f:c7:d0:aa:d5:46:93:7a:af:dc:
                    46:b9:22:f0:94:fe:b2:f1:3a:c8:88:1d:5e:2c:8d:50:
                    cc:07:fc:6f:69:74:f3:67:d8:37:6f:9c:e5:54:c4:6d:
                    c3:37:00:46:b4:7c:ad:24:1d:67:11:26:4c:4d:40:4f:
                    71:05:7a:63:a1:31:b1:fd:25:cc:2c:e8:56:0e:b6:d1:
                    c2:f7:e1:41:06:41:a6:5b:c0:00:4e:42:5d:86:28:7e:
                    a6:72:ed:b3:58:f8:35:7d:6a:ac:4d:53:84:ef:70:7f:
                    24:f7:ef:b5:53:93:5b:a0:e9:cd:87:ce:56:95:66:35:
                    f4:55:f9:e8:4f:d7:4e:a1:30:78:b6:d1:3a:01:d8:2f:
                    8f:b9:4f:b0:07:8e:86:65:12:b6:06:2b:41:2a:79:16:
                    55:62:59:58:b2:c0:5b:c0:5c:84:88:d8:16:fb:ad:85:
                    cf:b9:dd:04:bf:de:8d:bf:e4:aa:c7:3c:54:56:84:eb:
                    cc:a4:35:67:38:b1:66:cd:79:a8:1d:1f:e4:b8:2c:5b:
                    32:e6:41:97:ef:31:72:2a:a1:e2:56:58:68:a0:c5:1d:
                    27:f0:19:9a:ab:e6:e6:f0:5d:34:b4:ec:16:64:e1:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:5d:41:20:f3:fd:e4:0b:21:14:1e:95:8e:fd:09:5c:
        0e:95:6c:6b:de:fc:64:d8:81:6e:58:64:09:be:6c:7a:
        0e:41:e5:58:fc:46:c7:98:bb:3c:13:e9:a0:ac:a5:ab:
        eb:fb:24:a5:5f:c2:a8:71:58:9a:c2:78:2e:44:37:29:
        4c:d2:6a:5d:2c:0d:40:34:eb:c7:ae:b3:83:49:4a:30:
        1b:f1:a5:59:f9:8c:53:53:0b:0f:19:01:08:4b:cb:b5:
        eb:db:61:e2:96:f4:fd:91:c1:11:25:53:59:b3:b9:5f:
        b7:b2:1c:92:61:f3:b3:5d:06:a4:2e:a6:cd:e5:5a:69:
        e5:c9:f9:d8:c2:a1:81:0d:ea:ad:ee:ed:89:16:7d:ed:
        2a:17:1f:a7:09:52:f2:d4:61:b2:94:e2:d7:92:7b:12:
        b6:be:bc:42:27:8e:96:a1:50:5d:8f:9f:bb:14:0d:cb:
        e7:c9:89:ee:9a:e4:29:55:9e:45:7c:b7:72:b9:20:c9:
        38:3d:6e:7d:10:a5:c6:df:a5:70:96:6e:2d:ab:3b:7d:
        b1:a1:63:fc:3c:00:c3:44:cc:b3:8f:9a:fc:07:bf:b5:
        8a:6c:55:33:63:ae:c8:54:51:13:12:c6:1d:ff:cc:1e:
        bd:1e:72:b0:a3:94:6a:4e:12:f2:8d:b4:97:67:5e:27
    Fingerprint (SHA-256):
        3A:CA:42:8B:E0:38:8A:4A:7E:C5:97:55:62:05:1C:77:44:49:C1:AB:06:F1:D8:BE:94:F3:6A:F0:30:88:4A:72
    Fingerprint (SHA1):
        FF:81:DB:89:3F:08:2A:93:40:95:6F:A0:A5:43:EA:02:33:B6:60:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11789: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11790: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11791: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11792: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11793: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123315 (0x1e67dd33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:13 2017
            Not After : Tue May 10 12:38:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a1:c3:11:09:18:11:30:78:ab:bb:47:31:26:4e:61:74:
                    1a:2d:06:a8:6c:20:4d:08:20:9b:3b:aa:11:a1:de:1e:
                    31:b0:ab:7d:b9:03:3b:fa:4c:2a:88:d8:d1:97:6b:f7:
                    83:30:66:25:16:9b:59:13:ae:62:17:4c:aa:b5:69:6f:
                    67:02:d2:34:32:a9:54:ad:f4:ea:9a:00:27:8b:b5:70:
                    6e:98:d2:83:05:5a:7d:99:fb:04:b4:bc:9f:53:b0:86:
                    13:1b:d4:c9:3f:3f:7f:c9:3a:af:f1:65:89:5b:5f:7c:
                    fb:71:53:bf:fd:c1:f7:0b:6c:68:cc:82:2d:e9:d8:46:
                    d2:3d:09:b0:4a:41:2c:1f:ec:ae:29:a6:cd:9a:20:f4:
                    d0:66:a6:c2:4e:3e:9c:1b:45:28:51:3c:2b:ad:81:bf:
                    ed:dc:71:7f:80:a7:87:fa:bb:85:ab:8b:e0:83:a9:6b:
                    d1:47:5f:6e:3c:dc:0d:08:ca:d8:a2:47:e0:a4:8b:d6:
                    e0:ae:a6:60:2b:c4:84:d6:10:1f:9b:db:c7:01:ca:31:
                    c6:aa:97:c5:be:6f:c5:c7:12:12:ff:05:cb:d9:eb:65:
                    e0:d7:0b:ee:4e:32:57:d8:13:89:bc:89:95:96:31:29:
                    b8:ef:94:6b:3c:54:ba:a6:60:a4:7f:c7:25:64:5b:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:1e:06:f4:b0:a6:a8:39:4f:cc:05:9a:10:dd:3d:34:
        0b:ee:6b:6b:7f:7d:8b:f8:0f:a5:2e:de:fd:83:31:fd:
        d6:b2:e9:70:08:72:8a:7a:e0:6f:00:5c:fc:ac:a4:93:
        51:dc:48:9b:ff:4a:6c:fc:3d:c1:e1:80:f4:49:b3:48:
        3a:5e:2b:41:5c:8d:54:ec:08:80:81:e3:9c:2c:3d:65:
        aa:ad:fc:16:8c:62:b6:52:bf:98:51:a0:3a:2b:05:89:
        21:1c:0f:fe:63:cc:87:bc:08:c3:1f:16:58:e5:c0:05:
        cc:7d:0f:94:a8:27:4c:f1:3d:0e:5f:e8:73:1e:39:ae:
        a7:f3:d1:a9:4f:c8:a0:37:7c:6b:62:f2:35:b7:f6:eb:
        e5:4f:75:3a:2e:4a:1d:39:3f:58:7b:bf:62:ea:db:92:
        7a:21:16:76:9f:a2:a4:fb:50:21:aa:21:4b:13:21:14:
        7a:6d:1a:11:7a:9e:67:76:21:01:da:0d:ed:ab:00:54:
        87:5c:33:9d:97:10:13:cb:9c:a7:f4:3b:aa:30:55:21:
        df:48:6a:25:62:34:2a:9f:eb:53:47:89:1c:a7:7a:90:
        e8:49:67:e9:82:33:72:94:fa:60:bf:22:a0:a0:ca:19:
        fb:f1:ab:ae:f5:31:4f:72:bf:6b:26:c8:25:dd:e4:ef
    Fingerprint (SHA-256):
        E3:95:D5:99:A5:72:62:B5:62:9B:21:5A:26:88:5D:DB:80:51:94:FC:30:E4:D0:2A:AA:1F:F0:34:E8:F7:0E:59
    Fingerprint (SHA1):
        20:54:C2:FE:9F:FB:7B:FE:B4:61:9F:87:F2:D7:8A:F4:06:63:9A:DD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11794: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11795: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123316 (0x1e67dd34)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:14 2017
            Not After : Tue May 10 12:38:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:94:6f:f0:ae:b9:3f:8b:fc:9f:c4:5d:75:f2:01:7e:
                    d6:fb:5c:ca:67:60:86:c7:8a:2c:df:13:9f:11:31:9e:
                    b3:d6:77:0b:8b:b7:b9:b0:fd:23:a1:86:03:16:13:42:
                    1c:f4:50:13:7d:9a:e6:57:d7:5e:98:ab:37:9c:7a:e0:
                    16:63:ef:f3:c1:d9:10:02:e4:37:38:7b:72:62:4c:ff:
                    6e:ea:10:ca:26:08:c2:fd:f5:5e:1f:6d:5f:aa:b1:32:
                    51:65:e7:d4:63:2b:95:d5:ee:99:2f:3d:ff:ca:71:36:
                    bd:87:eb:58:26:dc:e3:7c:77:26:ec:1c:a4:cf:48:cb:
                    83:be:91:bd:65:8b:6d:2a:e7:6f:83:7e:d7:16:1b:70:
                    63:a9:da:5f:7c:86:1f:17:17:25:06:4e:d1:32:e7:12:
                    c8:d1:d0:f1:98:95:cc:9b:af:78:8e:b8:65:a5:c8:55:
                    6a:f2:67:5d:85:f5:11:77:64:ef:47:a4:e9:2e:72:47:
                    92:d6:c3:60:ff:89:a6:cb:23:5b:26:b9:79:4e:45:60:
                    a4:ba:3c:0c:94:29:76:b4:12:62:0f:dd:57:a4:8e:02:
                    68:ef:32:b7:39:2e:9c:30:2e:8e:84:17:3f:01:70:bd:
                    1a:ef:22:58:77:ec:d2:af:56:68:2a:d8:d5:0d:20:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:9b:12:d6:3e:48:0a:fe:65:62:66:c5:fe:ce:dd:d4:
        d7:b0:21:6d:5d:4d:55:22:38:4e:b7:d8:be:de:b6:39:
        d7:2f:fc:aa:43:fe:08:df:ba:87:e7:36:0b:18:d6:5a:
        32:b5:33:96:89:85:33:f1:4e:f4:23:34:10:da:f7:b8:
        ec:f8:bc:b4:7f:2d:fc:97:c9:f6:73:e5:d1:ae:02:84:
        c8:a2:a4:fc:7a:ef:20:78:2a:10:92:c2:6b:bd:1d:93:
        38:73:a7:a5:02:fb:32:12:4d:96:23:cb:18:1d:8b:74:
        99:ce:58:30:54:21:e5:1f:80:ff:ce:de:f9:a8:c0:31:
        b1:10:ec:65:3e:dd:7d:76:86:5a:06:e7:00:6f:b3:25:
        71:53:e5:aa:5c:47:6b:a5:79:70:a5:81:5e:8a:13:fb:
        7c:de:40:76:02:9f:c0:4e:02:93:9e:0d:66:c1:1e:ad:
        2d:9d:08:2e:1d:5c:0b:54:0a:b5:d0:83:88:ed:1f:0c:
        3f:ea:a1:88:05:39:b7:ee:7b:57:a0:5b:34:d2:95:d5:
        47:ba:0c:dd:b7:5a:1b:58:36:57:8f:1e:8b:7b:48:36:
        60:fc:9a:00:7a:db:62:69:69:51:17:ad:cd:2d:4c:12:
        6a:19:85:84:8a:b4:81:ff:1b:0a:99:ed:d2:56:47:01
    Fingerprint (SHA-256):
        4C:71:2B:86:79:A2:2B:39:06:6D:1F:61:C8:4E:91:E0:BE:B0:31:88:05:A7:D8:C1:5A:76:01:C3:A6:34:01:76
    Fingerprint (SHA1):
        5E:76:1D:C7:ED:CA:74:BB:A7:6B:D6:33:69:CD:F2:A9:36:D9:AA:0B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11796: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11797: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123317 (0x1e67dd35)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:38:16 2017
            Not After : Tue May 10 12:38:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:91:09:b6:3c:3d:a8:96:5b:66:5d:0e:4e:c2:80:59:
                    30:3b:8b:15:4e:d8:2f:c7:d0:aa:d5:46:93:7a:af:dc:
                    46:b9:22:f0:94:fe:b2:f1:3a:c8:88:1d:5e:2c:8d:50:
                    cc:07:fc:6f:69:74:f3:67:d8:37:6f:9c:e5:54:c4:6d:
                    c3:37:00:46:b4:7c:ad:24:1d:67:11:26:4c:4d:40:4f:
                    71:05:7a:63:a1:31:b1:fd:25:cc:2c:e8:56:0e:b6:d1:
                    c2:f7:e1:41:06:41:a6:5b:c0:00:4e:42:5d:86:28:7e:
                    a6:72:ed:b3:58:f8:35:7d:6a:ac:4d:53:84:ef:70:7f:
                    24:f7:ef:b5:53:93:5b:a0:e9:cd:87:ce:56:95:66:35:
                    f4:55:f9:e8:4f:d7:4e:a1:30:78:b6:d1:3a:01:d8:2f:
                    8f:b9:4f:b0:07:8e:86:65:12:b6:06:2b:41:2a:79:16:
                    55:62:59:58:b2:c0:5b:c0:5c:84:88:d8:16:fb:ad:85:
                    cf:b9:dd:04:bf:de:8d:bf:e4:aa:c7:3c:54:56:84:eb:
                    cc:a4:35:67:38:b1:66:cd:79:a8:1d:1f:e4:b8:2c:5b:
                    32:e6:41:97:ef:31:72:2a:a1:e2:56:58:68:a0:c5:1d:
                    27:f0:19:9a:ab:e6:e6:f0:5d:34:b4:ec:16:64:e1:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        71:5d:41:20:f3:fd:e4:0b:21:14:1e:95:8e:fd:09:5c:
        0e:95:6c:6b:de:fc:64:d8:81:6e:58:64:09:be:6c:7a:
        0e:41:e5:58:fc:46:c7:98:bb:3c:13:e9:a0:ac:a5:ab:
        eb:fb:24:a5:5f:c2:a8:71:58:9a:c2:78:2e:44:37:29:
        4c:d2:6a:5d:2c:0d:40:34:eb:c7:ae:b3:83:49:4a:30:
        1b:f1:a5:59:f9:8c:53:53:0b:0f:19:01:08:4b:cb:b5:
        eb:db:61:e2:96:f4:fd:91:c1:11:25:53:59:b3:b9:5f:
        b7:b2:1c:92:61:f3:b3:5d:06:a4:2e:a6:cd:e5:5a:69:
        e5:c9:f9:d8:c2:a1:81:0d:ea:ad:ee:ed:89:16:7d:ed:
        2a:17:1f:a7:09:52:f2:d4:61:b2:94:e2:d7:92:7b:12:
        b6:be:bc:42:27:8e:96:a1:50:5d:8f:9f:bb:14:0d:cb:
        e7:c9:89:ee:9a:e4:29:55:9e:45:7c:b7:72:b9:20:c9:
        38:3d:6e:7d:10:a5:c6:df:a5:70:96:6e:2d:ab:3b:7d:
        b1:a1:63:fc:3c:00:c3:44:cc:b3:8f:9a:fc:07:bf:b5:
        8a:6c:55:33:63:ae:c8:54:51:13:12:c6:1d:ff:cc:1e:
        bd:1e:72:b0:a3:94:6a:4e:12:f2:8d:b4:97:67:5e:27
    Fingerprint (SHA-256):
        3A:CA:42:8B:E0:38:8A:4A:7E:C5:97:55:62:05:1C:77:44:49:C1:AB:06:F1:D8:BE:94:F3:6A:F0:30:88:4A:72
    Fingerprint (SHA1):
        FF:81:DB:89:3F:08:2A:93:40:95:6F:A0:A5:43:EA:02:33:B6:60:D1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11798: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11799: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11800: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123319 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11801: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11802: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11803: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11804: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123320   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11805: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11806: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11807: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11808: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123321   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11809: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11810: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11811: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11812: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510123322   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11813: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11814: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11815: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11816: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510123323   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11817: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11818: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11819: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123319 (0x1e67dd37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:21 2017
            Not After : Tue May 10 12:38:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f5:e1:13:51:94:2e:74:80:ae:74:3e:cf:ea:4d:41:
                    d5:32:76:fa:a1:33:c1:46:04:8d:ca:8d:b0:20:c5:3e:
                    cf:1b:59:d8:7c:67:c7:a1:be:3a:49:3b:96:c3:8e:b9:
                    20:f9:73:1a:db:83:ef:6f:0b:92:73:a4:b1:79:fb:7d:
                    be:95:43:51:0c:26:84:fe:59:e4:4a:9f:67:be:c7:fb:
                    73:f0:6b:51:6c:04:e2:ef:74:83:c6:b5:52:4b:b4:ad:
                    aa:f4:c7:02:40:c8:e0:de:9f:81:17:54:51:44:0f:42:
                    30:59:cd:2a:7f:16:16:00:4d:34:f0:8d:bf:d8:00:60:
                    63:ad:e7:53:90:96:fe:34:cc:e0:98:5a:22:4d:16:a1:
                    b8:78:2a:95:9e:14:48:7a:a1:b4:d1:27:47:3c:0e:d8:
                    54:05:b4:d8:84:cd:e9:ea:c7:a6:d8:14:c8:39:38:a5:
                    09:e2:cf:cf:7f:e6:5c:4e:13:b9:f2:05:9b:d1:aa:b3:
                    66:e7:58:04:1f:75:37:28:98:d9:87:be:63:8b:ad:9a:
                    d0:80:99:a3:ec:bb:80:8a:86:41:5a:8c:f5:ad:59:33:
                    b8:50:af:6c:15:99:b7:a1:fc:cc:81:84:66:17:9f:e2:
                    f0:b9:24:6c:ad:44:0a:d4:63:e9:07:c6:2c:d2:6d:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:05:15:33:58:87:58:5c:37:aa:46:9b:5b:85:94:f9:
        07:e6:e1:02:e8:9b:61:55:11:91:48:bd:c7:3c:88:5b:
        63:d9:da:a6:a6:9f:41:2b:22:73:31:14:53:32:00:40:
        36:7b:7a:87:9e:e9:6a:4d:93:98:ed:09:a0:e1:42:c6:
        35:b0:a3:0a:46:0e:49:f3:b8:a7:06:58:6a:3f:0b:5a:
        a1:f8:de:eb:3a:2e:4b:bd:66:b3:1c:a4:61:a3:5c:39:
        a1:7e:5b:43:85:70:d6:a2:29:ea:1f:07:9f:e4:b3:65:
        44:72:ec:b8:08:b9:18:44:b6:d7:5c:72:54:d1:eb:ea:
        6d:89:97:76:05:42:ee:fc:c9:5e:16:bd:8e:34:ec:d3:
        cd:b2:26:e2:3a:fd:bc:e1:84:9f:54:c6:60:c8:7d:5d:
        16:76:59:54:76:c1:38:4d:3d:ae:1a:70:9e:ba:31:f7:
        75:7c:4c:c4:d4:84:b6:c2:f6:90:61:ba:22:33:02:94:
        90:01:9a:a3:39:cc:90:c9:4d:28:a0:34:ff:fe:83:11:
        a5:a0:c5:50:eb:fc:c6:af:5e:ed:3a:8e:dd:db:db:ab:
        0e:1f:f8:8c:b2:57:56:28:94:ac:2a:c6:75:ef:a9:5d:
        ba:96:d2:66:48:c6:4d:52:07:87:79:10:ba:cc:13:48
    Fingerprint (SHA-256):
        A7:C6:5F:C1:21:17:3A:CC:5A:61:35:4E:E2:D7:D1:0C:12:9B:90:22:AB:E0:FF:71:2E:48:11:EC:1B:E5:C0:4D
    Fingerprint (SHA1):
        9D:24:7A:4D:D5:00:BD:D7:78:DB:12:5B:AA:54:3C:10:4A:C8:6E:A2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11820: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11821: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123320 (0x1e67dd38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:23 2017
            Not After : Tue May 10 12:38:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:8c:04:6c:02:d3:f0:91:63:03:5a:6a:34:26:e3:9e:
                    43:c0:8e:bb:9e:35:82:3e:52:d7:75:cd:7b:46:9a:37:
                    99:2c:2e:75:cf:8e:59:6e:1b:b2:76:5b:f1:de:2c:f3:
                    6c:13:df:02:80:be:de:8a:8c:9b:9f:9d:ae:9d:52:60:
                    68:33:81:d8:ab:33:2f:22:00:64:34:47:b0:b8:f7:55:
                    d3:a3:b9:7f:78:d1:5c:5c:fd:06:d9:04:48:76:da:17:
                    f3:82:74:cd:09:ff:0d:14:89:3d:6d:05:21:3a:c9:b2:
                    31:34:92:f0:f7:9a:3f:fc:bf:cc:13:f0:8f:82:d1:6e:
                    8f:df:4e:15:6c:23:a9:ab:4e:8b:fa:24:be:1d:42:9a:
                    d4:dd:92:ef:57:60:c8:39:75:e1:a5:06:20:f6:40:b8:
                    c1:cc:8c:11:c3:62:b0:61:36:34:58:5c:3c:60:52:71:
                    4f:18:3b:44:56:83:08:f9:d2:12:cb:b9:5b:c3:3f:f1:
                    bb:e3:a9:e4:38:61:8c:3b:67:da:50:3e:b1:56:d9:01:
                    2d:29:b8:8b:22:b2:d6:d7:b2:68:b4:6b:91:6c:51:c0:
                    6b:38:f2:ef:bd:1c:83:c2:8b:5c:1c:ba:d2:c1:33:68:
                    78:ee:c5:03:37:eb:fa:c1:ba:35:a7:8b:a2:80:9f:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:ce:99:81:26:ef:bb:3f:24:3a:30:2a:a1:48:20:e0:
        1b:b1:32:93:79:aa:5e:18:72:e8:bd:52:82:04:ac:a5:
        60:ca:07:61:c4:32:58:01:5d:8a:7c:b6:91:5c:25:65:
        11:c4:c6:6a:c0:80:48:3c:c9:7d:b9:8e:6b:84:2c:08:
        84:df:86:27:f8:6b:86:e5:60:a0:0e:e1:b8:4d:1e:27:
        98:e9:b5:8b:d6:33:08:45:38:24:12:19:a7:91:17:12:
        b3:bc:dc:f7:a7:1b:07:41:e2:48:fc:b2:3e:6a:d9:78:
        58:ab:7c:a0:75:d7:23:f8:bd:93:7d:27:d3:ff:2b:3c:
        4f:01:b2:66:b7:ab:e3:3c:95:dd:55:74:94:54:f0:81:
        85:69:74:53:9e:7f:b1:ed:55:16:e8:c6:9d:7b:4e:c9:
        54:77:80:54:45:6c:5b:e7:c2:c7:91:64:bd:52:d9:21:
        5b:0b:03:36:2d:89:77:91:88:f8:3a:d2:3c:31:72:20:
        90:2d:3b:a2:98:33:b9:43:9b:d8:eb:ad:b2:1a:30:85:
        92:7c:ee:d8:b1:6c:09:10:ad:a7:a7:79:40:ec:ca:ea:
        7b:a1:f5:67:73:0d:30:41:87:8a:b1:5f:83:bd:f5:da:
        3c:9f:6c:d8:8d:c0:fd:24:f7:48:98:8c:79:15:78:30
    Fingerprint (SHA-256):
        9C:88:6F:5C:E1:64:52:F7:02:0A:13:D4:D0:6A:00:0E:96:34:00:1E:D0:6D:24:6C:9C:B1:16:8F:CD:EA:95:94
    Fingerprint (SHA1):
        52:40:C1:AD:8E:D6:C8:38:29:71:36:3C:1D:B4:EF:D4:06:B6:CA:B1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11822: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11823: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123321 (0x1e67dd39)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:38:24 2017
            Not After : Tue May 10 12:38:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:ca:c1:81:36:c0:fb:64:a3:ec:63:1c:13:12:fc:65:
                    ba:00:3b:55:e2:d1:3d:38:12:d2:20:3b:03:3d:3b:36:
                    97:f7:0b:b9:df:b2:7f:04:e1:f4:83:db:7a:3e:78:12:
                    87:99:3e:1d:fa:0a:48:91:8e:1b:e8:31:dd:c1:c6:dc:
                    6e:c0:cb:31:89:9b:85:12:c5:21:ef:63:24:ec:47:a3:
                    59:af:fa:11:09:fe:27:52:69:26:f2:76:e5:0e:48:fd:
                    3a:3a:ed:67:83:e8:23:48:e8:cd:b3:8d:3d:a1:b3:fb:
                    e4:41:02:fe:a1:06:29:0c:6b:59:5d:d1:79:28:19:5a:
                    34:21:27:d8:f1:d9:14:a8:c5:8e:96:80:0e:44:bb:30:
                    4b:f5:0d:23:ae:d6:99:0e:7b:41:78:bf:38:86:36:45:
                    62:ec:32:1f:78:2c:98:22:90:93:b1:49:c3:dd:e2:c2:
                    bb:1a:02:05:97:f9:78:37:6b:ee:47:87:ff:6b:0b:33:
                    49:c1:a6:09:0a:f7:a7:20:d5:eb:0a:52:cf:8d:a5:cf:
                    74:8f:cd:ad:8c:b3:8e:1b:1b:92:ed:37:d6:b5:68:b2:
                    c3:e3:7f:b4:95:a4:d3:7a:f9:e9:ae:d5:58:a9:f5:d5:
                    16:b4:cc:7b:87:eb:88:54:8d:e0:d8:6e:07:09:28:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:75:90:87:cc:14:9f:25:3b:17:01:c5:6e:70:85:c6:
        e6:90:d8:e5:28:a6:fc:e8:4e:d9:f9:c0:bd:ee:da:ff:
        d8:98:d5:01:a2:03:c7:f2:a5:1a:fd:86:46:a1:b1:ae:
        ad:24:bf:8a:ff:cb:74:8b:7c:52:b1:b6:ab:56:28:ea:
        f6:a1:60:76:fd:e5:f4:ac:75:07:97:06:e7:c2:e9:ac:
        1e:66:7c:d3:ff:df:c3:78:c8:c3:22:52:d8:54:6f:fb:
        99:06:57:d1:30:ed:4c:72:32:b0:66:47:8c:d3:69:eb:
        3a:5d:24:a1:1b:2d:bc:3d:35:e1:48:3d:61:b3:9b:9a:
        b3:dc:11:b3:90:04:96:78:0e:76:14:37:ac:8b:6e:aa:
        8d:9c:03:2a:86:f1:31:4c:d9:f9:63:33:33:50:e7:ce:
        44:37:48:7b:90:0f:bd:6c:47:fc:36:b5:f3:5b:4e:63:
        ee:9c:60:91:af:3f:57:bf:d2:4b:01:6a:e5:df:cb:23:
        3f:bf:f5:b0:dd:72:85:7f:ca:7c:43:a2:11:9b:f0:7e:
        a1:ed:07:01:62:3b:97:66:46:f3:45:6f:e8:37:63:9f:
        58:88:26:d4:1f:f7:68:6e:3e:d8:1e:dd:da:9e:a3:36:
        50:04:e4:97:dd:a4:87:04:04:05:0a:fd:1b:18:cf:90
    Fingerprint (SHA-256):
        99:BE:04:F6:B0:CF:0F:67:22:7F:CF:2A:C1:84:7F:28:82:4C:6B:4E:2D:00:E3:10:66:E8:25:E1:2C:F6:61:6D
    Fingerprint (SHA1):
        41:E2:17:49:C9:51:A9:0D:C4:57:80:56:22:B4:C8:97:C7:43:52:A0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11824: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11825: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11826: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11827: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11828: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123319 (0x1e67dd37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:21 2017
            Not After : Tue May 10 12:38:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f5:e1:13:51:94:2e:74:80:ae:74:3e:cf:ea:4d:41:
                    d5:32:76:fa:a1:33:c1:46:04:8d:ca:8d:b0:20:c5:3e:
                    cf:1b:59:d8:7c:67:c7:a1:be:3a:49:3b:96:c3:8e:b9:
                    20:f9:73:1a:db:83:ef:6f:0b:92:73:a4:b1:79:fb:7d:
                    be:95:43:51:0c:26:84:fe:59:e4:4a:9f:67:be:c7:fb:
                    73:f0:6b:51:6c:04:e2:ef:74:83:c6:b5:52:4b:b4:ad:
                    aa:f4:c7:02:40:c8:e0:de:9f:81:17:54:51:44:0f:42:
                    30:59:cd:2a:7f:16:16:00:4d:34:f0:8d:bf:d8:00:60:
                    63:ad:e7:53:90:96:fe:34:cc:e0:98:5a:22:4d:16:a1:
                    b8:78:2a:95:9e:14:48:7a:a1:b4:d1:27:47:3c:0e:d8:
                    54:05:b4:d8:84:cd:e9:ea:c7:a6:d8:14:c8:39:38:a5:
                    09:e2:cf:cf:7f:e6:5c:4e:13:b9:f2:05:9b:d1:aa:b3:
                    66:e7:58:04:1f:75:37:28:98:d9:87:be:63:8b:ad:9a:
                    d0:80:99:a3:ec:bb:80:8a:86:41:5a:8c:f5:ad:59:33:
                    b8:50:af:6c:15:99:b7:a1:fc:cc:81:84:66:17:9f:e2:
                    f0:b9:24:6c:ad:44:0a:d4:63:e9:07:c6:2c:d2:6d:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:05:15:33:58:87:58:5c:37:aa:46:9b:5b:85:94:f9:
        07:e6:e1:02:e8:9b:61:55:11:91:48:bd:c7:3c:88:5b:
        63:d9:da:a6:a6:9f:41:2b:22:73:31:14:53:32:00:40:
        36:7b:7a:87:9e:e9:6a:4d:93:98:ed:09:a0:e1:42:c6:
        35:b0:a3:0a:46:0e:49:f3:b8:a7:06:58:6a:3f:0b:5a:
        a1:f8:de:eb:3a:2e:4b:bd:66:b3:1c:a4:61:a3:5c:39:
        a1:7e:5b:43:85:70:d6:a2:29:ea:1f:07:9f:e4:b3:65:
        44:72:ec:b8:08:b9:18:44:b6:d7:5c:72:54:d1:eb:ea:
        6d:89:97:76:05:42:ee:fc:c9:5e:16:bd:8e:34:ec:d3:
        cd:b2:26:e2:3a:fd:bc:e1:84:9f:54:c6:60:c8:7d:5d:
        16:76:59:54:76:c1:38:4d:3d:ae:1a:70:9e:ba:31:f7:
        75:7c:4c:c4:d4:84:b6:c2:f6:90:61:ba:22:33:02:94:
        90:01:9a:a3:39:cc:90:c9:4d:28:a0:34:ff:fe:83:11:
        a5:a0:c5:50:eb:fc:c6:af:5e:ed:3a:8e:dd:db:db:ab:
        0e:1f:f8:8c:b2:57:56:28:94:ac:2a:c6:75:ef:a9:5d:
        ba:96:d2:66:48:c6:4d:52:07:87:79:10:ba:cc:13:48
    Fingerprint (SHA-256):
        A7:C6:5F:C1:21:17:3A:CC:5A:61:35:4E:E2:D7:D1:0C:12:9B:90:22:AB:E0:FF:71:2E:48:11:EC:1B:E5:C0:4D
    Fingerprint (SHA1):
        9D:24:7A:4D:D5:00:BD:D7:78:DB:12:5B:AA:54:3C:10:4A:C8:6E:A2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11829: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11830: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123320 (0x1e67dd38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:23 2017
            Not After : Tue May 10 12:38:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:8c:04:6c:02:d3:f0:91:63:03:5a:6a:34:26:e3:9e:
                    43:c0:8e:bb:9e:35:82:3e:52:d7:75:cd:7b:46:9a:37:
                    99:2c:2e:75:cf:8e:59:6e:1b:b2:76:5b:f1:de:2c:f3:
                    6c:13:df:02:80:be:de:8a:8c:9b:9f:9d:ae:9d:52:60:
                    68:33:81:d8:ab:33:2f:22:00:64:34:47:b0:b8:f7:55:
                    d3:a3:b9:7f:78:d1:5c:5c:fd:06:d9:04:48:76:da:17:
                    f3:82:74:cd:09:ff:0d:14:89:3d:6d:05:21:3a:c9:b2:
                    31:34:92:f0:f7:9a:3f:fc:bf:cc:13:f0:8f:82:d1:6e:
                    8f:df:4e:15:6c:23:a9:ab:4e:8b:fa:24:be:1d:42:9a:
                    d4:dd:92:ef:57:60:c8:39:75:e1:a5:06:20:f6:40:b8:
                    c1:cc:8c:11:c3:62:b0:61:36:34:58:5c:3c:60:52:71:
                    4f:18:3b:44:56:83:08:f9:d2:12:cb:b9:5b:c3:3f:f1:
                    bb:e3:a9:e4:38:61:8c:3b:67:da:50:3e:b1:56:d9:01:
                    2d:29:b8:8b:22:b2:d6:d7:b2:68:b4:6b:91:6c:51:c0:
                    6b:38:f2:ef:bd:1c:83:c2:8b:5c:1c:ba:d2:c1:33:68:
                    78:ee:c5:03:37:eb:fa:c1:ba:35:a7:8b:a2:80:9f:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:ce:99:81:26:ef:bb:3f:24:3a:30:2a:a1:48:20:e0:
        1b:b1:32:93:79:aa:5e:18:72:e8:bd:52:82:04:ac:a5:
        60:ca:07:61:c4:32:58:01:5d:8a:7c:b6:91:5c:25:65:
        11:c4:c6:6a:c0:80:48:3c:c9:7d:b9:8e:6b:84:2c:08:
        84:df:86:27:f8:6b:86:e5:60:a0:0e:e1:b8:4d:1e:27:
        98:e9:b5:8b:d6:33:08:45:38:24:12:19:a7:91:17:12:
        b3:bc:dc:f7:a7:1b:07:41:e2:48:fc:b2:3e:6a:d9:78:
        58:ab:7c:a0:75:d7:23:f8:bd:93:7d:27:d3:ff:2b:3c:
        4f:01:b2:66:b7:ab:e3:3c:95:dd:55:74:94:54:f0:81:
        85:69:74:53:9e:7f:b1:ed:55:16:e8:c6:9d:7b:4e:c9:
        54:77:80:54:45:6c:5b:e7:c2:c7:91:64:bd:52:d9:21:
        5b:0b:03:36:2d:89:77:91:88:f8:3a:d2:3c:31:72:20:
        90:2d:3b:a2:98:33:b9:43:9b:d8:eb:ad:b2:1a:30:85:
        92:7c:ee:d8:b1:6c:09:10:ad:a7:a7:79:40:ec:ca:ea:
        7b:a1:f5:67:73:0d:30:41:87:8a:b1:5f:83:bd:f5:da:
        3c:9f:6c:d8:8d:c0:fd:24:f7:48:98:8c:79:15:78:30
    Fingerprint (SHA-256):
        9C:88:6F:5C:E1:64:52:F7:02:0A:13:D4:D0:6A:00:0E:96:34:00:1E:D0:6D:24:6C:9C:B1:16:8F:CD:EA:95:94
    Fingerprint (SHA1):
        52:40:C1:AD:8E:D6:C8:38:29:71:36:3C:1D:B4:EF:D4:06:B6:CA:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11831: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11832: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123321 (0x1e67dd39)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:38:24 2017
            Not After : Tue May 10 12:38:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:ca:c1:81:36:c0:fb:64:a3:ec:63:1c:13:12:fc:65:
                    ba:00:3b:55:e2:d1:3d:38:12:d2:20:3b:03:3d:3b:36:
                    97:f7:0b:b9:df:b2:7f:04:e1:f4:83:db:7a:3e:78:12:
                    87:99:3e:1d:fa:0a:48:91:8e:1b:e8:31:dd:c1:c6:dc:
                    6e:c0:cb:31:89:9b:85:12:c5:21:ef:63:24:ec:47:a3:
                    59:af:fa:11:09:fe:27:52:69:26:f2:76:e5:0e:48:fd:
                    3a:3a:ed:67:83:e8:23:48:e8:cd:b3:8d:3d:a1:b3:fb:
                    e4:41:02:fe:a1:06:29:0c:6b:59:5d:d1:79:28:19:5a:
                    34:21:27:d8:f1:d9:14:a8:c5:8e:96:80:0e:44:bb:30:
                    4b:f5:0d:23:ae:d6:99:0e:7b:41:78:bf:38:86:36:45:
                    62:ec:32:1f:78:2c:98:22:90:93:b1:49:c3:dd:e2:c2:
                    bb:1a:02:05:97:f9:78:37:6b:ee:47:87:ff:6b:0b:33:
                    49:c1:a6:09:0a:f7:a7:20:d5:eb:0a:52:cf:8d:a5:cf:
                    74:8f:cd:ad:8c:b3:8e:1b:1b:92:ed:37:d6:b5:68:b2:
                    c3:e3:7f:b4:95:a4:d3:7a:f9:e9:ae:d5:58:a9:f5:d5:
                    16:b4:cc:7b:87:eb:88:54:8d:e0:d8:6e:07:09:28:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:75:90:87:cc:14:9f:25:3b:17:01:c5:6e:70:85:c6:
        e6:90:d8:e5:28:a6:fc:e8:4e:d9:f9:c0:bd:ee:da:ff:
        d8:98:d5:01:a2:03:c7:f2:a5:1a:fd:86:46:a1:b1:ae:
        ad:24:bf:8a:ff:cb:74:8b:7c:52:b1:b6:ab:56:28:ea:
        f6:a1:60:76:fd:e5:f4:ac:75:07:97:06:e7:c2:e9:ac:
        1e:66:7c:d3:ff:df:c3:78:c8:c3:22:52:d8:54:6f:fb:
        99:06:57:d1:30:ed:4c:72:32:b0:66:47:8c:d3:69:eb:
        3a:5d:24:a1:1b:2d:bc:3d:35:e1:48:3d:61:b3:9b:9a:
        b3:dc:11:b3:90:04:96:78:0e:76:14:37:ac:8b:6e:aa:
        8d:9c:03:2a:86:f1:31:4c:d9:f9:63:33:33:50:e7:ce:
        44:37:48:7b:90:0f:bd:6c:47:fc:36:b5:f3:5b:4e:63:
        ee:9c:60:91:af:3f:57:bf:d2:4b:01:6a:e5:df:cb:23:
        3f:bf:f5:b0:dd:72:85:7f:ca:7c:43:a2:11:9b:f0:7e:
        a1:ed:07:01:62:3b:97:66:46:f3:45:6f:e8:37:63:9f:
        58:88:26:d4:1f:f7:68:6e:3e:d8:1e:dd:da:9e:a3:36:
        50:04:e4:97:dd:a4:87:04:04:05:0a:fd:1b:18:cf:90
    Fingerprint (SHA-256):
        99:BE:04:F6:B0:CF:0F:67:22:7F:CF:2A:C1:84:7F:28:82:4C:6B:4E:2D:00:E3:10:66:E8:25:E1:2C:F6:61:6D
    Fingerprint (SHA1):
        41:E2:17:49:C9:51:A9:0D:C4:57:80:56:22:B4:C8:97:C7:43:52:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11833: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11834: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123319 (0x1e67dd37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:21 2017
            Not After : Tue May 10 12:38:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f5:e1:13:51:94:2e:74:80:ae:74:3e:cf:ea:4d:41:
                    d5:32:76:fa:a1:33:c1:46:04:8d:ca:8d:b0:20:c5:3e:
                    cf:1b:59:d8:7c:67:c7:a1:be:3a:49:3b:96:c3:8e:b9:
                    20:f9:73:1a:db:83:ef:6f:0b:92:73:a4:b1:79:fb:7d:
                    be:95:43:51:0c:26:84:fe:59:e4:4a:9f:67:be:c7:fb:
                    73:f0:6b:51:6c:04:e2:ef:74:83:c6:b5:52:4b:b4:ad:
                    aa:f4:c7:02:40:c8:e0:de:9f:81:17:54:51:44:0f:42:
                    30:59:cd:2a:7f:16:16:00:4d:34:f0:8d:bf:d8:00:60:
                    63:ad:e7:53:90:96:fe:34:cc:e0:98:5a:22:4d:16:a1:
                    b8:78:2a:95:9e:14:48:7a:a1:b4:d1:27:47:3c:0e:d8:
                    54:05:b4:d8:84:cd:e9:ea:c7:a6:d8:14:c8:39:38:a5:
                    09:e2:cf:cf:7f:e6:5c:4e:13:b9:f2:05:9b:d1:aa:b3:
                    66:e7:58:04:1f:75:37:28:98:d9:87:be:63:8b:ad:9a:
                    d0:80:99:a3:ec:bb:80:8a:86:41:5a:8c:f5:ad:59:33:
                    b8:50:af:6c:15:99:b7:a1:fc:cc:81:84:66:17:9f:e2:
                    f0:b9:24:6c:ad:44:0a:d4:63:e9:07:c6:2c:d2:6d:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:05:15:33:58:87:58:5c:37:aa:46:9b:5b:85:94:f9:
        07:e6:e1:02:e8:9b:61:55:11:91:48:bd:c7:3c:88:5b:
        63:d9:da:a6:a6:9f:41:2b:22:73:31:14:53:32:00:40:
        36:7b:7a:87:9e:e9:6a:4d:93:98:ed:09:a0:e1:42:c6:
        35:b0:a3:0a:46:0e:49:f3:b8:a7:06:58:6a:3f:0b:5a:
        a1:f8:de:eb:3a:2e:4b:bd:66:b3:1c:a4:61:a3:5c:39:
        a1:7e:5b:43:85:70:d6:a2:29:ea:1f:07:9f:e4:b3:65:
        44:72:ec:b8:08:b9:18:44:b6:d7:5c:72:54:d1:eb:ea:
        6d:89:97:76:05:42:ee:fc:c9:5e:16:bd:8e:34:ec:d3:
        cd:b2:26:e2:3a:fd:bc:e1:84:9f:54:c6:60:c8:7d:5d:
        16:76:59:54:76:c1:38:4d:3d:ae:1a:70:9e:ba:31:f7:
        75:7c:4c:c4:d4:84:b6:c2:f6:90:61:ba:22:33:02:94:
        90:01:9a:a3:39:cc:90:c9:4d:28:a0:34:ff:fe:83:11:
        a5:a0:c5:50:eb:fc:c6:af:5e:ed:3a:8e:dd:db:db:ab:
        0e:1f:f8:8c:b2:57:56:28:94:ac:2a:c6:75:ef:a9:5d:
        ba:96:d2:66:48:c6:4d:52:07:87:79:10:ba:cc:13:48
    Fingerprint (SHA-256):
        A7:C6:5F:C1:21:17:3A:CC:5A:61:35:4E:E2:D7:D1:0C:12:9B:90:22:AB:E0:FF:71:2E:48:11:EC:1B:E5:C0:4D
    Fingerprint (SHA1):
        9D:24:7A:4D:D5:00:BD:D7:78:DB:12:5B:AA:54:3C:10:4A:C8:6E:A2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11835: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123319 (0x1e67dd37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:21 2017
            Not After : Tue May 10 12:38:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:f5:e1:13:51:94:2e:74:80:ae:74:3e:cf:ea:4d:41:
                    d5:32:76:fa:a1:33:c1:46:04:8d:ca:8d:b0:20:c5:3e:
                    cf:1b:59:d8:7c:67:c7:a1:be:3a:49:3b:96:c3:8e:b9:
                    20:f9:73:1a:db:83:ef:6f:0b:92:73:a4:b1:79:fb:7d:
                    be:95:43:51:0c:26:84:fe:59:e4:4a:9f:67:be:c7:fb:
                    73:f0:6b:51:6c:04:e2:ef:74:83:c6:b5:52:4b:b4:ad:
                    aa:f4:c7:02:40:c8:e0:de:9f:81:17:54:51:44:0f:42:
                    30:59:cd:2a:7f:16:16:00:4d:34:f0:8d:bf:d8:00:60:
                    63:ad:e7:53:90:96:fe:34:cc:e0:98:5a:22:4d:16:a1:
                    b8:78:2a:95:9e:14:48:7a:a1:b4:d1:27:47:3c:0e:d8:
                    54:05:b4:d8:84:cd:e9:ea:c7:a6:d8:14:c8:39:38:a5:
                    09:e2:cf:cf:7f:e6:5c:4e:13:b9:f2:05:9b:d1:aa:b3:
                    66:e7:58:04:1f:75:37:28:98:d9:87:be:63:8b:ad:9a:
                    d0:80:99:a3:ec:bb:80:8a:86:41:5a:8c:f5:ad:59:33:
                    b8:50:af:6c:15:99:b7:a1:fc:cc:81:84:66:17:9f:e2:
                    f0:b9:24:6c:ad:44:0a:d4:63:e9:07:c6:2c:d2:6d:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:05:15:33:58:87:58:5c:37:aa:46:9b:5b:85:94:f9:
        07:e6:e1:02:e8:9b:61:55:11:91:48:bd:c7:3c:88:5b:
        63:d9:da:a6:a6:9f:41:2b:22:73:31:14:53:32:00:40:
        36:7b:7a:87:9e:e9:6a:4d:93:98:ed:09:a0:e1:42:c6:
        35:b0:a3:0a:46:0e:49:f3:b8:a7:06:58:6a:3f:0b:5a:
        a1:f8:de:eb:3a:2e:4b:bd:66:b3:1c:a4:61:a3:5c:39:
        a1:7e:5b:43:85:70:d6:a2:29:ea:1f:07:9f:e4:b3:65:
        44:72:ec:b8:08:b9:18:44:b6:d7:5c:72:54:d1:eb:ea:
        6d:89:97:76:05:42:ee:fc:c9:5e:16:bd:8e:34:ec:d3:
        cd:b2:26:e2:3a:fd:bc:e1:84:9f:54:c6:60:c8:7d:5d:
        16:76:59:54:76:c1:38:4d:3d:ae:1a:70:9e:ba:31:f7:
        75:7c:4c:c4:d4:84:b6:c2:f6:90:61:ba:22:33:02:94:
        90:01:9a:a3:39:cc:90:c9:4d:28:a0:34:ff:fe:83:11:
        a5:a0:c5:50:eb:fc:c6:af:5e:ed:3a:8e:dd:db:db:ab:
        0e:1f:f8:8c:b2:57:56:28:94:ac:2a:c6:75:ef:a9:5d:
        ba:96:d2:66:48:c6:4d:52:07:87:79:10:ba:cc:13:48
    Fingerprint (SHA-256):
        A7:C6:5F:C1:21:17:3A:CC:5A:61:35:4E:E2:D7:D1:0C:12:9B:90:22:AB:E0:FF:71:2E:48:11:EC:1B:E5:C0:4D
    Fingerprint (SHA1):
        9D:24:7A:4D:D5:00:BD:D7:78:DB:12:5B:AA:54:3C:10:4A:C8:6E:A2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11836: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123320 (0x1e67dd38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:23 2017
            Not After : Tue May 10 12:38:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:8c:04:6c:02:d3:f0:91:63:03:5a:6a:34:26:e3:9e:
                    43:c0:8e:bb:9e:35:82:3e:52:d7:75:cd:7b:46:9a:37:
                    99:2c:2e:75:cf:8e:59:6e:1b:b2:76:5b:f1:de:2c:f3:
                    6c:13:df:02:80:be:de:8a:8c:9b:9f:9d:ae:9d:52:60:
                    68:33:81:d8:ab:33:2f:22:00:64:34:47:b0:b8:f7:55:
                    d3:a3:b9:7f:78:d1:5c:5c:fd:06:d9:04:48:76:da:17:
                    f3:82:74:cd:09:ff:0d:14:89:3d:6d:05:21:3a:c9:b2:
                    31:34:92:f0:f7:9a:3f:fc:bf:cc:13:f0:8f:82:d1:6e:
                    8f:df:4e:15:6c:23:a9:ab:4e:8b:fa:24:be:1d:42:9a:
                    d4:dd:92:ef:57:60:c8:39:75:e1:a5:06:20:f6:40:b8:
                    c1:cc:8c:11:c3:62:b0:61:36:34:58:5c:3c:60:52:71:
                    4f:18:3b:44:56:83:08:f9:d2:12:cb:b9:5b:c3:3f:f1:
                    bb:e3:a9:e4:38:61:8c:3b:67:da:50:3e:b1:56:d9:01:
                    2d:29:b8:8b:22:b2:d6:d7:b2:68:b4:6b:91:6c:51:c0:
                    6b:38:f2:ef:bd:1c:83:c2:8b:5c:1c:ba:d2:c1:33:68:
                    78:ee:c5:03:37:eb:fa:c1:ba:35:a7:8b:a2:80:9f:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:ce:99:81:26:ef:bb:3f:24:3a:30:2a:a1:48:20:e0:
        1b:b1:32:93:79:aa:5e:18:72:e8:bd:52:82:04:ac:a5:
        60:ca:07:61:c4:32:58:01:5d:8a:7c:b6:91:5c:25:65:
        11:c4:c6:6a:c0:80:48:3c:c9:7d:b9:8e:6b:84:2c:08:
        84:df:86:27:f8:6b:86:e5:60:a0:0e:e1:b8:4d:1e:27:
        98:e9:b5:8b:d6:33:08:45:38:24:12:19:a7:91:17:12:
        b3:bc:dc:f7:a7:1b:07:41:e2:48:fc:b2:3e:6a:d9:78:
        58:ab:7c:a0:75:d7:23:f8:bd:93:7d:27:d3:ff:2b:3c:
        4f:01:b2:66:b7:ab:e3:3c:95:dd:55:74:94:54:f0:81:
        85:69:74:53:9e:7f:b1:ed:55:16:e8:c6:9d:7b:4e:c9:
        54:77:80:54:45:6c:5b:e7:c2:c7:91:64:bd:52:d9:21:
        5b:0b:03:36:2d:89:77:91:88:f8:3a:d2:3c:31:72:20:
        90:2d:3b:a2:98:33:b9:43:9b:d8:eb:ad:b2:1a:30:85:
        92:7c:ee:d8:b1:6c:09:10:ad:a7:a7:79:40:ec:ca:ea:
        7b:a1:f5:67:73:0d:30:41:87:8a:b1:5f:83:bd:f5:da:
        3c:9f:6c:d8:8d:c0:fd:24:f7:48:98:8c:79:15:78:30
    Fingerprint (SHA-256):
        9C:88:6F:5C:E1:64:52:F7:02:0A:13:D4:D0:6A:00:0E:96:34:00:1E:D0:6D:24:6C:9C:B1:16:8F:CD:EA:95:94
    Fingerprint (SHA1):
        52:40:C1:AD:8E:D6:C8:38:29:71:36:3C:1D:B4:EF:D4:06:B6:CA:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11837: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123320 (0x1e67dd38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:38:23 2017
            Not After : Tue May 10 12:38:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:8c:04:6c:02:d3:f0:91:63:03:5a:6a:34:26:e3:9e:
                    43:c0:8e:bb:9e:35:82:3e:52:d7:75:cd:7b:46:9a:37:
                    99:2c:2e:75:cf:8e:59:6e:1b:b2:76:5b:f1:de:2c:f3:
                    6c:13:df:02:80:be:de:8a:8c:9b:9f:9d:ae:9d:52:60:
                    68:33:81:d8:ab:33:2f:22:00:64:34:47:b0:b8:f7:55:
                    d3:a3:b9:7f:78:d1:5c:5c:fd:06:d9:04:48:76:da:17:
                    f3:82:74:cd:09:ff:0d:14:89:3d:6d:05:21:3a:c9:b2:
                    31:34:92:f0:f7:9a:3f:fc:bf:cc:13:f0:8f:82:d1:6e:
                    8f:df:4e:15:6c:23:a9:ab:4e:8b:fa:24:be:1d:42:9a:
                    d4:dd:92:ef:57:60:c8:39:75:e1:a5:06:20:f6:40:b8:
                    c1:cc:8c:11:c3:62:b0:61:36:34:58:5c:3c:60:52:71:
                    4f:18:3b:44:56:83:08:f9:d2:12:cb:b9:5b:c3:3f:f1:
                    bb:e3:a9:e4:38:61:8c:3b:67:da:50:3e:b1:56:d9:01:
                    2d:29:b8:8b:22:b2:d6:d7:b2:68:b4:6b:91:6c:51:c0:
                    6b:38:f2:ef:bd:1c:83:c2:8b:5c:1c:ba:d2:c1:33:68:
                    78:ee:c5:03:37:eb:fa:c1:ba:35:a7:8b:a2:80:9f:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:ce:99:81:26:ef:bb:3f:24:3a:30:2a:a1:48:20:e0:
        1b:b1:32:93:79:aa:5e:18:72:e8:bd:52:82:04:ac:a5:
        60:ca:07:61:c4:32:58:01:5d:8a:7c:b6:91:5c:25:65:
        11:c4:c6:6a:c0:80:48:3c:c9:7d:b9:8e:6b:84:2c:08:
        84:df:86:27:f8:6b:86:e5:60:a0:0e:e1:b8:4d:1e:27:
        98:e9:b5:8b:d6:33:08:45:38:24:12:19:a7:91:17:12:
        b3:bc:dc:f7:a7:1b:07:41:e2:48:fc:b2:3e:6a:d9:78:
        58:ab:7c:a0:75:d7:23:f8:bd:93:7d:27:d3:ff:2b:3c:
        4f:01:b2:66:b7:ab:e3:3c:95:dd:55:74:94:54:f0:81:
        85:69:74:53:9e:7f:b1:ed:55:16:e8:c6:9d:7b:4e:c9:
        54:77:80:54:45:6c:5b:e7:c2:c7:91:64:bd:52:d9:21:
        5b:0b:03:36:2d:89:77:91:88:f8:3a:d2:3c:31:72:20:
        90:2d:3b:a2:98:33:b9:43:9b:d8:eb:ad:b2:1a:30:85:
        92:7c:ee:d8:b1:6c:09:10:ad:a7:a7:79:40:ec:ca:ea:
        7b:a1:f5:67:73:0d:30:41:87:8a:b1:5f:83:bd:f5:da:
        3c:9f:6c:d8:8d:c0:fd:24:f7:48:98:8c:79:15:78:30
    Fingerprint (SHA-256):
        9C:88:6F:5C:E1:64:52:F7:02:0A:13:D4:D0:6A:00:0E:96:34:00:1E:D0:6D:24:6C:9C:B1:16:8F:CD:EA:95:94
    Fingerprint (SHA1):
        52:40:C1:AD:8E:D6:C8:38:29:71:36:3C:1D:B4:EF:D4:06:B6:CA:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11838: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123321 (0x1e67dd39)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:38:24 2017
            Not After : Tue May 10 12:38:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:ca:c1:81:36:c0:fb:64:a3:ec:63:1c:13:12:fc:65:
                    ba:00:3b:55:e2:d1:3d:38:12:d2:20:3b:03:3d:3b:36:
                    97:f7:0b:b9:df:b2:7f:04:e1:f4:83:db:7a:3e:78:12:
                    87:99:3e:1d:fa:0a:48:91:8e:1b:e8:31:dd:c1:c6:dc:
                    6e:c0:cb:31:89:9b:85:12:c5:21:ef:63:24:ec:47:a3:
                    59:af:fa:11:09:fe:27:52:69:26:f2:76:e5:0e:48:fd:
                    3a:3a:ed:67:83:e8:23:48:e8:cd:b3:8d:3d:a1:b3:fb:
                    e4:41:02:fe:a1:06:29:0c:6b:59:5d:d1:79:28:19:5a:
                    34:21:27:d8:f1:d9:14:a8:c5:8e:96:80:0e:44:bb:30:
                    4b:f5:0d:23:ae:d6:99:0e:7b:41:78:bf:38:86:36:45:
                    62:ec:32:1f:78:2c:98:22:90:93:b1:49:c3:dd:e2:c2:
                    bb:1a:02:05:97:f9:78:37:6b:ee:47:87:ff:6b:0b:33:
                    49:c1:a6:09:0a:f7:a7:20:d5:eb:0a:52:cf:8d:a5:cf:
                    74:8f:cd:ad:8c:b3:8e:1b:1b:92:ed:37:d6:b5:68:b2:
                    c3:e3:7f:b4:95:a4:d3:7a:f9:e9:ae:d5:58:a9:f5:d5:
                    16:b4:cc:7b:87:eb:88:54:8d:e0:d8:6e:07:09:28:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:75:90:87:cc:14:9f:25:3b:17:01:c5:6e:70:85:c6:
        e6:90:d8:e5:28:a6:fc:e8:4e:d9:f9:c0:bd:ee:da:ff:
        d8:98:d5:01:a2:03:c7:f2:a5:1a:fd:86:46:a1:b1:ae:
        ad:24:bf:8a:ff:cb:74:8b:7c:52:b1:b6:ab:56:28:ea:
        f6:a1:60:76:fd:e5:f4:ac:75:07:97:06:e7:c2:e9:ac:
        1e:66:7c:d3:ff:df:c3:78:c8:c3:22:52:d8:54:6f:fb:
        99:06:57:d1:30:ed:4c:72:32:b0:66:47:8c:d3:69:eb:
        3a:5d:24:a1:1b:2d:bc:3d:35:e1:48:3d:61:b3:9b:9a:
        b3:dc:11:b3:90:04:96:78:0e:76:14:37:ac:8b:6e:aa:
        8d:9c:03:2a:86:f1:31:4c:d9:f9:63:33:33:50:e7:ce:
        44:37:48:7b:90:0f:bd:6c:47:fc:36:b5:f3:5b:4e:63:
        ee:9c:60:91:af:3f:57:bf:d2:4b:01:6a:e5:df:cb:23:
        3f:bf:f5:b0:dd:72:85:7f:ca:7c:43:a2:11:9b:f0:7e:
        a1:ed:07:01:62:3b:97:66:46:f3:45:6f:e8:37:63:9f:
        58:88:26:d4:1f:f7:68:6e:3e:d8:1e:dd:da:9e:a3:36:
        50:04:e4:97:dd:a4:87:04:04:05:0a:fd:1b:18:cf:90
    Fingerprint (SHA-256):
        99:BE:04:F6:B0:CF:0F:67:22:7F:CF:2A:C1:84:7F:28:82:4C:6B:4E:2D:00:E3:10:66:E8:25:E1:2C:F6:61:6D
    Fingerprint (SHA1):
        41:E2:17:49:C9:51:A9:0D:C4:57:80:56:22:B4:C8:97:C7:43:52:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11839: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123321 (0x1e67dd39)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:38:24 2017
            Not After : Tue May 10 12:38:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ea:ca:c1:81:36:c0:fb:64:a3:ec:63:1c:13:12:fc:65:
                    ba:00:3b:55:e2:d1:3d:38:12:d2:20:3b:03:3d:3b:36:
                    97:f7:0b:b9:df:b2:7f:04:e1:f4:83:db:7a:3e:78:12:
                    87:99:3e:1d:fa:0a:48:91:8e:1b:e8:31:dd:c1:c6:dc:
                    6e:c0:cb:31:89:9b:85:12:c5:21:ef:63:24:ec:47:a3:
                    59:af:fa:11:09:fe:27:52:69:26:f2:76:e5:0e:48:fd:
                    3a:3a:ed:67:83:e8:23:48:e8:cd:b3:8d:3d:a1:b3:fb:
                    e4:41:02:fe:a1:06:29:0c:6b:59:5d:d1:79:28:19:5a:
                    34:21:27:d8:f1:d9:14:a8:c5:8e:96:80:0e:44:bb:30:
                    4b:f5:0d:23:ae:d6:99:0e:7b:41:78:bf:38:86:36:45:
                    62:ec:32:1f:78:2c:98:22:90:93:b1:49:c3:dd:e2:c2:
                    bb:1a:02:05:97:f9:78:37:6b:ee:47:87:ff:6b:0b:33:
                    49:c1:a6:09:0a:f7:a7:20:d5:eb:0a:52:cf:8d:a5:cf:
                    74:8f:cd:ad:8c:b3:8e:1b:1b:92:ed:37:d6:b5:68:b2:
                    c3:e3:7f:b4:95:a4:d3:7a:f9:e9:ae:d5:58:a9:f5:d5:
                    16:b4:cc:7b:87:eb:88:54:8d:e0:d8:6e:07:09:28:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:75:90:87:cc:14:9f:25:3b:17:01:c5:6e:70:85:c6:
        e6:90:d8:e5:28:a6:fc:e8:4e:d9:f9:c0:bd:ee:da:ff:
        d8:98:d5:01:a2:03:c7:f2:a5:1a:fd:86:46:a1:b1:ae:
        ad:24:bf:8a:ff:cb:74:8b:7c:52:b1:b6:ab:56:28:ea:
        f6:a1:60:76:fd:e5:f4:ac:75:07:97:06:e7:c2:e9:ac:
        1e:66:7c:d3:ff:df:c3:78:c8:c3:22:52:d8:54:6f:fb:
        99:06:57:d1:30:ed:4c:72:32:b0:66:47:8c:d3:69:eb:
        3a:5d:24:a1:1b:2d:bc:3d:35:e1:48:3d:61:b3:9b:9a:
        b3:dc:11:b3:90:04:96:78:0e:76:14:37:ac:8b:6e:aa:
        8d:9c:03:2a:86:f1:31:4c:d9:f9:63:33:33:50:e7:ce:
        44:37:48:7b:90:0f:bd:6c:47:fc:36:b5:f3:5b:4e:63:
        ee:9c:60:91:af:3f:57:bf:d2:4b:01:6a:e5:df:cb:23:
        3f:bf:f5:b0:dd:72:85:7f:ca:7c:43:a2:11:9b:f0:7e:
        a1:ed:07:01:62:3b:97:66:46:f3:45:6f:e8:37:63:9f:
        58:88:26:d4:1f:f7:68:6e:3e:d8:1e:dd:da:9e:a3:36:
        50:04:e4:97:dd:a4:87:04:04:05:0a:fd:1b:18:cf:90
    Fingerprint (SHA-256):
        99:BE:04:F6:B0:CF:0F:67:22:7F:CF:2A:C1:84:7F:28:82:4C:6B:4E:2D:00:E3:10:66:E8:25:E1:2C:F6:61:6D
    Fingerprint (SHA1):
        41:E2:17:49:C9:51:A9:0D:C4:57:80:56:22:B4:C8:97:C7:43:52:A0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11840: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11841: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123324 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11842: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11843: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11844: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11845: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510123325   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11846: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11847: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11848: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11849: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123326   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11850: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11851: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11852: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11853: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 510123327   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11854: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11855: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11856: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11857: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 510123328   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11858: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11859: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11860: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11861: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 510123329   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11862: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11863: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11864: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11865: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 510123330   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11866: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11867: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11868: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11869: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11870: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11871: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11872: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123324 (0x1e67dd3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:31 2017
            Not After : Tue May 10 12:38:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:f2:36:23:32:11:18:a8:08:9d:94:32:5b:38:bb:59:
                    d0:be:53:02:6f:1a:48:e1:4a:6a:d3:61:8b:fe:ce:80:
                    a3:3f:3e:67:bc:8c:c7:c0:72:87:70:6f:15:c8:67:bd:
                    4a:b4:ad:36:ad:58:71:4e:9d:d2:aa:f0:4c:0a:01:bd:
                    2d:e5:ac:d6:ad:5f:a6:48:cd:0e:66:b7:08:89:ec:ab:
                    4f:ac:2b:0c:45:79:3e:e2:2b:dc:80:22:ad:39:68:02:
                    29:71:77:a1:ff:0c:dc:8c:d7:3b:ac:98:69:31:32:33:
                    42:bc:6c:24:02:0f:b1:07:c3:4e:1b:36:c9:4f:8d:dd:
                    6b:04:ed:ae:7d:31:5a:df:75:80:f6:5e:94:8c:4d:91:
                    d5:49:40:80:b9:1f:9a:86:38:54:13:4b:d7:ee:9f:da:
                    2e:b0:5a:b0:d3:e4:30:4a:2b:ab:f9:e3:b9:64:1b:1c:
                    eb:1f:ae:65:c9:50:f5:10:28:41:66:14:42:38:d0:78:
                    82:26:58:b6:4f:1e:a2:9e:4d:09:62:ee:18:15:2d:d6:
                    c2:b1:76:70:8c:d3:b6:5e:ef:05:3e:6b:e6:76:57:32:
                    75:ac:1e:7a:2d:a0:28:56:6c:23:c3:36:3d:83:7c:3c:
                    7f:b8:a9:91:1a:2b:f9:a3:7b:30:03:9f:9a:25:8f:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:64:59:eb:dd:36:36:f1:4d:8e:0a:83:ed:93:ac:b1:
        fe:c3:99:fb:86:dc:5d:95:8f:fe:04:77:06:ad:05:5f:
        81:3f:9d:a9:34:52:0b:c0:4d:39:91:a4:d8:98:a1:35:
        8a:cc:25:78:c6:28:08:ee:6c:7c:11:58:98:03:9b:30:
        55:8a:3a:86:95:cb:66:68:e3:01:f1:6d:74:99:5a:bb:
        4e:d7:3b:26:3b:e9:c6:17:60:99:da:82:5c:51:91:03:
        98:59:c7:45:ab:0b:9c:78:63:10:af:0f:37:b5:13:c0:
        a2:b0:ee:3d:6e:ae:03:0e:15:e5:89:68:24:8c:d7:77:
        08:62:da:23:73:29:66:44:b9:13:c2:8d:a8:95:fb:00:
        24:16:e8:f4:f3:46:74:71:0d:d8:ee:3a:fd:89:c2:62:
        84:02:4e:c5:c0:58:df:aa:b8:b1:10:a6:a3:12:eb:02:
        32:c3:2d:51:81:5c:59:05:84:8d:00:03:a3:f3:c4:91:
        c4:16:00:5a:fb:78:a1:27:d5:6b:53:7c:72:96:46:7f:
        dd:c9:13:c4:13:10:c7:2e:5d:8a:0c:4a:05:2c:04:82:
        50:e6:50:37:dc:1b:b9:6d:6b:2f:58:f3:05:04:5b:87:
        ec:44:f7:88:39:7e:4d:0e:8a:73:c1:1e:dc:e2:e6:e5
    Fingerprint (SHA-256):
        79:1A:3C:AB:0C:FB:C2:17:3C:78:46:AB:64:09:FD:2C:F1:1A:27:C9:F0:01:41:30:86:AC:18:D4:11:AB:95:1A
    Fingerprint (SHA1):
        C3:36:6F:44:16:23:2C:A5:F0:86:DC:E0:2E:1E:D1:3F:07:35:7D:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11873: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11874: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11875: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11876: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123324 (0x1e67dd3c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:31 2017
            Not After : Tue May 10 12:38:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:f2:36:23:32:11:18:a8:08:9d:94:32:5b:38:bb:59:
                    d0:be:53:02:6f:1a:48:e1:4a:6a:d3:61:8b:fe:ce:80:
                    a3:3f:3e:67:bc:8c:c7:c0:72:87:70:6f:15:c8:67:bd:
                    4a:b4:ad:36:ad:58:71:4e:9d:d2:aa:f0:4c:0a:01:bd:
                    2d:e5:ac:d6:ad:5f:a6:48:cd:0e:66:b7:08:89:ec:ab:
                    4f:ac:2b:0c:45:79:3e:e2:2b:dc:80:22:ad:39:68:02:
                    29:71:77:a1:ff:0c:dc:8c:d7:3b:ac:98:69:31:32:33:
                    42:bc:6c:24:02:0f:b1:07:c3:4e:1b:36:c9:4f:8d:dd:
                    6b:04:ed:ae:7d:31:5a:df:75:80:f6:5e:94:8c:4d:91:
                    d5:49:40:80:b9:1f:9a:86:38:54:13:4b:d7:ee:9f:da:
                    2e:b0:5a:b0:d3:e4:30:4a:2b:ab:f9:e3:b9:64:1b:1c:
                    eb:1f:ae:65:c9:50:f5:10:28:41:66:14:42:38:d0:78:
                    82:26:58:b6:4f:1e:a2:9e:4d:09:62:ee:18:15:2d:d6:
                    c2:b1:76:70:8c:d3:b6:5e:ef:05:3e:6b:e6:76:57:32:
                    75:ac:1e:7a:2d:a0:28:56:6c:23:c3:36:3d:83:7c:3c:
                    7f:b8:a9:91:1a:2b:f9:a3:7b:30:03:9f:9a:25:8f:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        41:64:59:eb:dd:36:36:f1:4d:8e:0a:83:ed:93:ac:b1:
        fe:c3:99:fb:86:dc:5d:95:8f:fe:04:77:06:ad:05:5f:
        81:3f:9d:a9:34:52:0b:c0:4d:39:91:a4:d8:98:a1:35:
        8a:cc:25:78:c6:28:08:ee:6c:7c:11:58:98:03:9b:30:
        55:8a:3a:86:95:cb:66:68:e3:01:f1:6d:74:99:5a:bb:
        4e:d7:3b:26:3b:e9:c6:17:60:99:da:82:5c:51:91:03:
        98:59:c7:45:ab:0b:9c:78:63:10:af:0f:37:b5:13:c0:
        a2:b0:ee:3d:6e:ae:03:0e:15:e5:89:68:24:8c:d7:77:
        08:62:da:23:73:29:66:44:b9:13:c2:8d:a8:95:fb:00:
        24:16:e8:f4:f3:46:74:71:0d:d8:ee:3a:fd:89:c2:62:
        84:02:4e:c5:c0:58:df:aa:b8:b1:10:a6:a3:12:eb:02:
        32:c3:2d:51:81:5c:59:05:84:8d:00:03:a3:f3:c4:91:
        c4:16:00:5a:fb:78:a1:27:d5:6b:53:7c:72:96:46:7f:
        dd:c9:13:c4:13:10:c7:2e:5d:8a:0c:4a:05:2c:04:82:
        50:e6:50:37:dc:1b:b9:6d:6b:2f:58:f3:05:04:5b:87:
        ec:44:f7:88:39:7e:4d:0e:8a:73:c1:1e:dc:e2:e6:e5
    Fingerprint (SHA-256):
        79:1A:3C:AB:0C:FB:C2:17:3C:78:46:AB:64:09:FD:2C:F1:1A:27:C9:F0:01:41:30:86:AC:18:D4:11:AB:95:1A
    Fingerprint (SHA1):
        C3:36:6F:44:16:23:2C:A5:F0:86:DC:E0:2E:1E:D1:3F:07:35:7D:66
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11877: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11878: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11879: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123331 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11880: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11881: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11882: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11883: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510123332   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11884: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11885: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11886: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11887: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 510123333   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11888: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11889: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11890: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11891: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 510123334   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11892: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11893: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11894: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11895: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 510123335   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11896: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11897: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11898: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11899: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 510123336   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11900: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11901: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11902: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11903: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 510123337   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11904: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11905: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11906: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11907: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 510123338   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11908: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11909: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11910: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11911: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 510123339   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11912: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11913: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11914: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11915: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 510123340   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11916: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11917: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11918: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11919: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 510123341   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11920: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11921: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11922: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11923: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 510123342   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11924: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11925: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11926: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11927: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 510123343   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11928: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11929: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11930: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11931: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 510123344   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11932: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11933: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11934: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11935: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 510123345   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11936: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11937: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11938: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11939: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 510123346   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11940: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11941: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11942: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11943: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 510123347   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11944: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11945: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11946: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11947: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 510123348   --extCP --extIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11948: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11949: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11950: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11951: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 510123349   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11952: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11953: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11954: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11955: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 510123350   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11956: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11957: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11958: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11959: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 510123351   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11960: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11961: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11962: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11963: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 510123352   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11964: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11965: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11966: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11967: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 510123353   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11968: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11969: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11970: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11971: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 510123354   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11972: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11973: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11974: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11975: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 510123355   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11976: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11977: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11978: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11979: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 510123356   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11980: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11981: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11982: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 510123357   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11984: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11985: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11986: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11987: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 510123358   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11988: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11989: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11990: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 510123359   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11992: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11993: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11994: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11995: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 510123360   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11996: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11997: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11998: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11999: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12000: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12001: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12002: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12003: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12004: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12005: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12006: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12007: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12008: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12009: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12010: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12011: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12012: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12013: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12014: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12015: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12016: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12017: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12018: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12019: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12020: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123331 (0x1e67dd43)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:38:43 2017
            Not After : Tue May 10 12:38:43 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:65:c9:cd:59:ba:8c:65:3b:9e:99:39:33:cb:d6:94:
                    65:03:a7:63:93:32:30:43:9f:02:28:e7:86:6d:77:4a:
                    7c:8b:18:95:2b:26:15:1b:5c:ae:2a:64:f9:9c:84:fc:
                    06:af:ac:40:9c:9f:2a:be:78:73:14:53:ff:ad:6c:9e:
                    03:60:a0:99:4c:4f:ac:77:cb:bd:41:cb:cf:35:1f:e0:
                    bb:5b:aa:5c:1f:1f:28:47:47:ab:46:ea:5f:ad:71:8a:
                    c1:79:36:e7:00:58:eb:24:b9:34:f5:fa:7d:b9:a1:82:
                    9a:0c:9b:44:f3:93:d8:ba:39:d5:43:19:9a:79:95:dc:
                    25:f0:34:55:44:95:d0:9d:91:ac:06:59:10:00:f4:3c:
                    f9:7c:37:22:e0:28:e2:57:06:29:1f:d2:67:0f:80:15:
                    f2:e4:73:04:8f:6b:37:9b:e1:ce:72:f4:02:e7:c9:f8:
                    8b:97:ff:2a:1f:fe:4d:c8:22:09:4e:f3:b2:3f:5e:cb:
                    df:78:e7:99:5d:c2:4d:bb:bc:c5:7d:e2:8b:3b:d3:f5:
                    07:dc:fd:3e:2a:86:c5:5c:97:40:ee:bc:e0:55:c9:86:
                    b6:63:86:24:fa:a1:a2:15:64:c9:14:c3:1b:fd:7f:08:
                    14:e5:0f:e2:10:de:ab:3d:ac:dd:be:2c:1e:fa:76:2d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4f:7b:c9:b5:7f:15:db:95:54:3a:59:ca:40:31:9e:57:
        bb:6a:80:7a:7f:35:8c:7f:30:10:fc:6c:aa:22:c2:6b:
        94:8e:31:90:ae:ab:52:b8:3e:2d:04:d0:38:48:eb:9d:
        54:84:f7:85:cd:42:83:48:ac:bd:a5:a7:ee:41:d9:31:
        86:3d:5d:58:85:00:bf:43:b6:4e:42:31:63:9d:67:bb:
        26:e0:89:76:fe:d2:15:cd:08:47:ea:98:6f:d8:bf:61:
        83:f5:4c:6d:7c:47:79:46:57:1b:9d:76:16:e8:b7:96:
        b4:f7:f3:49:5b:ad:82:e2:42:8a:33:9e:7d:f4:d0:f0:
        21:ef:c7:7b:56:4b:4f:ad:d1:93:16:d9:d2:7c:39:a5:
        22:41:62:c1:dc:1b:99:4d:7f:77:a2:f9:9d:4e:64:53:
        8c:57:ca:cc:ed:cb:09:52:13:c0:28:f1:1c:6e:16:ad:
        19:a6:57:13:c9:f1:b5:33:f2:b9:b8:f6:ed:b8:b7:64:
        3d:7e:10:3e:23:5b:77:61:41:54:91:c8:fc:b2:6c:94:
        90:f9:ee:2b:b8:8d:f7:53:0e:cb:e7:50:03:01:bb:4d:
        3e:95:15:d8:c1:44:46:34:f7:c7:5c:d3:df:43:f7:6c:
        6f:01:42:25:a0:a0:94:26:f9:fb:86:f7:fb:45:94:eb
    Fingerprint (SHA-256):
        23:8B:FB:DA:D4:AC:8B:01:AD:E8:93:A2:C4:36:07:1B:09:8B:AD:29:E0:AF:68:C8:92:5F:E8:F6:1C:48:3E:D2
    Fingerprint (SHA1):
        A2:2E:1B:D5:80:47:55:25:D4:E6:A2:17:54:15:B9:EC:F9:BB:70:BE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #12021: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12022: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12023: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123361 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12024: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12025: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #12026: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12027: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 510123362   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12028: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12029: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #12030: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12031: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 510123363   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12032: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12033: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #12034: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12035: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 510123364   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12036: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12037: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #12038: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12039: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 510123365   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12040: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12041: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #12042: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12043: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 510123366   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12044: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12045: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #12046: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12047: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 510123367   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12048: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12049: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12050: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123361 (0x1e67dd61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:32 2017
            Not After : Tue May 10 12:39:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:db:83:e3:48:1e:bd:1f:d1:04:36:40:d2:36:5b:14:
                    49:65:61:8b:30:b9:96:ed:78:10:d6:92:12:aa:7c:9e:
                    4e:a9:0a:b6:56:f9:79:3f:cb:60:32:3e:5a:4a:ea:d1:
                    47:cd:1c:56:e1:b9:7c:a2:c1:e1:81:55:68:d0:44:a1:
                    e0:b4:73:fc:a9:f6:dc:ef:1f:0f:c2:46:35:98:5b:fe:
                    9a:59:da:ab:c1:e9:06:53:42:16:43:4c:a1:f3:8c:34:
                    43:0f:96:0c:08:af:32:d0:d2:7c:ae:b2:db:97:26:1e:
                    00:ae:22:3c:db:f1:7f:c3:c2:70:b6:03:1f:41:83:81:
                    e4:3f:f4:b1:c0:77:9a:dc:96:f3:61:cb:b0:f1:04:f4:
                    3d:1d:99:a1:b0:31:ae:9b:95:f9:35:2d:49:f7:6b:9d:
                    d2:d8:c6:e5:86:99:86:f7:56:51:7b:5a:44:c5:98:b9:
                    e2:a6:fa:93:9a:59:47:2d:24:3d:b1:2d:33:ac:82:b0:
                    16:2b:c7:9f:f7:e0:c2:77:26:93:38:a7:72:34:dc:4c:
                    1a:a3:67:f6:b5:85:fd:20:1e:23:56:9e:36:fc:2c:6f:
                    bc:b9:b6:57:1f:58:2c:c7:8e:cc:df:b1:c3:b5:55:83:
                    db:56:21:4f:fa:c8:21:c4:6e:2b:be:c8:81:86:60:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:5b:5c:7d:ee:6e:f1:77:0d:1e:92:1b:c7:39:89:35:
        b9:d8:62:13:18:b5:a9:3d:34:fd:8b:fd:b3:39:a5:97:
        e1:2f:f9:85:81:b2:c1:4b:f8:59:cc:8d:83:55:81:ff:
        3f:65:4b:c6:b1:63:e4:80:7a:5a:e5:d5:2a:37:2c:8c:
        00:95:6d:f0:0d:18:23:6f:79:84:8b:91:ae:ef:54:4b:
        10:4d:0b:4e:fa:3c:93:a8:bc:f7:ed:58:ac:c4:6c:27:
        6a:0c:08:27:5c:04:99:7e:05:da:3e:51:21:1c:fd:64:
        ab:28:fd:4c:46:f0:97:3f:36:56:75:3f:cf:24:fb:a5:
        4c:1d:4f:b7:8e:da:bb:80:bc:ff:04:64:c9:1e:ad:e9:
        f8:b9:bd:9d:23:e6:83:b6:48:b9:9f:c2:92:26:f1:1a:
        0f:9e:3f:d2:a5:3b:d4:5c:99:4b:46:d1:f5:e1:99:9c:
        0e:5c:52:b9:7e:7f:73:e1:fc:fc:cb:fd:de:9d:3b:9f:
        ff:d7:47:d1:5f:55:f8:98:eb:93:f0:27:a1:2f:42:94:
        dc:db:d1:70:d3:ce:60:47:25:39:8e:eb:18:25:97:6f:
        3b:e2:b8:e7:8e:75:0f:86:a4:5e:f0:c4:bd:5c:13:e3:
        ad:26:db:9c:22:a6:a6:a8:c1:94:c0:80:57:87:33:91
    Fingerprint (SHA-256):
        1F:F0:BB:86:9E:40:F9:C7:79:44:09:07:70:8B:5D:3D:20:08:5E:C6:2F:0E:3C:FA:0C:2E:4A:C3:61:56:04:20
    Fingerprint (SHA1):
        18:AB:D7:4F:E0:93:D0:68:72:D4:7A:D8:56:46:E2:4D:FB:5B:B4:BF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12051: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12052: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12053: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #12054: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123361 (0x1e67dd61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:32 2017
            Not After : Tue May 10 12:39:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:db:83:e3:48:1e:bd:1f:d1:04:36:40:d2:36:5b:14:
                    49:65:61:8b:30:b9:96:ed:78:10:d6:92:12:aa:7c:9e:
                    4e:a9:0a:b6:56:f9:79:3f:cb:60:32:3e:5a:4a:ea:d1:
                    47:cd:1c:56:e1:b9:7c:a2:c1:e1:81:55:68:d0:44:a1:
                    e0:b4:73:fc:a9:f6:dc:ef:1f:0f:c2:46:35:98:5b:fe:
                    9a:59:da:ab:c1:e9:06:53:42:16:43:4c:a1:f3:8c:34:
                    43:0f:96:0c:08:af:32:d0:d2:7c:ae:b2:db:97:26:1e:
                    00:ae:22:3c:db:f1:7f:c3:c2:70:b6:03:1f:41:83:81:
                    e4:3f:f4:b1:c0:77:9a:dc:96:f3:61:cb:b0:f1:04:f4:
                    3d:1d:99:a1:b0:31:ae:9b:95:f9:35:2d:49:f7:6b:9d:
                    d2:d8:c6:e5:86:99:86:f7:56:51:7b:5a:44:c5:98:b9:
                    e2:a6:fa:93:9a:59:47:2d:24:3d:b1:2d:33:ac:82:b0:
                    16:2b:c7:9f:f7:e0:c2:77:26:93:38:a7:72:34:dc:4c:
                    1a:a3:67:f6:b5:85:fd:20:1e:23:56:9e:36:fc:2c:6f:
                    bc:b9:b6:57:1f:58:2c:c7:8e:cc:df:b1:c3:b5:55:83:
                    db:56:21:4f:fa:c8:21:c4:6e:2b:be:c8:81:86:60:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        12:5b:5c:7d:ee:6e:f1:77:0d:1e:92:1b:c7:39:89:35:
        b9:d8:62:13:18:b5:a9:3d:34:fd:8b:fd:b3:39:a5:97:
        e1:2f:f9:85:81:b2:c1:4b:f8:59:cc:8d:83:55:81:ff:
        3f:65:4b:c6:b1:63:e4:80:7a:5a:e5:d5:2a:37:2c:8c:
        00:95:6d:f0:0d:18:23:6f:79:84:8b:91:ae:ef:54:4b:
        10:4d:0b:4e:fa:3c:93:a8:bc:f7:ed:58:ac:c4:6c:27:
        6a:0c:08:27:5c:04:99:7e:05:da:3e:51:21:1c:fd:64:
        ab:28:fd:4c:46:f0:97:3f:36:56:75:3f:cf:24:fb:a5:
        4c:1d:4f:b7:8e:da:bb:80:bc:ff:04:64:c9:1e:ad:e9:
        f8:b9:bd:9d:23:e6:83:b6:48:b9:9f:c2:92:26:f1:1a:
        0f:9e:3f:d2:a5:3b:d4:5c:99:4b:46:d1:f5:e1:99:9c:
        0e:5c:52:b9:7e:7f:73:e1:fc:fc:cb:fd:de:9d:3b:9f:
        ff:d7:47:d1:5f:55:f8:98:eb:93:f0:27:a1:2f:42:94:
        dc:db:d1:70:d3:ce:60:47:25:39:8e:eb:18:25:97:6f:
        3b:e2:b8:e7:8e:75:0f:86:a4:5e:f0:c4:bd:5c:13:e3:
        ad:26:db:9c:22:a6:a6:a8:c1:94:c0:80:57:87:33:91
    Fingerprint (SHA-256):
        1F:F0:BB:86:9E:40:F9:C7:79:44:09:07:70:8B:5D:3D:20:08:5E:C6:2F:0E:3C:FA:0C:2E:4A:C3:61:56:04:20
    Fingerprint (SHA1):
        18:AB:D7:4F:E0:93:D0:68:72:D4:7A:D8:56:46:E2:4D:FB:5B:B4:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12055: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12056: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12057: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12058: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123368 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12059: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12060: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12061: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12062: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123369   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12063: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12064: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12065: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12066: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123370   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12067: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12068: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #12069: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12070: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510123371   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12071: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12072: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12073: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #12074: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #12075: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #12076: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123368 (0x1e67dd68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:43 2017
            Not After : Tue May 10 12:39:43 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:7b:6b:7d:e9:60:e1:5a:0f:d2:22:0b:3d:bd:c8:51:
                    f5:36:fc:48:8b:96:63:c8:47:d9:c6:90:41:63:7e:a4:
                    4c:6c:91:f7:0e:cb:34:ee:70:7a:98:13:1c:17:b8:bb:
                    a6:1c:45:da:9b:43:97:86:e0:a4:93:e9:87:65:2d:33:
                    76:76:0c:97:60:dd:63:b5:02:f9:e0:62:98:d2:84:3d:
                    76:a4:34:ee:b4:af:14:7e:e5:5f:4c:ab:ba:46:d1:71:
                    e0:86:2d:76:8a:4d:14:fa:83:37:58:d6:ba:06:37:af:
                    1d:8d:bb:50:22:df:04:47:45:70:6c:ef:f1:55:2d:90:
                    b5:cd:16:eb:42:7a:56:58:df:0f:ec:c3:a3:ad:3d:6e:
                    c8:6d:b4:2a:41:e8:88:cb:f0:08:c6:e3:33:80:3c:f6:
                    35:ed:17:5b:24:84:86:84:9f:63:b1:5a:34:ae:4a:ef:
                    e9:80:94:29:40:b4:23:dc:15:c5:bf:25:74:c4:c5:cc:
                    22:71:2c:39:4c:00:23:32:46:38:e0:e4:18:35:f7:96:
                    0a:83:60:a1:a7:3d:17:ba:a1:86:ca:72:34:d5:41:a4:
                    92:18:eb:8e:65:49:02:3c:ad:50:51:16:5d:e5:72:ce:
                    81:41:a5:57:ff:a7:4d:ef:4c:4e:d1:38:14:d9:d0:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6d:52:74:74:ec:e0:c6:ea:8d:60:35:47:52:62:68:b3:
        88:72:f6:d8:fe:36:97:38:c8:34:c4:1d:71:e4:da:2b:
        ce:00:79:7a:97:fd:6d:d3:7c:d1:9b:77:1a:58:87:db:
        dd:75:aa:12:92:3b:ac:b2:fb:0a:8c:62:f0:ca:0f:cc:
        1d:6c:0d:50:26:31:9e:5d:0c:7f:a6:3f:4a:6f:45:f9:
        7c:08:9b:c6:97:9e:b5:7c:df:9d:f0:19:19:bc:ab:92:
        09:45:d3:9a:0f:bc:0c:77:1c:65:b7:37:b8:58:11:85:
        92:26:b1:c2:8c:42:e2:3b:75:33:a0:af:de:b9:aa:d0:
        5d:f8:23:f0:c4:0d:e3:ae:a3:ca:b8:28:68:15:44:96:
        5f:57:ae:bf:d4:e5:db:29:46:a0:ab:c7:65:bb:5f:45:
        04:98:9c:c4:83:db:98:90:ee:4f:bc:e2:de:0c:ba:6e:
        6c:d9:33:de:0f:84:96:6d:12:75:90:9c:48:bb:71:90:
        65:78:75:09:4f:cd:3e:da:e0:29:36:7d:86:4a:7d:87:
        9b:78:46:dd:d2:ca:ff:9a:5d:f1:b3:8c:88:84:12:6e:
        34:7d:4c:a2:07:3d:4f:5b:49:25:84:52:06:1a:09:37:
        d7:31:3c:c3:5f:38:7d:e8:0e:b9:4e:8c:cd:f5:e7:22
    Fingerprint (SHA-256):
        BF:51:35:98:17:5A:CC:6B:3C:30:FB:21:9C:F8:00:B4:3B:6D:89:8B:C7:9D:0E:8B:35:6A:B4:27:6D:F5:F9:36
    Fingerprint (SHA1):
        82:8F:81:09:97:22:A3:0E:B4:23:F8:63:97:BB:27:D5:52:E2:AE:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12077: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12078: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12079: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123369 (0x1e67dd69)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:45 2017
            Not After : Tue May 10 12:39:45 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:c0:6e:9a:d3:ab:e0:f3:a1:63:24:f6:40:ed:c1:29:
                    17:b8:31:81:2b:6a:a0:b7:f9:ee:fb:b7:0b:a7:ab:aa:
                    33:27:dd:cf:c3:1c:41:84:33:bc:c3:10:26:6f:f3:d0:
                    32:ee:0d:1a:fc:7e:14:79:f2:22:3b:a2:ad:da:70:ce:
                    96:ce:64:5b:5f:61:1c:5d:55:68:b9:66:ad:a2:bb:9f:
                    19:b2:e2:5c:a5:a4:5f:c0:bd:32:19:5b:dc:18:ea:cd:
                    17:39:45:6f:f4:36:93:69:ff:ac:65:37:66:8f:7e:3b:
                    8e:fd:e6:b1:5c:a4:0c:60:64:50:47:af:c7:9a:01:67:
                    82:ea:f4:64:f6:67:98:8d:b4:7e:32:4b:17:eb:04:5c:
                    5e:5d:42:30:e1:e2:82:f6:ae:4b:fc:61:9a:2f:1b:c4:
                    2d:75:91:b4:4f:a7:ba:f1:c5:d9:91:eb:91:8b:5f:4c:
                    4f:97:2f:db:44:8a:53:55:68:26:08:d9:bf:25:3a:d7:
                    f5:32:0f:e9:c3:43:9a:18:34:28:f1:50:63:ce:84:6a:
                    23:25:d8:fb:72:8f:c7:68:36:43:dd:c6:4c:d7:b7:e7:
                    bc:d0:93:fe:e4:de:5f:a3:97:5f:e1:b6:25:94:a1:4e:
                    6e:45:cf:71:87:3c:0e:64:5c:bb:86:ea:3c:14:87:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:f7:28:47:89:b7:0f:fd:8e:4d:c1:2e:03:ae:c8:9d:
        9f:d5:3b:99:a1:7d:20:88:02:8a:73:06:5d:84:18:9c:
        39:36:34:24:57:bc:35:a8:8d:a0:42:33:99:10:18:fe:
        ac:38:31:7b:4b:9e:72:aa:a4:3b:88:aa:8c:cb:69:f5:
        e2:bb:be:65:55:e7:25:ff:cf:3a:e0:fb:2c:8d:79:6b:
        84:d3:4d:17:6b:69:08:ee:3e:43:da:83:20:9b:83:1d:
        03:8c:04:52:57:4b:ab:a5:3b:3d:00:13:be:89:7a:9e:
        c7:8a:9c:01:bb:83:01:7a:b5:04:8c:8d:ec:46:2f:86:
        bd:4f:bf:e1:ae:99:f2:e2:77:5d:11:3f:1f:2a:46:f1:
        9d:06:a2:c5:31:98:b7:1c:b5:f8:33:aa:0b:fd:1c:2f:
        a4:a2:79:1e:7e:33:15:b3:ee:62:11:a1:c5:ac:eb:a3:
        dd:a0:3e:92:7a:ca:f2:49:71:0b:fe:b9:6f:a4:43:31:
        c8:1b:44:7e:8f:7c:98:6e:3d:21:c2:94:1b:77:45:25:
        2e:41:7c:a6:6a:0c:c7:06:06:f9:92:69:5b:6f:a4:56:
        9e:24:6f:7b:86:7a:be:9c:3b:88:21:ff:e7:52:8e:6e:
        a3:b8:2d:e7:36:1a:41:be:8a:b1:a6:50:e9:48:79:76
    Fingerprint (SHA-256):
        EF:EE:5B:89:FE:A0:8E:1E:5B:E6:82:D9:B8:27:F8:68:65:41:D6:B3:38:6D:F2:57:F5:2B:07:17:C6:8E:E0:3F
    Fingerprint (SHA1):
        4D:5C:C4:A2:94:10:DD:AA:84:B1:15:EE:8A:05:27:11:F5:20:41:C4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12080: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12081: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123370 (0x1e67dd6a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:39:46 2017
            Not After : Tue May 10 12:39:46 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:19:80:fb:b9:62:88:e8:c1:69:6f:26:d0:a5:d7:6e:
                    b0:70:bb:df:87:0e:35:60:b4:91:7b:24:dc:cf:dc:33:
                    ba:0b:5b:5a:ee:10:19:d6:79:90:96:bb:e4:4e:98:5c:
                    bc:9a:0c:f6:de:2e:da:ed:51:0b:4c:65:91:ed:e1:d8:
                    29:2c:45:bc:64:3a:7f:13:0b:bb:08:06:3c:fe:9f:39:
                    83:50:cb:6a:6e:c9:9b:9f:a0:08:14:c7:85:42:c5:a8:
                    94:96:71:43:73:25:bc:61:82:a6:f0:c2:4f:78:a7:1c:
                    46:01:86:0b:d8:b7:6b:f4:49:0a:36:e4:e0:55:3c:30:
                    72:fa:30:6f:0a:53:b3:3c:4f:71:6e:bd:c1:c5:4f:ae:
                    73:19:29:0f:ab:cf:9e:99:1a:ac:61:a2:21:3c:2c:6b:
                    ff:8f:81:57:c2:f8:9a:d9:8d:1f:7f:9f:b7:b7:b4:c7:
                    e5:24:e0:6d:02:c1:49:b0:c8:28:5f:5e:67:e3:e6:ed:
                    16:33:4c:3d:9e:c8:23:81:41:cf:6a:e2:bf:df:56:a0:
                    2a:c8:30:d6:5a:28:f0:af:c8:72:ff:b4:07:7e:0b:39:
                    ac:af:d4:fc:80:7c:5e:0d:4b:93:18:00:c9:70:a3:ad:
                    00:aa:eb:33:a7:da:7a:96:29:d1:99:42:cc:66:45:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4d:30:3f:60:bc:5e:84:2c:fa:d6:11:5a:5a:3c:c1:1c:
        34:36:f0:82:7d:ff:ed:bb:17:9c:b8:54:89:3b:01:2c:
        75:98:35:ca:00:12:03:f7:0a:d0:aa:8d:b5:25:f0:36:
        a5:68:68:ae:3c:b6:3f:cf:93:d6:dc:14:c9:3d:8c:0b:
        a1:94:3c:ee:7b:94:ab:37:c9:e6:7a:54:8b:0d:cd:d3:
        0c:cb:48:c6:1f:00:e4:02:92:69:06:8d:2c:3f:b6:cc:
        58:02:f8:08:e2:ba:12:73:f7:aa:59:b5:d1:f2:07:cd:
        e7:4d:88:88:83:26:95:3f:c1:47:87:ff:03:bd:1f:23:
        5f:51:a2:12:29:1b:24:a2:6f:81:3a:c0:b2:09:72:4a:
        36:58:91:c7:84:98:7c:c7:d8:e0:fd:04:01:7f:bc:3c:
        48:2c:77:b3:3b:86:a2:7c:a3:c6:02:38:11:45:8a:26:
        e5:d4:86:09:6a:7a:db:70:07:df:b1:e5:57:ea:34:68:
        9f:a4:78:ed:f5:a6:1c:ef:9e:1f:54:2d:85:f2:e5:80:
        78:e0:f2:ef:43:5c:85:9e:bf:33:25:e2:18:c6:94:19:
        f9:2f:83:69:f3:4f:d5:f6:cc:38:4d:6d:ca:4b:1c:94:
        ac:6e:db:7a:45:05:4c:19:c3:a0:fc:61:39:c5:81:ad
    Fingerprint (SHA-256):
        F8:48:26:21:AD:7E:FA:7D:AD:D6:E2:35:B1:84:73:3C:EF:AD:A3:33:A3:2C:98:15:72:E9:1C:8C:30:E4:83:F9
    Fingerprint (SHA1):
        BC:57:5D:FD:DA:6E:37:10:06:81:96:6E:34:DF:14:5F:86:23:04:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #12082: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12083: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123372 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12084: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12085: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12086: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12087: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123373   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12088: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12089: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12090: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12091: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123374   --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12092: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12093: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #12094: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12095: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 510123375   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12096: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12097: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #12098: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12099: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 510123376   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12100: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12101: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12102: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #12103: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #12104: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #12105: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #12106: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123372 (0x1e67dd6c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:50 2017
            Not After : Tue May 10 12:39:50 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:47:ef:27:16:f2:90:4d:9d:47:a4:c9:cd:6d:49:0c:
                    84:ce:82:9a:82:14:30:ec:23:4a:07:bf:ee:9e:24:81:
                    52:85:ee:dd:79:83:e3:71:f5:10:1e:b0:69:20:a1:2c:
                    48:1c:21:f4:e3:08:7d:90:30:4f:16:70:bd:df:0c:6e:
                    75:2a:9b:db:bc:83:e1:f1:8d:66:ff:71:cb:20:ef:20:
                    42:fd:a2:64:08:ed:fd:ee:cd:81:8e:47:98:d2:ed:1a:
                    f2:bb:a4:6d:9a:43:8d:74:34:1a:30:7c:39:f4:85:ee:
                    ea:f3:9c:27:35:0d:f5:af:94:c4:03:4b:a7:0c:b0:30:
                    dd:49:69:31:aa:16:ce:88:48:a3:52:5a:a8:f5:dd:c2:
                    ad:80:68:a9:d2:2c:5d:d5:1f:3a:49:81:e1:f5:f2:92:
                    91:36:0b:02:cc:d4:bc:71:16:fe:d6:96:cf:ab:b2:8c:
                    92:6c:dd:51:eb:db:fc:1b:69:c1:0c:71:57:c1:3f:fd:
                    51:ad:b9:52:52:ae:9c:c3:3b:44:f1:a8:bf:cb:41:55:
                    21:46:9d:73:17:f5:dc:3b:ad:04:73:8f:35:45:07:ee:
                    e8:03:18:ca:6f:3e:77:2f:d7:3c:bb:a1:2f:82:96:63:
                    8e:6c:cf:86:5c:88:8e:cb:2f:7f:9f:d8:15:e0:64:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        24:73:be:fe:7e:5c:b4:03:6e:91:e9:14:64:f4:c1:d1:
        f7:6c:1c:d9:87:44:f9:62:e8:4c:e4:9a:ec:f5:ac:2f:
        20:8b:f8:fd:8c:7b:92:1d:77:0b:65:f4:6a:79:bb:13:
        58:1e:1f:df:e1:40:a8:27:55:8f:ff:b6:10:39:c4:25:
        16:23:3e:50:47:0a:78:a8:70:75:ea:9c:8a:8a:a7:67:
        21:20:2f:42:15:a1:02:93:cf:86:b8:18:37:8b:cc:55:
        5f:9b:88:98:9a:b1:62:af:e6:b7:d3:44:87:55:f9:f4:
        25:2c:b3:50:ac:96:f9:f1:6a:fe:47:09:ba:64:45:06:
        95:97:a0:17:d2:2a:98:1a:47:a4:29:16:fd:91:22:7f:
        0e:41:0c:34:e2:72:88:7a:b0:74:d9:f6:0b:24:b2:27:
        cf:09:a9:89:8a:a8:7f:7f:f5:c5:bc:7b:36:5f:91:04:
        ac:24:ef:f3:6a:8d:a1:ff:fc:e6:38:fb:a3:0e:ea:7f:
        ec:64:ee:18:fd:62:cf:0f:37:ba:4b:0f:cb:35:e5:91:
        e0:79:18:85:c2:78:34:1d:55:ab:59:aa:da:4d:ec:37:
        5c:5a:e9:93:31:54:7c:73:be:52:6e:ee:f6:e8:df:f2:
        dd:f9:12:1a:89:e9:db:7b:e7:8d:02:a4:59:aa:19:6c
    Fingerprint (SHA-256):
        AF:3C:9E:ED:52:DE:61:7E:D4:87:D2:C0:EE:7F:CA:CB:46:4D:CD:1A:5E:A4:6A:B1:8C:A3:D3:2A:9E:92:87:77
    Fingerprint (SHA1):
        15:D8:2C:14:E6:CE:57:6A:B4:65:40:01:52:6C:22:1E:EF:4E:C3:2D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12107: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12108: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123373 (0x1e67dd6d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:51 2017
            Not After : Tue May 10 12:39:51 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:76:2c:20:11:22:0a:20:74:9f:4a:d0:15:06:f4:38:
                    9f:61:a0:be:10:9c:83:f9:cc:01:ce:dd:3c:50:44:e3:
                    c9:e0:17:7c:6b:81:2b:0f:4d:e7:4e:d8:a6:04:72:da:
                    1e:1f:89:88:22:89:96:d7:c8:e6:bc:f5:4c:e4:a8:62:
                    36:0e:fd:bc:1d:dd:b0:b0:ae:73:03:e1:6a:c5:be:c1:
                    a3:1c:81:45:9c:79:e3:ab:5f:03:bc:9b:17:35:78:c0:
                    43:3f:48:19:f9:a5:22:d2:69:30:e7:12:28:7d:8d:ea:
                    6f:b7:6b:f3:2b:f6:1a:89:da:a7:21:45:e2:e5:4b:ca:
                    7b:9d:cd:8a:05:5f:4d:4c:c3:02:d0:10:d9:d8:45:ff:
                    73:f8:58:77:c9:11:bf:d6:52:71:f1:1f:28:64:02:80:
                    43:d8:cb:68:39:f1:cd:b3:ca:a7:38:fe:e3:98:2c:7f:
                    32:4f:a5:15:2d:a6:a5:50:b8:b2:cf:5e:19:84:28:6d:
                    8c:49:1a:25:b2:9e:21:4d:83:62:88:fa:3c:37:c3:d8:
                    4d:d1:8a:6f:b6:8f:d8:e8:69:ed:a0:72:59:08:76:2d:
                    15:bd:69:c3:d3:da:ae:77:6b:79:fb:e5:bc:ab:1c:67:
                    4a:4f:83:ad:ff:03:b9:b9:99:19:ea:74:b4:e7:67:e5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:d6:23:d1:f1:e4:a4:14:86:5c:81:b5:80:11:fb:b7:
        c5:3c:70:1a:7c:51:23:de:8d:3f:ee:32:47:1f:81:f1:
        8e:d2:f5:26:5e:2f:81:b0:3b:a1:2b:44:d0:ed:6f:94:
        c7:04:7d:71:0f:f3:19:62:3e:ab:dd:b1:3d:e8:38:68:
        df:5a:58:c6:9e:16:98:ff:c7:e8:7d:41:16:bd:01:41:
        33:b1:32:30:7c:2b:50:e9:8e:37:a1:30:79:12:f9:dd:
        b6:26:ac:f7:52:bd:d0:40:d2:f4:36:da:2c:55:e3:c6:
        b1:6f:32:0a:3d:73:1f:f7:5f:b8:e8:53:0d:74:b9:33:
        d9:30:11:ec:05:26:1d:df:71:ab:0f:57:55:35:36:26:
        ff:54:84:6b:b5:1f:94:da:84:64:6c:59:9b:bd:05:6c:
        ba:d3:32:28:3c:e9:87:e2:e3:bd:5b:6f:f6:96:85:b1:
        b8:9e:43:33:8b:f9:98:93:4a:01:ee:a7:c6:78:88:a1:
        82:0b:ce:5e:0f:de:fc:5f:76:ab:33:8d:7c:73:9e:fc:
        bb:66:28:c8:37:ea:f2:8d:f0:a7:ca:7a:7c:65:6a:3e:
        fc:02:bf:a2:4c:4d:34:42:b0:93:c2:ab:56:48:05:41:
        b7:45:20:28:25:4c:54:c0:16:33:42:c0:e2:f0:b7:5f
    Fingerprint (SHA-256):
        CB:DD:9D:CC:1E:12:17:53:03:4E:30:FE:58:B7:5D:82:06:3C:AC:5B:3B:DF:0C:7B:6C:9D:EE:B8:68:5F:0F:02
    Fingerprint (SHA1):
        A5:98:3C:31:69:1E:87:E4:91:4F:27:CF:9F:D8:1E:E8:67:CB:D6:29
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12109: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12110: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12111: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123374 (0x1e67dd6e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:39:53 2017
            Not After : Tue May 10 12:39:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:79:d2:41:55:df:3f:e6:ee:a2:fd:1b:96:a7:6c:e4:
                    f5:16:21:2c:05:29:87:22:65:4d:92:42:d9:8d:37:1d:
                    40:ed:2a:d6:61:cd:05:14:d0:4f:ab:da:ae:5e:f1:cc:
                    c0:40:2a:29:88:e7:ce:ab:05:84:aa:85:2d:80:2f:a0:
                    71:26:bd:2e:a7:2c:2c:c9:12:74:a1:a3:66:7b:2f:78:
                    b1:a2:cb:5b:7d:81:4f:6e:65:69:ab:42:b7:c1:2a:da:
                    c6:50:79:31:d3:93:85:c2:ad:fc:82:79:28:b4:10:8a:
                    9c:a4:85:78:53:02:40:de:66:d4:4e:55:22:b9:93:7e:
                    b0:d9:ad:e6:76:b2:6d:68:9b:b3:cc:3d:60:72:76:e9:
                    fa:ba:bb:3c:08:0a:90:a1:20:88:59:33:22:d2:43:ab:
                    ed:2f:80:e4:fa:3c:7d:ca:fd:f6:b5:07:00:eb:64:9d:
                    a5:56:17:0b:23:a3:db:54:a1:72:8b:01:5f:a7:61:6b:
                    41:30:23:e2:8b:68:60:57:9c:c0:ae:c8:60:41:1d:dc:
                    bc:c6:3f:2a:97:21:8c:dd:6d:a5:53:4f:96:8b:3b:16:
                    d6:0e:65:34:c9:e9:44:0b:a3:59:0c:e1:37:8d:ab:5b:
                    4d:78:a0:b7:ea:c8:82:74:07:b0:76:26:ff:12:9d:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:bb:7e:a4:9f:71:9e:27:0e:83:01:84:a1:e8:93:4e:
        be:93:ee:ed:10:39:c0:cf:20:fa:25:ec:01:93:21:da:
        bb:30:a2:4f:61:8d:f8:b2:e8:e9:1b:5b:8e:c0:f3:79:
        fd:ff:47:2a:36:a2:61:87:30:c7:7f:5f:d1:52:91:93:
        07:52:81:d8:76:c8:aa:58:62:9b:3f:2a:87:e7:ae:eb:
        77:9b:4c:2e:5d:8f:df:c5:e1:ca:e6:84:f8:84:17:88:
        8d:4a:f7:30:43:9b:83:c7:ac:ae:fe:1d:41:31:89:9d:
        26:9a:8e:00:51:87:7b:0b:49:bb:53:8c:22:cd:f6:7d:
        05:c9:3f:a1:10:f4:a5:4a:d6:ee:b0:5f:80:18:3c:d0:
        8a:ed:dd:b3:46:09:81:8c:cd:e4:6d:d0:65:c4:d2:fb:
        ae:0b:8f:93:21:f6:71:cd:f0:52:9c:3d:5b:13:41:d9:
        6e:92:02:bf:e4:80:1e:a3:bb:df:c7:0a:30:06:3a:a8:
        0f:2e:01:a2:58:3e:fe:a4:7c:96:39:2b:4c:e8:94:ad:
        75:f1:13:b9:fe:9a:4b:62:b0:89:c7:d3:c2:50:e5:cd:
        70:fb:66:a8:39:2f:41:ac:25:5e:c0:be:5f:33:d1:06:
        d8:32:1b:a9:32:62:08:b6:96:2c:d3:63:36:9e:9d:f2
    Fingerprint (SHA-256):
        E7:94:AD:CC:86:72:89:EC:E3:C2:81:36:CE:DF:BF:D5:7D:80:5D:23:4E:F1:97:E9:CE:16:4B:09:94:E6:F5:5B
    Fingerprint (SHA1):
        69:6B:A2:AC:30:2D:9B:CE:06:5D:F7:5E:9C:8D:63:77:B6:33:3A:79
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12112: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12113: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123377 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12114: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12115: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12116: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12117: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123378   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12118: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12119: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12120: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12121: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123379   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA1Root-510123156.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12122: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12123: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #12124: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12125: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 510123380   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12126: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12127: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #12128: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123377 (0x1e67dd71)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:39:58 2017
            Not After : Tue May 10 12:39:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    91:46:0a:b2:82:cf:be:ea:1c:a6:28:32:b0:b3:29:d0:
                    78:02:da:fc:9b:58:3e:69:36:3a:b5:ab:f7:3a:ac:c4:
                    14:d5:a1:7d:8a:a1:d5:eb:9f:59:8e:35:28:1d:9c:7d:
                    5d:72:4d:1c:9f:36:8e:87:9b:f8:0a:26:e2:6b:46:a4:
                    10:5d:ff:5b:02:cd:79:dd:d2:4a:54:21:f2:6d:1f:92:
                    17:8d:ac:e4:62:b7:eb:de:79:99:1f:30:9d:e5:ad:d2:
                    c2:da:da:7f:49:21:a1:c1:11:0a:21:04:28:53:e2:b8:
                    16:bf:f3:af:df:46:f9:5c:07:3b:78:18:06:f6:0c:26:
                    79:43:32:f5:a7:62:98:1f:e9:3e:39:43:07:84:1e:13:
                    82:54:e4:28:da:2e:a4:ee:ad:2a:e8:1a:3d:25:f2:e7:
                    0a:14:5c:e4:fa:5e:48:0d:a1:f6:c9:8a:bd:10:a1:e3:
                    a0:03:a0:a5:a7:a8:a0:ed:8c:9b:d5:6f:ff:fe:b0:15:
                    2a:2e:be:19:90:97:12:43:08:2d:64:a4:0b:15:51:66:
                    86:45:9b:e9:ba:5e:c1:a4:e5:5e:3e:e3:e0:e8:08:0d:
                    a0:a0:c5:4e:f9:c1:bb:f0:80:d1:c7:45:43:54:46:68:
                    92:b3:7f:fb:50:68:1f:2d:d4:a2:ca:b7:ce:d5:89:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:a7:94:44:1e:bd:ac:75:eb:5e:7c:7a:27:ce:13:a8:
        8e:8d:54:38:da:89:2f:ca:b2:1c:8d:03:29:4c:3e:f2:
        8d:7b:a0:f8:f5:77:5d:a6:72:55:9b:2d:ef:e1:52:f1:
        b8:47:bb:20:11:fb:a9:47:a3:f7:14:45:31:cf:47:15:
        3d:7b:62:39:de:ce:3e:09:fc:82:18:a2:55:ce:f1:27:
        a3:a5:ba:46:53:cc:04:ba:ae:54:87:91:b0:d2:68:b1:
        63:ee:a5:44:54:f4:25:fd:0e:91:99:ba:4a:88:d3:6a:
        3a:7a:17:f7:1c:66:99:63:ca:c0:54:6d:d3:9b:9d:a2:
        03:a9:f3:27:36:d6:dc:86:53:eb:ee:8c:66:1e:70:46:
        53:ef:6f:8b:6f:5a:cf:6d:c9:40:f9:8f:0f:4f:fe:39:
        2a:80:fe:db:f5:4d:a0:98:88:c0:a0:dc:95:b6:c8:47:
        3f:f0:f6:1c:cb:e6:94:e0:c9:51:6e:e1:ef:00:a5:1e:
        4d:69:a1:a2:1f:c4:eb:84:8c:10:e1:9e:60:7c:01:28:
        2f:0f:1c:02:c9:c1:5f:cf:78:17:c7:0a:44:58:7d:3d:
        13:b2:35:9a:02:68:a8:07:4b:30:87:e5:5e:c9:62:28:
        a2:87:64:48:f4:ce:be:a3:aa:a4:30:90:a4:1f:69:09
    Fingerprint (SHA-256):
        DE:94:01:80:93:14:45:28:A4:8E:73:F2:BA:3C:7F:32:DC:01:EE:52:3C:71:27:46:E1:5C:AA:28:3D:24:FF:47
    Fingerprint (SHA1):
        7F:3E:62:E9:E6:E0:E6:D8:BC:F9:68:01:17:58:06:98:AA:50:73:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12129: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #12130: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123381 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12131: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #12132: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #12133: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123382 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12134: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #12135: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #12136: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12137: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510123383 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12138: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12139: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510123384 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12140: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12141: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #12142: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12143: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12144: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510123385   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510123157.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12145: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12146: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12147: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12148: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123386   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12149: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12150: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #12151: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123381 (0x1e67dd75)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:40:06 2017
            Not After : Tue May 10 12:40:06 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:02:a5:cc:bf:9c:ed:46:4a:43:c3:6b:cb:26:9a:e4:
                    c1:61:40:c9:d8:ca:fb:bf:5f:f9:b7:69:31:e1:06:e0:
                    c3:0a:b0:95:ba:5b:6b:2d:f8:47:29:66:77:d6:3f:4d:
                    f1:47:1d:89:38:26:9f:1c:72:0c:e7:a6:1d:a4:34:18:
                    1c:66:8d:29:1d:df:13:be:ad:80:47:fa:de:34:36:f4:
                    3e:5d:74:31:e7:99:49:f1:04:6c:9c:ce:37:f5:82:e4:
                    7a:b6:91:89:a5:f8:5c:00:1c:22:e6:be:d7:af:12:9a:
                    1f:76:da:50:07:81:aa:cd:69:27:9d:e1:64:f8:c6:4e:
                    fc:b8:ca:1d:7f:8b:df:cc:60:f0:d3:e9:c1:3d:71:e3:
                    6d:c7:31:db:66:38:09:12:83:9d:be:48:da:f3:64:a5:
                    95:4f:89:28:eb:63:12:a2:a1:bf:7e:0d:f5:c1:a7:7d:
                    32:d7:55:74:5e:94:79:f3:d1:77:90:ac:41:04:6f:73:
                    fe:bb:f0:29:e8:ed:f3:18:73:9e:ab:9a:67:d5:7d:59:
                    a8:89:90:0f:a4:e6:57:52:cb:de:01:52:2c:3a:ef:80:
                    d0:3e:60:07:6c:99:e2:2f:9c:e1:7b:a4:0c:16:97:57:
                    16:8c:91:74:64:b5:0d:23:24:fb:09:f2:16:75:17:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:71:d5:4e:82:94:c5:73:a7:d0:a7:28:df:af:3e:bc:
        f0:4c:dc:d7:cb:46:ce:eb:60:3c:97:e5:7d:82:0f:7b:
        d2:31:11:ca:fd:9c:9d:cf:f8:cf:2f:be:30:72:18:f1:
        ed:cc:18:29:98:68:27:8a:37:06:89:e3:9a:fa:a8:87:
        ff:24:d8:78:20:d3:f9:c4:04:df:be:2d:a8:15:91:14:
        b3:77:c6:9e:3a:5f:25:0c:94:68:4a:76:86:a8:8e:e8:
        43:22:28:be:36:11:27:4d:91:88:75:f4:b7:79:4c:51:
        5f:2e:1c:3f:03:ed:f2:fe:50:a1:4a:6e:bf:ec:33:55:
        86:c1:37:a5:48:36:f9:8b:fb:af:9e:d2:67:d8:7c:03:
        a3:b5:b3:64:34:79:8a:3f:e3:7d:ea:f2:b6:7a:71:38:
        7d:df:44:3b:a6:91:3c:ad:54:a7:8b:75:81:2d:80:e5:
        ac:4b:a0:11:e8:ce:6e:06:92:3a:5c:85:9b:11:2d:6e:
        34:a5:02:c8:a9:4f:1a:6e:47:11:0b:97:89:fa:fe:10:
        16:04:f0:37:ad:a3:f3:ec:20:72:2f:98:d2:40:bc:78:
        8c:d1:99:a8:e2:bd:79:77:ea:93:5a:c7:c8:f0:5e:a1:
        2d:6c:40:41:8a:2e:18:f9:e8:86:4a:b5:a0:8a:28:5b
    Fingerprint (SHA-256):
        5C:A6:6E:3B:E8:CF:B1:3C:CA:98:ED:D2:83:4E:E9:3A:F8:28:86:F3:81:FB:8F:C4:C5:5A:74:A3:18:45:05:41
    Fingerprint (SHA1):
        3D:67:CB:C7:96:3D:A0:BC:B1:BA:8A:84:D6:3A:6B:D2:DB:75:73:6C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12152: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123382 (0x1e67dd76)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:07 2017
            Not After : Tue May 10 12:40:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c7:68:0f:a6:de:19:58:88:f9:39:2b:06:5c:a0:a3:
                    c6:27:87:b5:2b:f8:4f:49:59:28:de:26:f7:74:0f:b0:
                    e4:cf:d7:9b:36:33:bc:f3:b3:23:a3:e8:05:12:72:15:
                    e4:48:6d:02:43:63:ec:c5:8a:b8:73:7b:04:f8:28:e0:
                    3f:cd:f3:40:b0:2c:c1:88:5a:38:34:fe:2b:5d:44:c8:
                    ed:ef:98:5b:c2:ce:ea:23:a0:7b:f4:d2:77:0c:90:12:
                    37:fa:e6:f5:1d:a1:99:e4:88:41:b1:66:d8:64:7f:32:
                    e2:54:79:fc:1c:83:01:44:36:78:da:36:29:51:fb:b4:
                    62:a4:7b:3a:e9:99:8d:f2:b4:a9:c7:19:32:ab:eb:82:
                    48:65:66:e0:2a:5f:58:c9:70:ca:a0:66:60:40:84:d8:
                    f2:98:b8:0c:b8:1c:1e:66:fb:d3:33:2c:0d:2a:76:e9:
                    30:26:e3:f6:5c:4f:4d:fb:d6:de:da:3d:d0:7e:d0:97:
                    a1:33:da:d7:cf:bc:23:d1:4d:f0:c4:70:54:0a:c9:09:
                    25:a1:e4:a3:c9:81:f4:d3:fb:84:db:18:7e:31:dd:b8:
                    21:78:36:25:bc:1a:81:f7:81:a6:8b:f3:1c:2e:6e:42:
                    9c:f1:8a:73:49:64:bd:f1:14:84:28:3a:35:f0:40:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:97:ef:9a:c0:a3:53:4a:83:46:38:00:1b:c4:84:26:
        65:a9:66:8c:e5:61:18:ba:05:74:0c:2b:72:dc:0b:4a:
        6f:38:84:d4:65:fd:54:e9:da:d1:73:cd:77:fe:ca:e9:
        73:90:0b:f4:e8:19:d5:c2:2e:e2:8a:57:8c:05:5c:88:
        8d:d4:68:f9:57:c0:2b:a0:33:d2:ee:57:f0:c8:d0:81:
        24:0b:68:6e:1b:09:2c:b2:09:da:7a:f1:88:b4:f6:97:
        06:d9:65:3a:62:71:dd:8c:55:dc:f0:52:3e:9c:4d:6b:
        80:1a:e7:1a:d6:e3:47:0b:39:78:e6:55:2c:c3:54:76:
        07:fc:7e:18:09:c3:ca:e7:aa:0b:90:ab:9e:c6:a5:0f:
        8a:9e:d4:2e:d0:87:19:3e:04:2b:89:a9:71:c3:46:7c:
        7a:b1:46:00:bb:87:66:26:79:5d:2d:81:65:bf:73:0e:
        a1:9f:38:39:ae:3c:5b:b1:80:39:38:b4:f5:20:2a:ba:
        98:39:65:4e:3b:46:e3:d7:8b:7b:0b:b3:6f:73:be:70:
        c2:ae:78:a2:2f:16:0a:9b:c8:68:ab:21:cf:3d:e9:18:
        90:a5:dd:50:62:d4:f7:08:62:74:88:97:ae:e4:11:74:
        71:7e:80:4b:35:c8:a0:e6:ff:99:1f:e3:a9:b4:07:d4
    Fingerprint (SHA-256):
        8A:6C:83:B0:C5:68:C0:8A:37:BB:72:47:BB:02:FF:1A:47:0C:D3:30:CA:7A:4C:F5:DA:3C:08:DB:E2:C2:15:D8
    Fingerprint (SHA1):
        5A:B7:8B:16:5D:6A:9D:44:34:C4:64:DB:78:36:2B:69:41:E4:79:E9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12153: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123382 (0x1e67dd76)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:07 2017
            Not After : Tue May 10 12:40:07 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:c7:68:0f:a6:de:19:58:88:f9:39:2b:06:5c:a0:a3:
                    c6:27:87:b5:2b:f8:4f:49:59:28:de:26:f7:74:0f:b0:
                    e4:cf:d7:9b:36:33:bc:f3:b3:23:a3:e8:05:12:72:15:
                    e4:48:6d:02:43:63:ec:c5:8a:b8:73:7b:04:f8:28:e0:
                    3f:cd:f3:40:b0:2c:c1:88:5a:38:34:fe:2b:5d:44:c8:
                    ed:ef:98:5b:c2:ce:ea:23:a0:7b:f4:d2:77:0c:90:12:
                    37:fa:e6:f5:1d:a1:99:e4:88:41:b1:66:d8:64:7f:32:
                    e2:54:79:fc:1c:83:01:44:36:78:da:36:29:51:fb:b4:
                    62:a4:7b:3a:e9:99:8d:f2:b4:a9:c7:19:32:ab:eb:82:
                    48:65:66:e0:2a:5f:58:c9:70:ca:a0:66:60:40:84:d8:
                    f2:98:b8:0c:b8:1c:1e:66:fb:d3:33:2c:0d:2a:76:e9:
                    30:26:e3:f6:5c:4f:4d:fb:d6:de:da:3d:d0:7e:d0:97:
                    a1:33:da:d7:cf:bc:23:d1:4d:f0:c4:70:54:0a:c9:09:
                    25:a1:e4:a3:c9:81:f4:d3:fb:84:db:18:7e:31:dd:b8:
                    21:78:36:25:bc:1a:81:f7:81:a6:8b:f3:1c:2e:6e:42:
                    9c:f1:8a:73:49:64:bd:f1:14:84:28:3a:35:f0:40:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5d:97:ef:9a:c0:a3:53:4a:83:46:38:00:1b:c4:84:26:
        65:a9:66:8c:e5:61:18:ba:05:74:0c:2b:72:dc:0b:4a:
        6f:38:84:d4:65:fd:54:e9:da:d1:73:cd:77:fe:ca:e9:
        73:90:0b:f4:e8:19:d5:c2:2e:e2:8a:57:8c:05:5c:88:
        8d:d4:68:f9:57:c0:2b:a0:33:d2:ee:57:f0:c8:d0:81:
        24:0b:68:6e:1b:09:2c:b2:09:da:7a:f1:88:b4:f6:97:
        06:d9:65:3a:62:71:dd:8c:55:dc:f0:52:3e:9c:4d:6b:
        80:1a:e7:1a:d6:e3:47:0b:39:78:e6:55:2c:c3:54:76:
        07:fc:7e:18:09:c3:ca:e7:aa:0b:90:ab:9e:c6:a5:0f:
        8a:9e:d4:2e:d0:87:19:3e:04:2b:89:a9:71:c3:46:7c:
        7a:b1:46:00:bb:87:66:26:79:5d:2d:81:65:bf:73:0e:
        a1:9f:38:39:ae:3c:5b:b1:80:39:38:b4:f5:20:2a:ba:
        98:39:65:4e:3b:46:e3:d7:8b:7b:0b:b3:6f:73:be:70:
        c2:ae:78:a2:2f:16:0a:9b:c8:68:ab:21:cf:3d:e9:18:
        90:a5:dd:50:62:d4:f7:08:62:74:88:97:ae:e4:11:74:
        71:7e:80:4b:35:c8:a0:e6:ff:99:1f:e3:a9:b4:07:d4
    Fingerprint (SHA-256):
        8A:6C:83:B0:C5:68:C0:8A:37:BB:72:47:BB:02:FF:1A:47:0C:D3:30:CA:7A:4C:F5:DA:3C:08:DB:E2:C2:15:D8
    Fingerprint (SHA1):
        5A:B7:8B:16:5D:6A:9D:44:34:C4:64:DB:78:36:2B:69:41:E4:79:E9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12154: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #12155: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123387 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12156: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #12157: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #12158: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123388 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12159: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #12160: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #12161: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12162: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 510123389 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12163: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12164: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 510123390 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12165: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12166: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #12167: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12168: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12169: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510123391   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-Bridge-510123158.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12170: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12171: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12172: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12173: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123392   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12174: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12175: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12176: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12177: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510123393   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-BridgeNavy-510123159.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12178: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12179: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12180: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12181: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510123394   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12182: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12183: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #12184: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123387 (0x1e67dd7b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:40:13 2017
            Not After : Tue May 10 12:40:13 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:a0:46:60:92:e6:bf:2b:ae:95:72:98:a0:e3:55:d1:
                    9f:43:d3:dd:f0:40:37:a2:61:5d:45:b2:15:69:97:6d:
                    dd:01:1c:54:af:24:b7:1d:66:30:7f:49:04:f7:c1:9b:
                    9b:8d:84:e3:93:ab:6c:1b:c1:35:2f:20:7b:b0:37:72:
                    c1:f6:bc:60:38:fa:5f:73:8c:48:c7:d9:79:4d:09:4e:
                    3f:3d:2a:63:a9:a8:31:db:11:04:00:4e:2d:4b:35:4e:
                    b2:67:78:8d:03:c3:14:5b:e9:79:49:f8:70:b6:e2:bf:
                    e0:e6:5f:95:a1:e8:b6:94:62:d6:4d:7b:24:21:41:4a:
                    e2:b4:5f:a3:f7:7f:29:dc:c4:15:b1:ab:90:a1:5b:31:
                    5d:75:72:c1:b6:d4:b7:ab:9b:ca:a1:98:bc:26:cf:80:
                    96:84:ef:ee:dc:c1:ba:11:10:c0:32:66:92:27:14:2e:
                    ec:c2:09:28:1d:47:45:35:e1:05:82:d6:16:5a:06:e5:
                    b9:df:e8:77:7c:80:6e:c0:45:83:31:ef:52:4d:12:97:
                    34:a3:cc:5e:1f:f0:e1:91:63:2e:50:fe:a0:ec:d9:9b:
                    40:55:1c:74:45:29:d2:66:70:07:27:42:b3:f2:40:b2:
                    0a:28:3e:0a:96:3c:6f:66:03:ff:52:35:48:0a:cf:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:12:a6:52:ea:d3:54:19:8a:0b:fb:fe:76:59:55:34:
        50:ab:81:24:18:d5:65:1e:1b:3b:d5:64:07:09:30:57:
        d8:18:0b:49:69:c2:1e:87:9a:a6:fd:a4:51:67:7f:bf:
        84:fb:8d:7f:4e:35:33:64:a9:52:7b:39:99:ec:88:50:
        c6:0e:fa:fe:3b:b6:8f:4c:0f:5f:74:0f:93:c3:2f:00:
        c8:94:2d:5e:d5:33:49:2f:43:c1:e9:c0:0a:23:94:7f:
        9f:c8:89:e3:43:9a:d3:8b:6d:c7:56:5c:00:6e:1b:8b:
        b6:ea:2b:bc:d2:84:2d:65:ae:2f:9d:a4:34:d0:df:23:
        6f:b5:89:b6:56:8f:a7:f5:1a:3d:f0:94:bf:34:01:93:
        d7:f5:25:0d:f7:e6:d4:7e:e0:90:87:d2:10:c0:da:a8:
        55:1a:01:8b:50:8e:30:54:d1:25:3f:a3:cd:3c:a2:99:
        5d:df:c1:e8:9d:81:ea:0e:7f:24:37:40:41:4c:83:0b:
        77:82:c3:de:43:7e:e6:36:2a:07:69:28:ec:10:07:f6:
        ba:47:cd:85:94:4c:47:87:65:7c:2e:21:ec:11:6a:49:
        76:d4:b8:2c:ec:d8:bd:81:a0:bb:65:a8:66:e7:0d:9e:
        84:97:6e:9e:e9:48:00:ae:b4:ae:d2:61:3b:15:0b:4b
    Fingerprint (SHA-256):
        97:01:A6:F9:F2:F0:A3:9F:E0:86:C7:7C:5B:C4:DD:DA:F6:C8:B3:AB:AF:A3:0A:8D:48:61:D5:F2:0D:84:95:80
    Fingerprint (SHA1):
        CC:F9:AB:82:A9:9B:68:E1:15:EF:06:06:BC:4C:A3:A8:49:A6:7B:23
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12185: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123388 (0x1e67dd7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:14 2017
            Not After : Tue May 10 12:40:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:fc:c6:43:f4:9f:1a:eb:33:57:d4:54:d4:dc:1d:dc:
                    f3:46:d9:a1:75:8d:14:2b:2a:fa:d0:b0:41:14:45:f0:
                    45:bd:86:95:de:48:b4:68:a1:66:83:1c:44:00:0c:0d:
                    3e:ce:3d:70:50:a1:be:fc:2c:c1:e7:ff:89:71:3a:36:
                    e3:e4:97:91:c6:dd:ff:b3:58:60:16:0e:7b:f4:12:a2:
                    bf:be:18:40:90:1c:a6:d1:7d:11:6b:87:23:18:c4:f7:
                    c8:de:7e:cb:21:29:bf:e9:28:57:10:c6:02:fc:d1:4e:
                    ca:70:7b:6c:26:93:e6:34:81:6b:b8:0d:6f:ce:bf:92:
                    c8:50:22:c1:a9:0b:19:15:1e:c4:6c:bb:36:bd:db:a1:
                    bd:27:2e:c1:19:b8:30:05:3d:a3:95:0c:03:0d:2f:b3:
                    28:3e:44:b6:0e:91:a2:a2:75:b9:92:b4:0c:ef:5a:c7:
                    40:5f:57:a1:5f:ed:3e:26:77:93:b7:38:f5:a6:96:54:
                    e1:54:1b:0a:0c:a7:b5:cd:9a:0c:4a:b4:23:85:8d:3c:
                    a9:f1:0f:e8:16:61:44:8b:86:95:41:a3:28:06:17:82:
                    40:b4:27:d9:70:11:50:35:b3:86:2c:de:3d:8f:17:eb:
                    6e:ca:eb:7e:7e:ad:33:99:81:23:91:ea:48:fa:cd:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:c0:da:d2:e2:fe:fb:60:9d:ad:e2:6d:d3:3c:ff:c2:
        2f:f3:91:a1:b7:d4:91:cf:be:f3:95:28:d2:48:90:33:
        74:c6:2d:2a:a9:38:b6:e0:ee:8d:eb:22:25:db:c8:d8:
        1e:2b:ce:82:14:a9:60:f0:e0:5d:49:9c:22:d2:ae:de:
        cd:ac:f6:7b:a5:cb:ac:aa:6c:e6:16:e2:1f:a0:bf:f0:
        ff:d7:ad:4b:86:17:af:3d:0e:2c:5f:fa:ed:8e:a6:5c:
        a7:d3:ee:18:68:13:a0:a4:15:19:81:7f:8d:fc:e5:e3:
        0c:00:6b:53:22:70:1e:9b:0c:32:46:59:e3:2f:90:a3:
        02:ce:c0:b1:59:b8:db:e2:5a:43:2b:c4:0b:6f:92:13:
        57:b0:2f:1f:7c:eb:bf:e8:42:61:e2:f1:ed:58:46:7b:
        0f:21:ad:52:c2:44:41:c6:25:e4:36:b4:eb:79:17:04:
        e6:53:62:77:b0:c8:e3:4c:62:6d:0d:5f:83:9a:2b:8e:
        4d:2e:12:df:47:f0:a1:b4:1b:fe:22:9d:df:65:57:59:
        27:5c:5b:d8:0f:c5:f3:41:7f:8a:fe:13:de:d5:da:79:
        a3:30:22:02:f9:8b:ba:ec:4d:f7:30:be:b9:69:c1:2d:
        c3:74:5c:60:a6:b0:e8:8c:0b:fc:19:97:58:d2:f5:8f
    Fingerprint (SHA-256):
        22:AD:A6:FE:17:82:76:40:B3:A4:7F:63:FC:1C:E9:47:F0:AC:91:7C:36:CC:73:E6:01:1F:72:7B:72:E1:54:0E
    Fingerprint (SHA1):
        DA:6D:05:FA:9A:78:CD:45:AC:27:EC:C9:17:69:38:F5:A7:90:0B:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12186: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123388 (0x1e67dd7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:14 2017
            Not After : Tue May 10 12:40:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:fc:c6:43:f4:9f:1a:eb:33:57:d4:54:d4:dc:1d:dc:
                    f3:46:d9:a1:75:8d:14:2b:2a:fa:d0:b0:41:14:45:f0:
                    45:bd:86:95:de:48:b4:68:a1:66:83:1c:44:00:0c:0d:
                    3e:ce:3d:70:50:a1:be:fc:2c:c1:e7:ff:89:71:3a:36:
                    e3:e4:97:91:c6:dd:ff:b3:58:60:16:0e:7b:f4:12:a2:
                    bf:be:18:40:90:1c:a6:d1:7d:11:6b:87:23:18:c4:f7:
                    c8:de:7e:cb:21:29:bf:e9:28:57:10:c6:02:fc:d1:4e:
                    ca:70:7b:6c:26:93:e6:34:81:6b:b8:0d:6f:ce:bf:92:
                    c8:50:22:c1:a9:0b:19:15:1e:c4:6c:bb:36:bd:db:a1:
                    bd:27:2e:c1:19:b8:30:05:3d:a3:95:0c:03:0d:2f:b3:
                    28:3e:44:b6:0e:91:a2:a2:75:b9:92:b4:0c:ef:5a:c7:
                    40:5f:57:a1:5f:ed:3e:26:77:93:b7:38:f5:a6:96:54:
                    e1:54:1b:0a:0c:a7:b5:cd:9a:0c:4a:b4:23:85:8d:3c:
                    a9:f1:0f:e8:16:61:44:8b:86:95:41:a3:28:06:17:82:
                    40:b4:27:d9:70:11:50:35:b3:86:2c:de:3d:8f:17:eb:
                    6e:ca:eb:7e:7e:ad:33:99:81:23:91:ea:48:fa:cd:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:c0:da:d2:e2:fe:fb:60:9d:ad:e2:6d:d3:3c:ff:c2:
        2f:f3:91:a1:b7:d4:91:cf:be:f3:95:28:d2:48:90:33:
        74:c6:2d:2a:a9:38:b6:e0:ee:8d:eb:22:25:db:c8:d8:
        1e:2b:ce:82:14:a9:60:f0:e0:5d:49:9c:22:d2:ae:de:
        cd:ac:f6:7b:a5:cb:ac:aa:6c:e6:16:e2:1f:a0:bf:f0:
        ff:d7:ad:4b:86:17:af:3d:0e:2c:5f:fa:ed:8e:a6:5c:
        a7:d3:ee:18:68:13:a0:a4:15:19:81:7f:8d:fc:e5:e3:
        0c:00:6b:53:22:70:1e:9b:0c:32:46:59:e3:2f:90:a3:
        02:ce:c0:b1:59:b8:db:e2:5a:43:2b:c4:0b:6f:92:13:
        57:b0:2f:1f:7c:eb:bf:e8:42:61:e2:f1:ed:58:46:7b:
        0f:21:ad:52:c2:44:41:c6:25:e4:36:b4:eb:79:17:04:
        e6:53:62:77:b0:c8:e3:4c:62:6d:0d:5f:83:9a:2b:8e:
        4d:2e:12:df:47:f0:a1:b4:1b:fe:22:9d:df:65:57:59:
        27:5c:5b:d8:0f:c5:f3:41:7f:8a:fe:13:de:d5:da:79:
        a3:30:22:02:f9:8b:ba:ec:4d:f7:30:be:b9:69:c1:2d:
        c3:74:5c:60:a6:b0:e8:8c:0b:fc:19:97:58:d2:f5:8f
    Fingerprint (SHA-256):
        22:AD:A6:FE:17:82:76:40:B3:A4:7F:63:FC:1C:E9:47:F0:AC:91:7C:36:CC:73:E6:01:1F:72:7B:72:E1:54:0E
    Fingerprint (SHA1):
        DA:6D:05:FA:9A:78:CD:45:AC:27:EC:C9:17:69:38:F5:A7:90:0B:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12187: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #12188: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123387 (0x1e67dd7b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:40:13 2017
            Not After : Tue May 10 12:40:13 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:a0:46:60:92:e6:bf:2b:ae:95:72:98:a0:e3:55:d1:
                    9f:43:d3:dd:f0:40:37:a2:61:5d:45:b2:15:69:97:6d:
                    dd:01:1c:54:af:24:b7:1d:66:30:7f:49:04:f7:c1:9b:
                    9b:8d:84:e3:93:ab:6c:1b:c1:35:2f:20:7b:b0:37:72:
                    c1:f6:bc:60:38:fa:5f:73:8c:48:c7:d9:79:4d:09:4e:
                    3f:3d:2a:63:a9:a8:31:db:11:04:00:4e:2d:4b:35:4e:
                    b2:67:78:8d:03:c3:14:5b:e9:79:49:f8:70:b6:e2:bf:
                    e0:e6:5f:95:a1:e8:b6:94:62:d6:4d:7b:24:21:41:4a:
                    e2:b4:5f:a3:f7:7f:29:dc:c4:15:b1:ab:90:a1:5b:31:
                    5d:75:72:c1:b6:d4:b7:ab:9b:ca:a1:98:bc:26:cf:80:
                    96:84:ef:ee:dc:c1:ba:11:10:c0:32:66:92:27:14:2e:
                    ec:c2:09:28:1d:47:45:35:e1:05:82:d6:16:5a:06:e5:
                    b9:df:e8:77:7c:80:6e:c0:45:83:31:ef:52:4d:12:97:
                    34:a3:cc:5e:1f:f0:e1:91:63:2e:50:fe:a0:ec:d9:9b:
                    40:55:1c:74:45:29:d2:66:70:07:27:42:b3:f2:40:b2:
                    0a:28:3e:0a:96:3c:6f:66:03:ff:52:35:48:0a:cf:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:12:a6:52:ea:d3:54:19:8a:0b:fb:fe:76:59:55:34:
        50:ab:81:24:18:d5:65:1e:1b:3b:d5:64:07:09:30:57:
        d8:18:0b:49:69:c2:1e:87:9a:a6:fd:a4:51:67:7f:bf:
        84:fb:8d:7f:4e:35:33:64:a9:52:7b:39:99:ec:88:50:
        c6:0e:fa:fe:3b:b6:8f:4c:0f:5f:74:0f:93:c3:2f:00:
        c8:94:2d:5e:d5:33:49:2f:43:c1:e9:c0:0a:23:94:7f:
        9f:c8:89:e3:43:9a:d3:8b:6d:c7:56:5c:00:6e:1b:8b:
        b6:ea:2b:bc:d2:84:2d:65:ae:2f:9d:a4:34:d0:df:23:
        6f:b5:89:b6:56:8f:a7:f5:1a:3d:f0:94:bf:34:01:93:
        d7:f5:25:0d:f7:e6:d4:7e:e0:90:87:d2:10:c0:da:a8:
        55:1a:01:8b:50:8e:30:54:d1:25:3f:a3:cd:3c:a2:99:
        5d:df:c1:e8:9d:81:ea:0e:7f:24:37:40:41:4c:83:0b:
        77:82:c3:de:43:7e:e6:36:2a:07:69:28:ec:10:07:f6:
        ba:47:cd:85:94:4c:47:87:65:7c:2e:21:ec:11:6a:49:
        76:d4:b8:2c:ec:d8:bd:81:a0:bb:65:a8:66:e7:0d:9e:
        84:97:6e:9e:e9:48:00:ae:b4:ae:d2:61:3b:15:0b:4b
    Fingerprint (SHA-256):
        97:01:A6:F9:F2:F0:A3:9F:E0:86:C7:7C:5B:C4:DD:DA:F6:C8:B3:AB:AF:A3:0A:8D:48:61:D5:F2:0D:84:95:80
    Fingerprint (SHA1):
        CC:F9:AB:82:A9:9B:68:E1:15:EF:06:06:BC:4C:A3:A8:49:A6:7B:23
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12189: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123388 (0x1e67dd7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:14 2017
            Not After : Tue May 10 12:40:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:fc:c6:43:f4:9f:1a:eb:33:57:d4:54:d4:dc:1d:dc:
                    f3:46:d9:a1:75:8d:14:2b:2a:fa:d0:b0:41:14:45:f0:
                    45:bd:86:95:de:48:b4:68:a1:66:83:1c:44:00:0c:0d:
                    3e:ce:3d:70:50:a1:be:fc:2c:c1:e7:ff:89:71:3a:36:
                    e3:e4:97:91:c6:dd:ff:b3:58:60:16:0e:7b:f4:12:a2:
                    bf:be:18:40:90:1c:a6:d1:7d:11:6b:87:23:18:c4:f7:
                    c8:de:7e:cb:21:29:bf:e9:28:57:10:c6:02:fc:d1:4e:
                    ca:70:7b:6c:26:93:e6:34:81:6b:b8:0d:6f:ce:bf:92:
                    c8:50:22:c1:a9:0b:19:15:1e:c4:6c:bb:36:bd:db:a1:
                    bd:27:2e:c1:19:b8:30:05:3d:a3:95:0c:03:0d:2f:b3:
                    28:3e:44:b6:0e:91:a2:a2:75:b9:92:b4:0c:ef:5a:c7:
                    40:5f:57:a1:5f:ed:3e:26:77:93:b7:38:f5:a6:96:54:
                    e1:54:1b:0a:0c:a7:b5:cd:9a:0c:4a:b4:23:85:8d:3c:
                    a9:f1:0f:e8:16:61:44:8b:86:95:41:a3:28:06:17:82:
                    40:b4:27:d9:70:11:50:35:b3:86:2c:de:3d:8f:17:eb:
                    6e:ca:eb:7e:7e:ad:33:99:81:23:91:ea:48:fa:cd:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:c0:da:d2:e2:fe:fb:60:9d:ad:e2:6d:d3:3c:ff:c2:
        2f:f3:91:a1:b7:d4:91:cf:be:f3:95:28:d2:48:90:33:
        74:c6:2d:2a:a9:38:b6:e0:ee:8d:eb:22:25:db:c8:d8:
        1e:2b:ce:82:14:a9:60:f0:e0:5d:49:9c:22:d2:ae:de:
        cd:ac:f6:7b:a5:cb:ac:aa:6c:e6:16:e2:1f:a0:bf:f0:
        ff:d7:ad:4b:86:17:af:3d:0e:2c:5f:fa:ed:8e:a6:5c:
        a7:d3:ee:18:68:13:a0:a4:15:19:81:7f:8d:fc:e5:e3:
        0c:00:6b:53:22:70:1e:9b:0c:32:46:59:e3:2f:90:a3:
        02:ce:c0:b1:59:b8:db:e2:5a:43:2b:c4:0b:6f:92:13:
        57:b0:2f:1f:7c:eb:bf:e8:42:61:e2:f1:ed:58:46:7b:
        0f:21:ad:52:c2:44:41:c6:25:e4:36:b4:eb:79:17:04:
        e6:53:62:77:b0:c8:e3:4c:62:6d:0d:5f:83:9a:2b:8e:
        4d:2e:12:df:47:f0:a1:b4:1b:fe:22:9d:df:65:57:59:
        27:5c:5b:d8:0f:c5:f3:41:7f:8a:fe:13:de:d5:da:79:
        a3:30:22:02:f9:8b:ba:ec:4d:f7:30:be:b9:69:c1:2d:
        c3:74:5c:60:a6:b0:e8:8c:0b:fc:19:97:58:d2:f5:8f
    Fingerprint (SHA-256):
        22:AD:A6:FE:17:82:76:40:B3:A4:7F:63:FC:1C:E9:47:F0:AC:91:7C:36:CC:73:E6:01:1F:72:7B:72:E1:54:0E
    Fingerprint (SHA1):
        DA:6D:05:FA:9A:78:CD:45:AC:27:EC:C9:17:69:38:F5:A7:90:0B:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12190: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123388 (0x1e67dd7c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:14 2017
            Not After : Tue May 10 12:40:14 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:fc:c6:43:f4:9f:1a:eb:33:57:d4:54:d4:dc:1d:dc:
                    f3:46:d9:a1:75:8d:14:2b:2a:fa:d0:b0:41:14:45:f0:
                    45:bd:86:95:de:48:b4:68:a1:66:83:1c:44:00:0c:0d:
                    3e:ce:3d:70:50:a1:be:fc:2c:c1:e7:ff:89:71:3a:36:
                    e3:e4:97:91:c6:dd:ff:b3:58:60:16:0e:7b:f4:12:a2:
                    bf:be:18:40:90:1c:a6:d1:7d:11:6b:87:23:18:c4:f7:
                    c8:de:7e:cb:21:29:bf:e9:28:57:10:c6:02:fc:d1:4e:
                    ca:70:7b:6c:26:93:e6:34:81:6b:b8:0d:6f:ce:bf:92:
                    c8:50:22:c1:a9:0b:19:15:1e:c4:6c:bb:36:bd:db:a1:
                    bd:27:2e:c1:19:b8:30:05:3d:a3:95:0c:03:0d:2f:b3:
                    28:3e:44:b6:0e:91:a2:a2:75:b9:92:b4:0c:ef:5a:c7:
                    40:5f:57:a1:5f:ed:3e:26:77:93:b7:38:f5:a6:96:54:
                    e1:54:1b:0a:0c:a7:b5:cd:9a:0c:4a:b4:23:85:8d:3c:
                    a9:f1:0f:e8:16:61:44:8b:86:95:41:a3:28:06:17:82:
                    40:b4:27:d9:70:11:50:35:b3:86:2c:de:3d:8f:17:eb:
                    6e:ca:eb:7e:7e:ad:33:99:81:23:91:ea:48:fa:cd:af
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:c0:da:d2:e2:fe:fb:60:9d:ad:e2:6d:d3:3c:ff:c2:
        2f:f3:91:a1:b7:d4:91:cf:be:f3:95:28:d2:48:90:33:
        74:c6:2d:2a:a9:38:b6:e0:ee:8d:eb:22:25:db:c8:d8:
        1e:2b:ce:82:14:a9:60:f0:e0:5d:49:9c:22:d2:ae:de:
        cd:ac:f6:7b:a5:cb:ac:aa:6c:e6:16:e2:1f:a0:bf:f0:
        ff:d7:ad:4b:86:17:af:3d:0e:2c:5f:fa:ed:8e:a6:5c:
        a7:d3:ee:18:68:13:a0:a4:15:19:81:7f:8d:fc:e5:e3:
        0c:00:6b:53:22:70:1e:9b:0c:32:46:59:e3:2f:90:a3:
        02:ce:c0:b1:59:b8:db:e2:5a:43:2b:c4:0b:6f:92:13:
        57:b0:2f:1f:7c:eb:bf:e8:42:61:e2:f1:ed:58:46:7b:
        0f:21:ad:52:c2:44:41:c6:25:e4:36:b4:eb:79:17:04:
        e6:53:62:77:b0:c8:e3:4c:62:6d:0d:5f:83:9a:2b:8e:
        4d:2e:12:df:47:f0:a1:b4:1b:fe:22:9d:df:65:57:59:
        27:5c:5b:d8:0f:c5:f3:41:7f:8a:fe:13:de:d5:da:79:
        a3:30:22:02:f9:8b:ba:ec:4d:f7:30:be:b9:69:c1:2d:
        c3:74:5c:60:a6:b0:e8:8c:0b:fc:19:97:58:d2:f5:8f
    Fingerprint (SHA-256):
        22:AD:A6:FE:17:82:76:40:B3:A4:7F:63:FC:1C:E9:47:F0:AC:91:7C:36:CC:73:E6:01:1F:72:7B:72:E1:54:0E
    Fingerprint (SHA1):
        DA:6D:05:FA:9A:78:CD:45:AC:27:EC:C9:17:69:38:F5:A7:90:0B:53
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #12191: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #12192: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123395 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12193: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #12194: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #12195: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123396 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12196: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #12197: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #12198: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12199: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 510123397   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12200: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12201: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #12202: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12203: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 510123398   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12204: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12205: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #12206: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12207: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 510123399 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12208: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12209: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 510123400 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #12210: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12211: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #12212: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12213: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12214: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 510123401   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12215: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12216: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12217: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12218: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 510123402   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12219: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12220: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12221: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12222: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123403   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12223: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12224: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12225: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12226: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510123404   --extCP < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12227: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12228: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12229: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123395 (0x1e67dd83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Wed May 10 12:40:25 2017
            Not After : Tue May 10 12:40:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:0e:8e:c6:59:67:e0:fd:22:c9:a8:a9:61:0a:d7:f1:
                    a4:51:06:1b:56:f4:a2:08:a4:a3:7d:fd:a9:b0:66:a5:
                    61:95:d8:22:20:bb:ff:2e:ee:e7:d0:55:94:1b:0a:d6:
                    70:e7:73:63:f4:92:d1:e3:7e:43:e8:03:89:47:12:1a:
                    d4:69:be:68:f2:42:1a:ad:89:e8:05:4b:0c:08:f0:da:
                    ad:83:6e:b3:41:b3:76:9a:ac:4f:01:cf:86:7d:17:a9:
                    b5:f7:b2:87:93:9b:01:ef:6f:01:11:1f:24:b7:93:93:
                    d2:1d:66:9b:ea:cf:2e:a7:d6:84:8c:0f:d9:f6:cc:fe:
                    0e:fe:f7:a0:ff:6b:8f:77:f6:b0:3b:4d:40:21:15:f6:
                    76:cd:c1:73:66:3e:f9:0c:fc:55:fd:e5:f3:ea:61:ab:
                    73:57:cc:09:dd:28:b6:9a:60:4b:2a:19:32:d2:05:fa:
                    3b:1b:ef:1b:3d:f0:d2:e7:7e:e1:b9:00:b7:a8:b8:4f:
                    24:0b:61:6c:f2:a6:ea:54:c6:0d:d9:d4:e7:49:d8:37:
                    1f:ba:07:68:0b:0b:a3:bc:29:1c:34:4b:e4:c8:ff:f7:
                    31:47:c4:6c:34:1b:3e:6f:3c:ac:be:ee:f7:94:10:ed:
                    2e:07:50:40:23:29:0e:38:35:55:29:c4:fa:17:fe:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:af:4b:06:15:99:b0:de:23:e7:9f:4f:a7:1b:bc:cc:
        5b:4e:07:ab:b0:c0:2a:01:27:ed:81:99:f0:31:25:15:
        48:bf:3c:87:eb:32:76:bd:4b:ad:0d:01:9c:20:5e:db:
        ae:1f:63:ef:e8:26:8b:57:4f:60:ff:a1:b1:ee:6d:91:
        c9:92:38:1c:85:92:c3:3b:fa:98:b7:28:94:18:d1:ab:
        06:7c:f0:7b:23:af:0a:27:5d:8f:a1:3f:65:d6:1d:f8:
        4f:dd:c7:70:64:75:84:f1:5f:23:6f:aa:48:34:c3:6c:
        e1:30:b4:5f:a5:4f:e9:a9:33:05:3b:ed:f9:17:15:e0:
        c3:ed:69:11:04:6f:c7:63:47:79:75:e6:12:6e:c8:42:
        35:35:60:b6:09:d2:b3:7c:39:90:7f:0c:25:e8:da:8d:
        55:36:95:bb:97:2d:f0:2a:08:6f:5e:a3:75:bf:24:eb:
        c7:a9:65:d9:ec:6a:99:98:32:a3:b0:f1:31:c2:a2:c2:
        ed:d1:ad:85:dc:0f:f6:66:e9:57:38:54:cf:cc:f8:2e:
        4b:cb:8e:0e:b5:30:f5:35:77:dd:f8:32:b4:25:19:da:
        ad:cd:78:e9:67:b5:96:1f:b0:74:a8:6b:ed:74:e8:b2:
        cb:e8:98:c3:ee:33:66:32:fa:26:34:2b:1a:9e:6d:7e
    Fingerprint (SHA-256):
        A8:89:2E:AD:99:95:7B:2D:CA:6A:FE:37:08:A0:C0:CB:24:54:90:69:B1:2C:4F:87:D7:08:72:42:91:6F:B6:9B
    Fingerprint (SHA1):
        D9:26:26:45:F0:81:F2:98:55:74:08:FA:9A:25:15:64:12:BF:29:3B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #12230: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12231: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12232: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12233: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12234: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12235: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12236: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12237: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12238: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123396 (0x1e67dd84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Wed May 10 12:40:26 2017
            Not After : Tue May 10 12:40:26 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:90:c2:b4:4f:04:41:a0:d0:88:be:35:57:d2:c5:db:
                    ef:84:c7:4c:ee:96:51:10:72:33:e8:6b:8d:79:87:77:
                    d0:71:92:79:00:21:a7:99:78:49:50:7c:9e:0e:39:4b:
                    2d:8a:ce:14:22:9e:cd:64:7d:ca:3d:38:7e:9f:74:ec:
                    23:dd:dd:c6:b6:f6:e8:97:f5:0b:b2:b7:e4:0d:c3:99:
                    09:c0:fa:c5:2b:0e:fe:f8:a1:4e:39:07:ad:fa:f1:2a:
                    27:d0:da:84:87:57:c4:f7:23:bf:a6:0e:7e:e5:fc:43:
                    05:d3:82:94:ce:c2:1f:02:68:4d:0e:e9:a4:09:93:31:
                    4d:e3:b9:c4:37:90:bd:fd:99:0a:62:80:64:3f:64:33:
                    6c:55:de:7d:92:22:cc:4e:74:97:7a:0c:06:50:7c:97:
                    f8:15:6d:3d:e8:ea:ce:f7:d4:82:2c:d0:01:29:13:83:
                    83:1c:c8:cd:53:b6:66:bd:d1:ee:d8:fc:be:60:26:c2:
                    cd:1b:33:26:ef:e5:ae:90:c4:5d:5d:90:f3:0a:b3:a1:
                    78:7e:c6:3f:a4:9f:9e:c7:f2:43:57:a4:4f:53:9c:e4:
                    58:2c:23:58:03:e3:1f:73:f0:61:2d:a0:81:78:c5:f9:
                    fd:28:81:21:37:02:ce:15:99:c1:2a:52:79:b2:2a:cf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:ec:ef:1b:38:32:80:b4:46:4a:95:f7:d4:20:54:47:
        10:ab:8f:9d:00:46:71:5e:6c:18:e9:c0:f2:1c:ce:95:
        1f:e4:19:49:96:cd:db:b0:77:00:32:1f:d6:3d:10:d5:
        e3:a4:d5:a5:e1:16:ee:1e:c1:8d:f5:b7:f0:39:21:23:
        dd:71:53:59:e3:dc:5c:31:94:4b:ad:f3:8d:73:78:93:
        e3:bf:64:e0:2d:fd:ad:ef:50:27:56:7a:57:30:27:94:
        5d:ff:40:fe:3f:99:b9:28:95:29:f4:83:aa:74:f0:19:
        ae:48:58:6a:a4:bc:45:46:87:bb:12:1c:6f:f2:cc:94:
        47:79:b2:d7:b1:0e:93:d1:31:af:08:f1:7f:0f:99:32:
        08:1a:b3:91:f7:cc:73:e8:01:de:40:12:d7:8d:79:32:
        87:4b:4f:f3:e1:68:23:b7:3b:ca:1c:46:13:0f:6a:6c:
        22:32:64:16:b2:25:0d:2b:21:5c:ff:de:cb:7c:b8:ef:
        98:44:6e:cb:a9:3a:39:5b:d2:7d:4d:70:da:1a:cc:35:
        5e:52:30:99:62:1b:e3:7b:fb:d3:e4:49:0a:74:df:59:
        ab:ac:92:f8:7c:e9:a6:1a:8d:59:d9:21:10:81:ba:df:
        87:e1:5c:80:49:55:0d:58:94:18:30:dc:df:f7:b3:8d
    Fingerprint (SHA-256):
        DC:9E:55:2C:ED:2F:96:CB:F4:9C:1B:A7:8B:0B:CB:FA:8B:D6:D0:28:DD:53:60:D5:72:AC:3D:26:51:FF:E0:09
    Fingerprint (SHA1):
        FC:53:F6:F2:40:76:59:8A:71:A8:45:3C:84:4F:12:EB:27:94:95:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #12239: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12240: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12241: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12242: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12243: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #12244: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12245: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #12246: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #12247: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #12248: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #12249: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #12250: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #12251: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #12252: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12253: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12254: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #12255: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #12256: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12257: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123405 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12258: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12259: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12260: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12261: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 510123406   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12262: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12263: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12264: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12265: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 510123407   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12266: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12267: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12268: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12269: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 510123408   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12270: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12271: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12272: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12273: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 510123409   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12274: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12275: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #12276: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12277: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 510123410   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12278: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12279: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #12280: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12281: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 510123411   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12282: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12283: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #12284: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12285: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 510123412   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12286: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12287: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #12288: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12289: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 510123413   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12290: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12291: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12292: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123405 (0x1e67dd8d)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:40:42 2017
            Not After : Tue May 10 12:40:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:39:a7:93:dc:2d:32:36:bc:9f:0e:8e:d8:23:1d:5a:
                    60:a9:41:62:db:59:8f:3d:50:33:79:ae:78:42:45:ae:
                    91:2a:28:01:0a:bd:e7:4f:8c:69:ce:e4:e4:89:5d:b2:
                    89:56:56:52:79:ce:17:95:82:f4:80:6c:56:d4:24:3f:
                    34:6e:78:d9:ec:27:65:ed:52:3f:f3:28:6b:82:ec:12:
                    47:6c:17:5a:31:0d:fc:15:e4:c4:83:4a:10:7d:0b:a8:
                    5d:ce:ef:ca:b6:0a:81:6e:91:84:8d:57:a8:f9:a6:79:
                    ac:e4:6a:aa:57:4e:36:4e:e1:4f:00:5d:ae:80:fc:ed:
                    8a:7e:cf:9b:b5:6a:60:bb:18:a0:60:a0:0e:e4:d2:ba:
                    52:2b:22:4c:57:4b:df:e9:ba:10:73:ba:80:f9:a3:96:
                    0f:28:5a:38:2c:81:87:21:39:79:07:41:6e:24:13:3c:
                    c6:c7:dd:60:0e:55:16:61:ca:6b:5c:54:a5:9d:14:fd:
                    74:ff:b7:dc:a9:b4:82:3e:d6:39:a5:5a:87:a9:9b:49:
                    37:30:17:9f:49:44:03:5b:40:43:07:46:ee:9d:37:99:
                    3f:d2:4f:88:92:fd:9c:18:9f:89:2a:1e:1d:74:61:aa:
                    80:4e:d2:be:7a:f9:06:f6:6d:fc:bb:0a:78:7e:97:9b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:6e:89:67:83:59:4a:f7:f6:cf:e2:f4:c5:
        b9:3a:43:35:3e:41:eb:cd:0b:3b:07:f6:d0:14:48:e8:
        02:1d:00:ba:43:54:2e:13:29:37:c1:23:02:c4:1f:15:
        8a:b0:c5:5a:be:fb:08:85:ca:0e:db:08:b3:6e:79
    Fingerprint (SHA-256):
        EB:F9:65:27:B5:45:AF:BA:0F:EE:A0:2D:F1:1F:36:97:98:8B:D7:2E:2D:D9:3E:8B:48:67:65:94:EB:F5:1B:0B
    Fingerprint (SHA1):
        FB:68:50:AF:8A:C3:83:8B:E0:BC:82:E0:B2:BF:71:A8:92:E3:CA:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12293: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123405 (0x1e67dd8d)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:40:42 2017
            Not After : Tue May 10 12:40:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:39:a7:93:dc:2d:32:36:bc:9f:0e:8e:d8:23:1d:5a:
                    60:a9:41:62:db:59:8f:3d:50:33:79:ae:78:42:45:ae:
                    91:2a:28:01:0a:bd:e7:4f:8c:69:ce:e4:e4:89:5d:b2:
                    89:56:56:52:79:ce:17:95:82:f4:80:6c:56:d4:24:3f:
                    34:6e:78:d9:ec:27:65:ed:52:3f:f3:28:6b:82:ec:12:
                    47:6c:17:5a:31:0d:fc:15:e4:c4:83:4a:10:7d:0b:a8:
                    5d:ce:ef:ca:b6:0a:81:6e:91:84:8d:57:a8:f9:a6:79:
                    ac:e4:6a:aa:57:4e:36:4e:e1:4f:00:5d:ae:80:fc:ed:
                    8a:7e:cf:9b:b5:6a:60:bb:18:a0:60:a0:0e:e4:d2:ba:
                    52:2b:22:4c:57:4b:df:e9:ba:10:73:ba:80:f9:a3:96:
                    0f:28:5a:38:2c:81:87:21:39:79:07:41:6e:24:13:3c:
                    c6:c7:dd:60:0e:55:16:61:ca:6b:5c:54:a5:9d:14:fd:
                    74:ff:b7:dc:a9:b4:82:3e:d6:39:a5:5a:87:a9:9b:49:
                    37:30:17:9f:49:44:03:5b:40:43:07:46:ee:9d:37:99:
                    3f:d2:4f:88:92:fd:9c:18:9f:89:2a:1e:1d:74:61:aa:
                    80:4e:d2:be:7a:f9:06:f6:6d:fc:bb:0a:78:7e:97:9b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:6e:89:67:83:59:4a:f7:f6:cf:e2:f4:c5:
        b9:3a:43:35:3e:41:eb:cd:0b:3b:07:f6:d0:14:48:e8:
        02:1d:00:ba:43:54:2e:13:29:37:c1:23:02:c4:1f:15:
        8a:b0:c5:5a:be:fb:08:85:ca:0e:db:08:b3:6e:79
    Fingerprint (SHA-256):
        EB:F9:65:27:B5:45:AF:BA:0F:EE:A0:2D:F1:1F:36:97:98:8B:D7:2E:2D:D9:3E:8B:48:67:65:94:EB:F5:1B:0B
    Fingerprint (SHA1):
        FB:68:50:AF:8A:C3:83:8B:E0:BC:82:E0:B2:BF:71:A8:92:E3:CA:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12294: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123405 (0x1e67dd8d)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:40:42 2017
            Not After : Tue May 10 12:40:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:39:a7:93:dc:2d:32:36:bc:9f:0e:8e:d8:23:1d:5a:
                    60:a9:41:62:db:59:8f:3d:50:33:79:ae:78:42:45:ae:
                    91:2a:28:01:0a:bd:e7:4f:8c:69:ce:e4:e4:89:5d:b2:
                    89:56:56:52:79:ce:17:95:82:f4:80:6c:56:d4:24:3f:
                    34:6e:78:d9:ec:27:65:ed:52:3f:f3:28:6b:82:ec:12:
                    47:6c:17:5a:31:0d:fc:15:e4:c4:83:4a:10:7d:0b:a8:
                    5d:ce:ef:ca:b6:0a:81:6e:91:84:8d:57:a8:f9:a6:79:
                    ac:e4:6a:aa:57:4e:36:4e:e1:4f:00:5d:ae:80:fc:ed:
                    8a:7e:cf:9b:b5:6a:60:bb:18:a0:60:a0:0e:e4:d2:ba:
                    52:2b:22:4c:57:4b:df:e9:ba:10:73:ba:80:f9:a3:96:
                    0f:28:5a:38:2c:81:87:21:39:79:07:41:6e:24:13:3c:
                    c6:c7:dd:60:0e:55:16:61:ca:6b:5c:54:a5:9d:14:fd:
                    74:ff:b7:dc:a9:b4:82:3e:d6:39:a5:5a:87:a9:9b:49:
                    37:30:17:9f:49:44:03:5b:40:43:07:46:ee:9d:37:99:
                    3f:d2:4f:88:92:fd:9c:18:9f:89:2a:1e:1d:74:61:aa:
                    80:4e:d2:be:7a:f9:06:f6:6d:fc:bb:0a:78:7e:97:9b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:6e:89:67:83:59:4a:f7:f6:cf:e2:f4:c5:
        b9:3a:43:35:3e:41:eb:cd:0b:3b:07:f6:d0:14:48:e8:
        02:1d:00:ba:43:54:2e:13:29:37:c1:23:02:c4:1f:15:
        8a:b0:c5:5a:be:fb:08:85:ca:0e:db:08:b3:6e:79
    Fingerprint (SHA-256):
        EB:F9:65:27:B5:45:AF:BA:0F:EE:A0:2D:F1:1F:36:97:98:8B:D7:2E:2D:D9:3E:8B:48:67:65:94:EB:F5:1B:0B
    Fingerprint (SHA1):
        FB:68:50:AF:8A:C3:83:8B:E0:BC:82:E0:B2:BF:71:A8:92:E3:CA:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12295: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123405 (0x1e67dd8d)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:40:42 2017
            Not After : Tue May 10 12:40:42 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    ab:39:a7:93:dc:2d:32:36:bc:9f:0e:8e:d8:23:1d:5a:
                    60:a9:41:62:db:59:8f:3d:50:33:79:ae:78:42:45:ae:
                    91:2a:28:01:0a:bd:e7:4f:8c:69:ce:e4:e4:89:5d:b2:
                    89:56:56:52:79:ce:17:95:82:f4:80:6c:56:d4:24:3f:
                    34:6e:78:d9:ec:27:65:ed:52:3f:f3:28:6b:82:ec:12:
                    47:6c:17:5a:31:0d:fc:15:e4:c4:83:4a:10:7d:0b:a8:
                    5d:ce:ef:ca:b6:0a:81:6e:91:84:8d:57:a8:f9:a6:79:
                    ac:e4:6a:aa:57:4e:36:4e:e1:4f:00:5d:ae:80:fc:ed:
                    8a:7e:cf:9b:b5:6a:60:bb:18:a0:60:a0:0e:e4:d2:ba:
                    52:2b:22:4c:57:4b:df:e9:ba:10:73:ba:80:f9:a3:96:
                    0f:28:5a:38:2c:81:87:21:39:79:07:41:6e:24:13:3c:
                    c6:c7:dd:60:0e:55:16:61:ca:6b:5c:54:a5:9d:14:fd:
                    74:ff:b7:dc:a9:b4:82:3e:d6:39:a5:5a:87:a9:9b:49:
                    37:30:17:9f:49:44:03:5b:40:43:07:46:ee:9d:37:99:
                    3f:d2:4f:88:92:fd:9c:18:9f:89:2a:1e:1d:74:61:aa:
                    80:4e:d2:be:7a:f9:06:f6:6d:fc:bb:0a:78:7e:97:9b
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:6e:89:67:83:59:4a:f7:f6:cf:e2:f4:c5:
        b9:3a:43:35:3e:41:eb:cd:0b:3b:07:f6:d0:14:48:e8:
        02:1d:00:ba:43:54:2e:13:29:37:c1:23:02:c4:1f:15:
        8a:b0:c5:5a:be:fb:08:85:ca:0e:db:08:b3:6e:79
    Fingerprint (SHA-256):
        EB:F9:65:27:B5:45:AF:BA:0F:EE:A0:2D:F1:1F:36:97:98:8B:D7:2E:2D:D9:3E:8B:48:67:65:94:EB:F5:1B:0B
    Fingerprint (SHA1):
        FB:68:50:AF:8A:C3:83:8B:E0:BC:82:E0:B2:BF:71:A8:92:E3:CA:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #12296: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12297: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12298: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12299: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12300: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12301: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12302: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12303: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12304: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12305: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12306: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12307: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12308: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12309: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12310: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12311: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #12312: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12313: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12314: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12315: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12316: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12317: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12318: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12319: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12320: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12321: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12322: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12323: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510124105Z
nextupdate=20180510124105Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:41:05 2017
    Next Update: Thu May 10 12:41:05 2018
    CRL Extensions:
chains.sh: #12324: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510124105Z
nextupdate=20180510124105Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:41:05 2017
    Next Update: Thu May 10 12:41:05 2018
    CRL Extensions:
chains.sh: #12325: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510124106Z
nextupdate=20180510124106Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:41:06 2017
    Next Update: Thu May 10 12:41:06 2018
    CRL Extensions:
chains.sh: #12326: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510124106Z
nextupdate=20180510124106Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:41:06 2017
    Next Update: Thu May 10 12:41:06 2018
    CRL Extensions:
chains.sh: #12327: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510124107Z
addcert 14 20170510124107Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:41:07 2017
    Next Update: Thu May 10 12:41:06 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Wed May 10 12:41:07 2017
    CRL Extensions:
chains.sh: #12328: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510124108Z
addcert 15 20170510124108Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:41:08 2017
    Next Update: Thu May 10 12:41:05 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Wed May 10 12:41:08 2017
    CRL Extensions:
chains.sh: #12329: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12330: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12331: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12332: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #12333: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #12334: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #12335: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #12336: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #12337: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #12338: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:40:55 2017
            Not After : Tue May 10 12:40:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:87:01:1f:5f:67:c6:1a:5d:8a:51:a7:4a:89:d4:bc:
                    8c:2f:85:0c:13:50:0c:45:67:1b:4f:d1:03:db:8f:bb:
                    49:0f:b9:ee:c4:08:0c:6b:21:d6:15:0a:a3:a4:ec:13:
                    d7:86:63:83:c9:b2:11:43:6b:d8:8a:82:f7:8b:5a:3d:
                    db:bc:cc:2a:cf:b9:39:df:c2:1e:4b:5f:09:c9:57:84:
                    d1:1c:b9:cb:35:11:42:34:15:09:47:4e:ea:c7:e9:02:
                    5f:24:14:43:78:7c:b2:4e:56:a4:d8:aa:71:1d:7e:16:
                    12:cd:66:a7:f9:04:2e:6f:3e:50:78:d8:a9:d0:4c:f7:
                    39:71:3e:96:56:83:c8:fd:b7:5d:69:53:d7:db:a8:8b:
                    26:cf:b9:16:f2:40:5e:a4:cc:28:a6:4e:90:8a:f1:63:
                    3f:11:50:b7:f7:f7:46:4a:2c:2e:51:bb:4c:af:70:b8:
                    f2:66:ea:e8:d9:b9:fc:ee:86:1a:c3:8a:d0:d9:f4:a4:
                    0a:11:13:f1:8f:8e:5f:64:0f:5e:02:b2:60:3d:84:ed:
                    35:f3:a8:13:59:f0:20:64:a3:bc:97:c7:3e:c4:af:36:
                    d9:1a:f7:45:aa:7d:c8:2a:c1:4c:99:18:c7:b0:d5:57:
                    73:72:db:35:68:e8:9e:83:d8:b6:38:0d:5a:54:75:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:ab:39:95:ae:1e:02:a7:24:7a:39:5b:58:13:e2:d9:
        8e:91:d5:5f:93:22:45:13:fd:44:95:97:b3:04:7b:e9:
        7f:d1:fe:b8:17:b9:c5:82:e2:be:fc:4c:21:02:ef:df:
        c1:d5:29:74:27:4a:e9:b1:c3:6d:e4:3e:67:4c:5a:59:
        5c:e7:f0:db:b7:b1:a6:68:61:f2:2a:15:ef:8d:16:5e:
        d5:62:36:1e:32:93:bb:3e:05:6b:0c:bb:ff:69:ac:6f:
        d4:63:76:52:72:08:8d:12:76:af:87:83:23:87:49:b5:
        62:bf:bd:1b:d0:01:57:27:de:3e:6a:05:71:00:78:a9:
        b5:88:e0:88:87:40:4e:79:ce:88:82:b2:95:ba:22:92:
        86:ce:1d:7c:92:8f:91:a3:02:bd:c3:fa:b0:2f:83:42:
        af:23:5c:5b:30:fa:be:70:f7:25:3a:91:9d:2c:e0:50:
        04:d5:cd:eb:33:b0:4a:0e:cc:34:19:09:e1:a5:d2:65:
        5b:98:bf:48:52:14:4b:e9:39:ea:d1:9d:73:79:a7:0b:
        03:1f:18:c4:e8:69:ee:1c:0b:e0:28:14:ae:b9:ce:9e:
        af:c9:bc:8d:03:78:3e:cc:85:ef:c6:1d:1e:03:ee:52:
        0e:2d:e9:41:a2:1e:43:71:e7:fb:97:fd:a8:dd:81:c8
    Fingerprint (SHA-256):
        E8:85:A0:11:58:21:EC:CC:FC:2F:80:F6:9A:AB:43:D0:35:ED:A2:68:00:1E:39:CF:34:C7:E5:9A:AA:A3:BC:72
    Fingerprint (SHA1):
        D7:DB:17:DF:1A:4F:56:95:D8:FD:33:B6:98:DB:18:59:50:02:A9:02
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12339: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12340: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:40:55 2017
            Not After : Tue May 10 12:40:55 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:87:01:1f:5f:67:c6:1a:5d:8a:51:a7:4a:89:d4:bc:
                    8c:2f:85:0c:13:50:0c:45:67:1b:4f:d1:03:db:8f:bb:
                    49:0f:b9:ee:c4:08:0c:6b:21:d6:15:0a:a3:a4:ec:13:
                    d7:86:63:83:c9:b2:11:43:6b:d8:8a:82:f7:8b:5a:3d:
                    db:bc:cc:2a:cf:b9:39:df:c2:1e:4b:5f:09:c9:57:84:
                    d1:1c:b9:cb:35:11:42:34:15:09:47:4e:ea:c7:e9:02:
                    5f:24:14:43:78:7c:b2:4e:56:a4:d8:aa:71:1d:7e:16:
                    12:cd:66:a7:f9:04:2e:6f:3e:50:78:d8:a9:d0:4c:f7:
                    39:71:3e:96:56:83:c8:fd:b7:5d:69:53:d7:db:a8:8b:
                    26:cf:b9:16:f2:40:5e:a4:cc:28:a6:4e:90:8a:f1:63:
                    3f:11:50:b7:f7:f7:46:4a:2c:2e:51:bb:4c:af:70:b8:
                    f2:66:ea:e8:d9:b9:fc:ee:86:1a:c3:8a:d0:d9:f4:a4:
                    0a:11:13:f1:8f:8e:5f:64:0f:5e:02:b2:60:3d:84:ed:
                    35:f3:a8:13:59:f0:20:64:a3:bc:97:c7:3e:c4:af:36:
                    d9:1a:f7:45:aa:7d:c8:2a:c1:4c:99:18:c7:b0:d5:57:
                    73:72:db:35:68:e8:9e:83:d8:b6:38:0d:5a:54:75:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:ab:39:95:ae:1e:02:a7:24:7a:39:5b:58:13:e2:d9:
        8e:91:d5:5f:93:22:45:13:fd:44:95:97:b3:04:7b:e9:
        7f:d1:fe:b8:17:b9:c5:82:e2:be:fc:4c:21:02:ef:df:
        c1:d5:29:74:27:4a:e9:b1:c3:6d:e4:3e:67:4c:5a:59:
        5c:e7:f0:db:b7:b1:a6:68:61:f2:2a:15:ef:8d:16:5e:
        d5:62:36:1e:32:93:bb:3e:05:6b:0c:bb:ff:69:ac:6f:
        d4:63:76:52:72:08:8d:12:76:af:87:83:23:87:49:b5:
        62:bf:bd:1b:d0:01:57:27:de:3e:6a:05:71:00:78:a9:
        b5:88:e0:88:87:40:4e:79:ce:88:82:b2:95:ba:22:92:
        86:ce:1d:7c:92:8f:91:a3:02:bd:c3:fa:b0:2f:83:42:
        af:23:5c:5b:30:fa:be:70:f7:25:3a:91:9d:2c:e0:50:
        04:d5:cd:eb:33:b0:4a:0e:cc:34:19:09:e1:a5:d2:65:
        5b:98:bf:48:52:14:4b:e9:39:ea:d1:9d:73:79:a7:0b:
        03:1f:18:c4:e8:69:ee:1c:0b:e0:28:14:ae:b9:ce:9e:
        af:c9:bc:8d:03:78:3e:cc:85:ef:c6:1d:1e:03:ee:52:
        0e:2d:e9:41:a2:1e:43:71:e7:fb:97:fd:a8:dd:81:c8
    Fingerprint (SHA-256):
        E8:85:A0:11:58:21:EC:CC:FC:2F:80:F6:9A:AB:43:D0:35:ED:A2:68:00:1E:39:CF:34:C7:E5:9A:AA:A3:BC:72
    Fingerprint (SHA1):
        D7:DB:17:DF:1A:4F:56:95:D8:FD:33:B6:98:DB:18:59:50:02:A9:02
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12341: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12342: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12343: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123414 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12344: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12345: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12346: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12347: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 510123415   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12348: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12349: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12350: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123186.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12351: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123160.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12352: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12353: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12354: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123186.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12355: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 510123416   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12356: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12357: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12358: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123186.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12359: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123161.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12360: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12361: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12362: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12363: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 510123417   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12364: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12365: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12366: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123186.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12367: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123162.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12368: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12369: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12370: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0-510123186.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12371: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9515/localhost-17937-CA0Root-510123163.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12372: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12373: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170510124122Z
nextupdate=20180510124122Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Wed May 10 12:41:22 2017
    Next Update: Thu May 10 12:41:22 2018
    CRL Extensions:
chains.sh: #12374: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510124122Z
nextupdate=20180510124122Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:41:22 2017
    Next Update: Thu May 10 12:41:22 2018
    CRL Extensions:
chains.sh: #12375: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170510124123Z
nextupdate=20180510124123Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Wed May 10 12:41:23 2017
    Next Update: Thu May 10 12:41:23 2018
    CRL Extensions:
chains.sh: #12376: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170510124123Z
nextupdate=20180510124123Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Wed May 10 12:41:23 2017
    Next Update: Thu May 10 12:41:23 2018
    CRL Extensions:
chains.sh: #12377: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510124124Z
addcert 20 20170510124124Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:41:24 2017
    Next Update: Thu May 10 12:41:22 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:41:24 2017
    CRL Extensions:
chains.sh: #12378: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170510124125Z
addcert 40 20170510124125Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Wed May 10 12:41:25 2017
    Next Update: Thu May 10 12:41:22 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Wed May 10 12:41:24 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Wed May 10 12:41:25 2017
    CRL Extensions:
chains.sh: #12379: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12380: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12381: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12382: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123414 (0x1e67dd96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:41:12 2017
            Not After : Tue May 10 12:41:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:c3:6d:6b:d9:d0:1d:e5:8c:b2:bb:ba:4e:18:be:d8:
                    d8:01:a3:e1:6d:07:29:80:31:15:b0:b3:14:28:1a:ba:
                    86:66:fe:e6:dd:a1:ba:78:c7:91:57:a9:6d:b1:ae:5e:
                    cb:3b:7d:1e:e4:df:b3:68:7c:d6:53:55:3d:40:86:26:
                    98:e5:ae:56:7e:4b:d7:96:ab:82:c4:5d:63:de:e8:5e:
                    b6:d4:91:43:3a:09:e4:a2:5b:ee:7d:40:93:57:20:7d:
                    0a:cc:3b:b9:b1:c9:dd:50:f5:9d:63:cc:0c:a7:b3:c4:
                    6a:98:58:c5:f8:9b:03:49:cc:c2:36:b4:45:87:78:3f:
                    d7:54:4d:c2:08:6a:20:b2:66:a5:ab:f8:c3:1f:cb:2a:
                    67:1a:5e:df:3e:36:bc:1e:73:ad:ae:e6:8e:69:b4:c4:
                    9a:26:a3:3a:37:14:6c:21:84:c2:33:58:74:10:25:75:
                    4a:d5:0a:d2:51:6f:93:8f:23:c8:58:3a:6c:86:ef:b4:
                    4d:a7:d6:a8:8f:2a:02:ae:e1:66:f2:78:95:fd:0c:7b:
                    d6:55:6e:1a:95:d1:0a:6f:9f:5f:ab:65:31:39:07:2d:
                    4d:c5:1d:87:ac:6d:41:d9:66:f4:aa:71:c2:cd:20:db:
                    89:aa:a9:39:d0:61:ba:fe:5d:a1:65:d0:fe:ec:a1:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:34:c4:3c:d8:d5:93:24:fa:f1:52:3c:18:0a:f8:8c:
        04:55:e4:a2:7d:20:5d:2d:eb:54:79:96:15:53:ca:b0:
        61:75:02:ae:cd:73:8e:f0:1c:48:f9:74:e6:4a:ed:66:
        19:57:84:75:45:1d:42:54:3b:7f:05:b3:d1:67:dc:4d:
        7f:64:5a:c1:f7:b8:c9:6a:ed:d6:95:ba:5b:d7:e0:5a:
        91:99:ba:17:07:a3:da:84:62:e4:5e:ff:1e:ad:dc:82:
        c3:8e:35:1d:66:f2:40:af:04:6f:f9:fd:66:56:66:bb:
        52:58:44:31:0a:f9:e1:31:dd:04:42:e1:93:e4:1e:fd:
        34:4b:f5:40:1f:53:6d:0a:13:8e:fd:6e:bf:a7:b3:f8:
        0c:3d:b7:a0:33:76:75:db:96:ed:8a:2e:18:88:d5:bc:
        fa:a1:48:f7:10:cd:cc:30:96:23:c9:30:55:04:db:3f:
        7a:d0:e6:85:7c:e5:50:59:e5:a5:ea:3b:5d:ba:77:ba:
        30:00:a3:08:73:e7:ef:ff:2b:1e:e7:2f:e0:9d:73:9a:
        18:89:23:d9:3f:ea:1d:2d:ad:66:78:df:a2:9b:aa:36:
        34:a8:a3:ec:89:52:bc:b8:c3:b5:7a:74:ef:48:ca:b1:
        44:86:3c:62:56:cb:77:5f:1b:cc:27:21:52:de:76:ef
    Fingerprint (SHA-256):
        D4:F2:4B:AE:61:DB:69:61:39:54:9C:9B:51:53:52:9F:D4:54:F6:3C:45:96:4F:32:54:2C:03:6D:CC:99:E1:0D
    Fingerprint (SHA1):
        26:CB:60:68:12:BF:4E:51:3B:F8:9A:23:73:15:03:FF:9A:3C:8E:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12383: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12384: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123414 (0x1e67dd96)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Wed May 10 12:41:12 2017
            Not After : Tue May 10 12:41:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:c3:6d:6b:d9:d0:1d:e5:8c:b2:bb:ba:4e:18:be:d8:
                    d8:01:a3:e1:6d:07:29:80:31:15:b0:b3:14:28:1a:ba:
                    86:66:fe:e6:dd:a1:ba:78:c7:91:57:a9:6d:b1:ae:5e:
                    cb:3b:7d:1e:e4:df:b3:68:7c:d6:53:55:3d:40:86:26:
                    98:e5:ae:56:7e:4b:d7:96:ab:82:c4:5d:63:de:e8:5e:
                    b6:d4:91:43:3a:09:e4:a2:5b:ee:7d:40:93:57:20:7d:
                    0a:cc:3b:b9:b1:c9:dd:50:f5:9d:63:cc:0c:a7:b3:c4:
                    6a:98:58:c5:f8:9b:03:49:cc:c2:36:b4:45:87:78:3f:
                    d7:54:4d:c2:08:6a:20:b2:66:a5:ab:f8:c3:1f:cb:2a:
                    67:1a:5e:df:3e:36:bc:1e:73:ad:ae:e6:8e:69:b4:c4:
                    9a:26:a3:3a:37:14:6c:21:84:c2:33:58:74:10:25:75:
                    4a:d5:0a:d2:51:6f:93:8f:23:c8:58:3a:6c:86:ef:b4:
                    4d:a7:d6:a8:8f:2a:02:ae:e1:66:f2:78:95:fd:0c:7b:
                    d6:55:6e:1a:95:d1:0a:6f:9f:5f:ab:65:31:39:07:2d:
                    4d:c5:1d:87:ac:6d:41:d9:66:f4:aa:71:c2:cd:20:db:
                    89:aa:a9:39:d0:61:ba:fe:5d:a1:65:d0:fe:ec:a1:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:34:c4:3c:d8:d5:93:24:fa:f1:52:3c:18:0a:f8:8c:
        04:55:e4:a2:7d:20:5d:2d:eb:54:79:96:15:53:ca:b0:
        61:75:02:ae:cd:73:8e:f0:1c:48:f9:74:e6:4a:ed:66:
        19:57:84:75:45:1d:42:54:3b:7f:05:b3:d1:67:dc:4d:
        7f:64:5a:c1:f7:b8:c9:6a:ed:d6:95:ba:5b:d7:e0:5a:
        91:99:ba:17:07:a3:da:84:62:e4:5e:ff:1e:ad:dc:82:
        c3:8e:35:1d:66:f2:40:af:04:6f:f9:fd:66:56:66:bb:
        52:58:44:31:0a:f9:e1:31:dd:04:42:e1:93:e4:1e:fd:
        34:4b:f5:40:1f:53:6d:0a:13:8e:fd:6e:bf:a7:b3:f8:
        0c:3d:b7:a0:33:76:75:db:96:ed:8a:2e:18:88:d5:bc:
        fa:a1:48:f7:10:cd:cc:30:96:23:c9:30:55:04:db:3f:
        7a:d0:e6:85:7c:e5:50:59:e5:a5:ea:3b:5d:ba:77:ba:
        30:00:a3:08:73:e7:ef:ff:2b:1e:e7:2f:e0:9d:73:9a:
        18:89:23:d9:3f:ea:1d:2d:ad:66:78:df:a2:9b:aa:36:
        34:a8:a3:ec:89:52:bc:b8:c3:b5:7a:74:ef:48:ca:b1:
        44:86:3c:62:56:cb:77:5f:1b:cc:27:21:52:de:76:ef
    Fingerprint (SHA-256):
        D4:F2:4B:AE:61:DB:69:61:39:54:9C:9B:51:53:52:9F:D4:54:F6:3C:45:96:4F:32:54:2C:03:6D:CC:99:E1:0D
    Fingerprint (SHA1):
        26:CB:60:68:12:BF:4E:51:3B:F8:9A:23:73:15:03:FF:9A:3C:8E:96
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12385: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12386: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #12387: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123418 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12388: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #12389: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12390: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12391: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 510123419   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12392: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12393: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12394: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12395: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 510123420   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12396: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12397: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12398: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12399: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 510123421   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12400: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12401: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #12402: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -m 510123422 < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12403: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #12404: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #12405: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12406: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 510123423   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12407: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12408: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12409: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12410: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 510123424   < /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12411: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12412: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #12413: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #12414: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #12415: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123418 (0x1e67dd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:41:29 2017
            Not After : Tue May 10 12:41:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:2d:b1:21:7b:0d:c8:fc:4e:6d:dd:5d:aa:74:bf:01:
                    dd:91:15:9d:f0:43:bc:ee:58:83:6b:82:4a:8a:df:50:
                    ff:c9:7a:6f:04:34:e3:13:51:58:e5:cc:4c:f2:7a:79:
                    23:cb:1f:68:3c:e5:d6:16:68:ef:31:d0:ae:4e:92:e7:
                    af:1e:83:8f:5c:33:03:69:48:b4:8f:89:2f:ea:7a:b9:
                    9d:bf:67:94:ba:e9:5a:f8:d2:80:e9:07:ef:d1:36:0c:
                    6e:ef:a3:20:42:75:24:57:ba:cd:49:53:be:06:9a:37:
                    29:10:a4:7f:0f:76:a2:1e:db:c4:ff:72:d0:39:a6:b9:
                    b6:42:30:53:93:f8:b1:af:ca:00:9a:69:d5:b9:f6:76:
                    ff:71:d6:67:54:d8:ce:c7:e6:7f:70:e8:60:51:40:f8:
                    be:f8:c4:65:57:0b:1e:89:98:2d:82:4e:d7:63:43:d9:
                    24:41:d7:f7:d9:dd:f9:b2:58:ff:6d:a5:11:85:48:5a:
                    30:12:30:bd:ed:2e:bb:52:7c:72:63:50:03:e4:ef:95:
                    ca:16:9d:25:38:01:3e:5a:f3:82:7f:14:3e:48:1f:19:
                    83:e7:7b:a8:46:f7:a6:65:1d:a5:50:db:4c:e6:80:d2:
                    37:78:f3:17:d4:c9:34:94:ab:b5:ca:38:c9:aa:21:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:9a:38:be:7b:16:c2:5a:a0:91:c9:e0:67:fd:b5:cc:
        fd:03:b1:36:1e:3c:d7:c5:26:4e:16:19:e3:ad:ce:f5:
        fb:7f:fc:30:ba:6b:be:79:0c:49:54:4a:6d:70:b5:a3:
        a2:28:8d:7d:dd:8c:5b:97:7e:a9:a0:00:0f:ef:c1:2b:
        ab:18:56:c2:04:4c:dc:bb:ec:f9:56:f5:2e:35:ef:30:
        35:f3:c1:aa:fa:38:13:d0:a8:4e:d4:54:0e:50:25:5b:
        11:ad:48:00:d2:39:13:b2:5c:73:9c:df:d7:59:6b:8e:
        de:80:cd:5c:58:d0:22:20:ab:f2:ae:fb:db:45:ba:c9:
        a7:1f:35:84:8e:83:04:5d:82:2e:4a:42:33:09:db:1a:
        0f:a7:bd:99:22:22:54:58:7b:99:3f:3c:6f:ee:65:88:
        0d:4a:af:b6:93:f6:a0:ce:5b:fc:06:0c:db:32:03:c1:
        94:0e:3e:97:8b:44:6c:71:37:e7:9a:ff:9b:1a:b3:ec:
        24:62:61:90:ac:6c:30:0c:55:8e:31:35:90:15:a4:74:
        34:bd:a0:2c:b0:c3:47:c8:05:1b:08:72:3c:b1:42:1b:
        b1:e7:78:aa:7f:61:b7:90:08:72:a9:75:76:c2:dc:6f:
        de:6e:e6:06:39:c9:09:1e:ba:c3:45:d0:42:b7:25:b4
    Fingerprint (SHA-256):
        85:29:CA:D5:D5:5A:20:9F:7E:4E:EE:B9:22:55:4F:A6:1B:79:FB:9D:08:C5:0D:A2:3F:C4:70:65:37:27:62:B1
    Fingerprint (SHA1):
        C8:05:50:BC:A8:75:0E:49:40:C0:F6:32:1F:DF:B3:3A:D3:F0:99:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12416: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123420 (0x1e67dd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:41:32 2017
            Not After : Tue May 10 12:41:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:b7:4b:50:ee:e8:51:88:74:b7:26:2e:67:2b:3e:6a:
                    40:d8:1d:d9:5c:d8:2c:23:0f:e9:9d:08:7e:18:49:fe:
                    8f:13:d7:30:f6:7b:7e:68:bd:fa:af:e5:e7:ef:4f:51:
                    a7:08:e1:59:74:a0:5b:55:11:4c:05:a0:4f:d8:d8:13:
                    9f:42:28:cf:9e:5b:f5:2f:e6:87:ef:6e:d8:9a:2b:21:
                    1f:41:da:33:c9:6e:53:e5:49:8b:b6:4c:2e:6d:6f:9f:
                    64:f1:02:e4:b1:1f:da:ee:1f:77:56:c4:90:3c:ff:8d:
                    fa:9e:ff:f7:c4:fb:97:14:2b:5b:1d:5e:a1:25:23:51:
                    bc:11:01:c5:9b:1f:86:60:e4:54:ab:00:fa:74:87:fd:
                    c2:69:07:c7:7e:a7:97:2d:48:02:76:17:5c:7c:1c:13:
                    75:f3:6c:85:23:4d:73:07:3b:d2:1e:d4:a3:a1:fe:e7:
                    eb:68:d5:65:34:1c:c2:3d:33:d8:a0:94:89:47:c3:70:
                    29:dc:42:89:5f:07:aa:91:d4:13:fc:8f:8c:10:11:aa:
                    c3:f9:2f:bd:b4:e4:39:7e:5c:df:16:b5:32:bc:93:fd:
                    0b:63:a1:1b:1f:61:3c:6a:3c:ec:a1:6d:0d:cf:08:7e:
                    31:4f:d9:30:65:b4:3e:4b:e5:86:58:f9:05:9b:af:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:b1:17:6a:20:bb:5c:dc:a4:8e:57:f6:11:54:77:32:
        80:bf:d7:6d:07:30:e6:3d:c1:15:0d:e2:37:42:7a:d9:
        52:07:93:cc:6e:90:62:9e:36:65:14:68:bf:5f:dd:50:
        d9:b6:cb:c8:89:97:8f:77:44:4a:10:fc:3f:a8:a7:9a:
        ce:e5:69:4d:7f:0f:72:5c:b4:03:f4:ad:a9:d0:98:b0:
        91:f8:04:d1:3a:ae:7e:ef:a0:64:c0:d2:1b:9c:0e:b2:
        cc:96:8d:95:1d:20:70:56:50:32:fa:fd:55:d7:20:2c:
        db:a5:f4:98:28:a5:e5:59:f3:63:59:2a:30:e7:0b:d4:
        e0:f4:ba:08:76:c3:9d:c7:ec:d2:0e:c3:71:f7:e7:2c:
        3e:18:00:8f:5d:f9:e9:25:30:43:e7:91:27:1a:2f:1d:
        a6:8c:55:40:6c:a4:f6:27:c0:4e:60:56:9a:3c:83:96:
        1e:f1:15:f1:18:89:01:65:df:19:e1:49:3c:67:14:d8:
        10:83:5b:7b:f8:8d:7a:eb:fe:42:03:22:5f:d7:3d:cc:
        db:4d:aa:4f:a0:9b:b1:dc:8a:ee:bb:e4:32:7a:de:94:
        f9:b7:de:2c:d7:a5:1c:7c:6f:8c:d3:a2:ff:bc:53:09:
        69:11:f8:28:20:6d:ee:2e:f4:c9:9b:cd:62:b2:4e:38
    Fingerprint (SHA-256):
        E8:55:E0:29:A9:D2:E7:B5:A6:67:45:DE:36:06:8D:40:B0:31:6F:7B:83:61:0B:A8:6F:41:7A:8A:E5:31:5C:DA
    Fingerprint (SHA1):
        46:25:33:97:A0:61:72:69:F0:36:41:D0:1C:7F:EC:57:A7:48:57:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12417: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123418 (0x1e67dd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:41:29 2017
            Not After : Tue May 10 12:41:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:2d:b1:21:7b:0d:c8:fc:4e:6d:dd:5d:aa:74:bf:01:
                    dd:91:15:9d:f0:43:bc:ee:58:83:6b:82:4a:8a:df:50:
                    ff:c9:7a:6f:04:34:e3:13:51:58:e5:cc:4c:f2:7a:79:
                    23:cb:1f:68:3c:e5:d6:16:68:ef:31:d0:ae:4e:92:e7:
                    af:1e:83:8f:5c:33:03:69:48:b4:8f:89:2f:ea:7a:b9:
                    9d:bf:67:94:ba:e9:5a:f8:d2:80:e9:07:ef:d1:36:0c:
                    6e:ef:a3:20:42:75:24:57:ba:cd:49:53:be:06:9a:37:
                    29:10:a4:7f:0f:76:a2:1e:db:c4:ff:72:d0:39:a6:b9:
                    b6:42:30:53:93:f8:b1:af:ca:00:9a:69:d5:b9:f6:76:
                    ff:71:d6:67:54:d8:ce:c7:e6:7f:70:e8:60:51:40:f8:
                    be:f8:c4:65:57:0b:1e:89:98:2d:82:4e:d7:63:43:d9:
                    24:41:d7:f7:d9:dd:f9:b2:58:ff:6d:a5:11:85:48:5a:
                    30:12:30:bd:ed:2e:bb:52:7c:72:63:50:03:e4:ef:95:
                    ca:16:9d:25:38:01:3e:5a:f3:82:7f:14:3e:48:1f:19:
                    83:e7:7b:a8:46:f7:a6:65:1d:a5:50:db:4c:e6:80:d2:
                    37:78:f3:17:d4:c9:34:94:ab:b5:ca:38:c9:aa:21:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:9a:38:be:7b:16:c2:5a:a0:91:c9:e0:67:fd:b5:cc:
        fd:03:b1:36:1e:3c:d7:c5:26:4e:16:19:e3:ad:ce:f5:
        fb:7f:fc:30:ba:6b:be:79:0c:49:54:4a:6d:70:b5:a3:
        a2:28:8d:7d:dd:8c:5b:97:7e:a9:a0:00:0f:ef:c1:2b:
        ab:18:56:c2:04:4c:dc:bb:ec:f9:56:f5:2e:35:ef:30:
        35:f3:c1:aa:fa:38:13:d0:a8:4e:d4:54:0e:50:25:5b:
        11:ad:48:00:d2:39:13:b2:5c:73:9c:df:d7:59:6b:8e:
        de:80:cd:5c:58:d0:22:20:ab:f2:ae:fb:db:45:ba:c9:
        a7:1f:35:84:8e:83:04:5d:82:2e:4a:42:33:09:db:1a:
        0f:a7:bd:99:22:22:54:58:7b:99:3f:3c:6f:ee:65:88:
        0d:4a:af:b6:93:f6:a0:ce:5b:fc:06:0c:db:32:03:c1:
        94:0e:3e:97:8b:44:6c:71:37:e7:9a:ff:9b:1a:b3:ec:
        24:62:61:90:ac:6c:30:0c:55:8e:31:35:90:15:a4:74:
        34:bd:a0:2c:b0:c3:47:c8:05:1b:08:72:3c:b1:42:1b:
        b1:e7:78:aa:7f:61:b7:90:08:72:a9:75:76:c2:dc:6f:
        de:6e:e6:06:39:c9:09:1e:ba:c3:45:d0:42:b7:25:b4
    Fingerprint (SHA-256):
        85:29:CA:D5:D5:5A:20:9F:7E:4E:EE:B9:22:55:4F:A6:1B:79:FB:9D:08:C5:0D:A2:3F:C4:70:65:37:27:62:B1
    Fingerprint (SHA1):
        C8:05:50:BC:A8:75:0E:49:40:C0:F6:32:1F:DF:B3:3A:D3:F0:99:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12418: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #12419: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123418 (0x1e67dd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:41:29 2017
            Not After : Tue May 10 12:41:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:2d:b1:21:7b:0d:c8:fc:4e:6d:dd:5d:aa:74:bf:01:
                    dd:91:15:9d:f0:43:bc:ee:58:83:6b:82:4a:8a:df:50:
                    ff:c9:7a:6f:04:34:e3:13:51:58:e5:cc:4c:f2:7a:79:
                    23:cb:1f:68:3c:e5:d6:16:68:ef:31:d0:ae:4e:92:e7:
                    af:1e:83:8f:5c:33:03:69:48:b4:8f:89:2f:ea:7a:b9:
                    9d:bf:67:94:ba:e9:5a:f8:d2:80:e9:07:ef:d1:36:0c:
                    6e:ef:a3:20:42:75:24:57:ba:cd:49:53:be:06:9a:37:
                    29:10:a4:7f:0f:76:a2:1e:db:c4:ff:72:d0:39:a6:b9:
                    b6:42:30:53:93:f8:b1:af:ca:00:9a:69:d5:b9:f6:76:
                    ff:71:d6:67:54:d8:ce:c7:e6:7f:70:e8:60:51:40:f8:
                    be:f8:c4:65:57:0b:1e:89:98:2d:82:4e:d7:63:43:d9:
                    24:41:d7:f7:d9:dd:f9:b2:58:ff:6d:a5:11:85:48:5a:
                    30:12:30:bd:ed:2e:bb:52:7c:72:63:50:03:e4:ef:95:
                    ca:16:9d:25:38:01:3e:5a:f3:82:7f:14:3e:48:1f:19:
                    83:e7:7b:a8:46:f7:a6:65:1d:a5:50:db:4c:e6:80:d2:
                    37:78:f3:17:d4:c9:34:94:ab:b5:ca:38:c9:aa:21:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:9a:38:be:7b:16:c2:5a:a0:91:c9:e0:67:fd:b5:cc:
        fd:03:b1:36:1e:3c:d7:c5:26:4e:16:19:e3:ad:ce:f5:
        fb:7f:fc:30:ba:6b:be:79:0c:49:54:4a:6d:70:b5:a3:
        a2:28:8d:7d:dd:8c:5b:97:7e:a9:a0:00:0f:ef:c1:2b:
        ab:18:56:c2:04:4c:dc:bb:ec:f9:56:f5:2e:35:ef:30:
        35:f3:c1:aa:fa:38:13:d0:a8:4e:d4:54:0e:50:25:5b:
        11:ad:48:00:d2:39:13:b2:5c:73:9c:df:d7:59:6b:8e:
        de:80:cd:5c:58:d0:22:20:ab:f2:ae:fb:db:45:ba:c9:
        a7:1f:35:84:8e:83:04:5d:82:2e:4a:42:33:09:db:1a:
        0f:a7:bd:99:22:22:54:58:7b:99:3f:3c:6f:ee:65:88:
        0d:4a:af:b6:93:f6:a0:ce:5b:fc:06:0c:db:32:03:c1:
        94:0e:3e:97:8b:44:6c:71:37:e7:9a:ff:9b:1a:b3:ec:
        24:62:61:90:ac:6c:30:0c:55:8e:31:35:90:15:a4:74:
        34:bd:a0:2c:b0:c3:47:c8:05:1b:08:72:3c:b1:42:1b:
        b1:e7:78:aa:7f:61:b7:90:08:72:a9:75:76:c2:dc:6f:
        de:6e:e6:06:39:c9:09:1e:ba:c3:45:d0:42:b7:25:b4
    Fingerprint (SHA-256):
        85:29:CA:D5:D5:5A:20:9F:7E:4E:EE:B9:22:55:4F:A6:1B:79:FB:9D:08:C5:0D:A2:3F:C4:70:65:37:27:62:B1
    Fingerprint (SHA1):
        C8:05:50:BC:A8:75:0E:49:40:C0:F6:32:1F:DF:B3:3A:D3:F0:99:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12420: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123420 (0x1e67dd9c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Wed May 10 12:41:32 2017
            Not After : Tue May 10 12:41:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:b7:4b:50:ee:e8:51:88:74:b7:26:2e:67:2b:3e:6a:
                    40:d8:1d:d9:5c:d8:2c:23:0f:e9:9d:08:7e:18:49:fe:
                    8f:13:d7:30:f6:7b:7e:68:bd:fa:af:e5:e7:ef:4f:51:
                    a7:08:e1:59:74:a0:5b:55:11:4c:05:a0:4f:d8:d8:13:
                    9f:42:28:cf:9e:5b:f5:2f:e6:87:ef:6e:d8:9a:2b:21:
                    1f:41:da:33:c9:6e:53:e5:49:8b:b6:4c:2e:6d:6f:9f:
                    64:f1:02:e4:b1:1f:da:ee:1f:77:56:c4:90:3c:ff:8d:
                    fa:9e:ff:f7:c4:fb:97:14:2b:5b:1d:5e:a1:25:23:51:
                    bc:11:01:c5:9b:1f:86:60:e4:54:ab:00:fa:74:87:fd:
                    c2:69:07:c7:7e:a7:97:2d:48:02:76:17:5c:7c:1c:13:
                    75:f3:6c:85:23:4d:73:07:3b:d2:1e:d4:a3:a1:fe:e7:
                    eb:68:d5:65:34:1c:c2:3d:33:d8:a0:94:89:47:c3:70:
                    29:dc:42:89:5f:07:aa:91:d4:13:fc:8f:8c:10:11:aa:
                    c3:f9:2f:bd:b4:e4:39:7e:5c:df:16:b5:32:bc:93:fd:
                    0b:63:a1:1b:1f:61:3c:6a:3c:ec:a1:6d:0d:cf:08:7e:
                    31:4f:d9:30:65:b4:3e:4b:e5:86:58:f9:05:9b:af:35
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:b1:17:6a:20:bb:5c:dc:a4:8e:57:f6:11:54:77:32:
        80:bf:d7:6d:07:30:e6:3d:c1:15:0d:e2:37:42:7a:d9:
        52:07:93:cc:6e:90:62:9e:36:65:14:68:bf:5f:dd:50:
        d9:b6:cb:c8:89:97:8f:77:44:4a:10:fc:3f:a8:a7:9a:
        ce:e5:69:4d:7f:0f:72:5c:b4:03:f4:ad:a9:d0:98:b0:
        91:f8:04:d1:3a:ae:7e:ef:a0:64:c0:d2:1b:9c:0e:b2:
        cc:96:8d:95:1d:20:70:56:50:32:fa:fd:55:d7:20:2c:
        db:a5:f4:98:28:a5:e5:59:f3:63:59:2a:30:e7:0b:d4:
        e0:f4:ba:08:76:c3:9d:c7:ec:d2:0e:c3:71:f7:e7:2c:
        3e:18:00:8f:5d:f9:e9:25:30:43:e7:91:27:1a:2f:1d:
        a6:8c:55:40:6c:a4:f6:27:c0:4e:60:56:9a:3c:83:96:
        1e:f1:15:f1:18:89:01:65:df:19:e1:49:3c:67:14:d8:
        10:83:5b:7b:f8:8d:7a:eb:fe:42:03:22:5f:d7:3d:cc:
        db:4d:aa:4f:a0:9b:b1:dc:8a:ee:bb:e4:32:7a:de:94:
        f9:b7:de:2c:d7:a5:1c:7c:6f:8c:d3:a2:ff:bc:53:09:
        69:11:f8:28:20:6d:ee:2e:f4:c9:9b:cd:62:b2:4e:38
    Fingerprint (SHA-256):
        E8:55:E0:29:A9:D2:E7:B5:A6:67:45:DE:36:06:8D:40:B0:31:6F:7B:83:61:0B:A8:6F:41:7A:8A:E5:31:5C:DA
    Fingerprint (SHA1):
        46:25:33:97:A0:61:72:69:F0:36:41:D0:1C:7F:EC:57:A7:48:57:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12421: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #12422: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #12423: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #12424: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123418 (0x1e67dd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:41:29 2017
            Not After : Tue May 10 12:41:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:2d:b1:21:7b:0d:c8:fc:4e:6d:dd:5d:aa:74:bf:01:
                    dd:91:15:9d:f0:43:bc:ee:58:83:6b:82:4a:8a:df:50:
                    ff:c9:7a:6f:04:34:e3:13:51:58:e5:cc:4c:f2:7a:79:
                    23:cb:1f:68:3c:e5:d6:16:68:ef:31:d0:ae:4e:92:e7:
                    af:1e:83:8f:5c:33:03:69:48:b4:8f:89:2f:ea:7a:b9:
                    9d:bf:67:94:ba:e9:5a:f8:d2:80:e9:07:ef:d1:36:0c:
                    6e:ef:a3:20:42:75:24:57:ba:cd:49:53:be:06:9a:37:
                    29:10:a4:7f:0f:76:a2:1e:db:c4:ff:72:d0:39:a6:b9:
                    b6:42:30:53:93:f8:b1:af:ca:00:9a:69:d5:b9:f6:76:
                    ff:71:d6:67:54:d8:ce:c7:e6:7f:70:e8:60:51:40:f8:
                    be:f8:c4:65:57:0b:1e:89:98:2d:82:4e:d7:63:43:d9:
                    24:41:d7:f7:d9:dd:f9:b2:58:ff:6d:a5:11:85:48:5a:
                    30:12:30:bd:ed:2e:bb:52:7c:72:63:50:03:e4:ef:95:
                    ca:16:9d:25:38:01:3e:5a:f3:82:7f:14:3e:48:1f:19:
                    83:e7:7b:a8:46:f7:a6:65:1d:a5:50:db:4c:e6:80:d2:
                    37:78:f3:17:d4:c9:34:94:ab:b5:ca:38:c9:aa:21:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:9a:38:be:7b:16:c2:5a:a0:91:c9:e0:67:fd:b5:cc:
        fd:03:b1:36:1e:3c:d7:c5:26:4e:16:19:e3:ad:ce:f5:
        fb:7f:fc:30:ba:6b:be:79:0c:49:54:4a:6d:70:b5:a3:
        a2:28:8d:7d:dd:8c:5b:97:7e:a9:a0:00:0f:ef:c1:2b:
        ab:18:56:c2:04:4c:dc:bb:ec:f9:56:f5:2e:35:ef:30:
        35:f3:c1:aa:fa:38:13:d0:a8:4e:d4:54:0e:50:25:5b:
        11:ad:48:00:d2:39:13:b2:5c:73:9c:df:d7:59:6b:8e:
        de:80:cd:5c:58:d0:22:20:ab:f2:ae:fb:db:45:ba:c9:
        a7:1f:35:84:8e:83:04:5d:82:2e:4a:42:33:09:db:1a:
        0f:a7:bd:99:22:22:54:58:7b:99:3f:3c:6f:ee:65:88:
        0d:4a:af:b6:93:f6:a0:ce:5b:fc:06:0c:db:32:03:c1:
        94:0e:3e:97:8b:44:6c:71:37:e7:9a:ff:9b:1a:b3:ec:
        24:62:61:90:ac:6c:30:0c:55:8e:31:35:90:15:a4:74:
        34:bd:a0:2c:b0:c3:47:c8:05:1b:08:72:3c:b1:42:1b:
        b1:e7:78:aa:7f:61:b7:90:08:72:a9:75:76:c2:dc:6f:
        de:6e:e6:06:39:c9:09:1e:ba:c3:45:d0:42:b7:25:b4
    Fingerprint (SHA-256):
        85:29:CA:D5:D5:5A:20:9F:7E:4E:EE:B9:22:55:4F:A6:1B:79:FB:9D:08:C5:0D:A2:3F:C4:70:65:37:27:62:B1
    Fingerprint (SHA1):
        C8:05:50:BC:A8:75:0E:49:40:C0:F6:32:1F:DF:B3:3A:D3:F0:99:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12425: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123422 (0x1e67dd9e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:41:35 2017
            Not After : Tue May 10 12:41:35 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:95:8b:c1:80:3d:11:5d:43:bb:f4:d8:b0:31:42:93:
                    ae:3b:86:fa:9d:f0:a0:66:fb:80:c3:90:38:bd:f3:eb:
                    13:41:47:24:56:20:e8:98:b7:42:7f:74:16:95:37:6e:
                    48:1c:a4:cb:15:92:1e:9e:4d:01:a0:fb:16:3f:d4:c5:
                    f4:1c:3c:9f:4f:ec:21:fe:cb:3d:d0:16:90:41:29:8c:
                    0f:55:55:3e:70:3f:4e:9f:47:5a:89:61:ed:7e:ea:c7:
                    e8:dd:c1:37:a6:8f:a2:88:50:dc:c6:40:fc:ee:33:6d:
                    8f:8a:fc:61:33:35:9f:69:3b:9e:fd:bc:57:fb:5b:be:
                    a2:29:c5:fd:ba:21:c9:68:cd:cb:38:d0:fc:19:a6:eb:
                    4a:44:86:86:25:d4:9d:c4:fd:63:c6:6e:de:53:3a:e0:
                    1c:66:f9:2c:8f:12:5b:0d:df:81:15:83:37:88:de:68:
                    ce:54:11:fd:4c:d3:29:f5:b1:13:f3:91:9d:f9:a3:73:
                    bd:01:d0:a0:67:31:da:1b:03:59:23:be:06:ba:93:e2:
                    0a:c2:d1:2a:a1:7c:57:9e:3f:1d:92:16:11:ab:e0:7d:
                    df:f1:41:0b:9e:ed:8e:44:ac:65:4a:ec:29:57:c0:17:
                    ee:fd:a7:88:81:68:25:fb:73:75:ef:d8:fe:35:9b:65
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:35:1f:a6:23:ae:39:20:a3:9e:18:ed:6f:2b:69:4a:
        56:c0:34:8c:af:e9:26:7e:3d:99:a6:aa:04:2e:97:84:
        c6:ae:60:77:0f:12:fd:63:f2:c2:20:c6:1b:f1:6f:13:
        8d:1c:18:df:f4:6c:e6:f4:39:2a:42:e7:c4:82:3f:80:
        b1:e1:a0:82:85:43:26:be:db:51:7c:1a:3b:af:43:bc:
        ca:6f:78:35:23:1a:f1:aa:e6:ef:ea:57:b3:0e:66:7d:
        7d:0c:3e:08:06:10:9c:4a:ee:25:4d:2d:93:3e:33:9a:
        30:a1:3d:28:f7:ef:b1:b1:82:a7:1b:c6:16:07:d7:97:
        e3:a2:1d:60:86:39:06:9e:de:17:a7:36:6e:f1:f6:8a:
        93:fb:85:69:85:07:bc:7d:43:a4:db:00:2c:69:ae:09:
        98:a6:92:0e:6a:d4:8d:b3:2d:e6:03:ee:50:85:ab:3c:
        70:63:cd:21:42:66:01:95:9a:72:05:a3:27:24:cc:70:
        3b:5e:fa:b4:12:02:50:32:c5:bd:ae:65:b5:62:25:05:
        e8:e8:2a:ab:f3:1f:14:45:6f:b1:df:7d:e5:30:71:a8:
        e2:44:1d:78:5e:29:42:64:48:b1:56:2f:96:ce:49:fc:
        47:f4:4a:da:34:63:d5:17:f4:07:22:ba:61:8b:10:5c
    Fingerprint (SHA-256):
        69:26:11:3C:34:F2:52:20:0A:13:9C:E2:27:8A:C6:23:06:D7:AC:03:B7:E1:29:A1:1C:4A:E2:31:86:AC:87:7B
    Fingerprint (SHA1):
        27:D8:C1:4C:E7:8B:2F:DE:A3:43:B8:27:DF:4B:A4:A4:07:E6:87:12
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #12426: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123418 (0x1e67dd9a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Wed May 10 12:41:29 2017
            Not After : Tue May 10 12:41:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:2d:b1:21:7b:0d:c8:fc:4e:6d:dd:5d:aa:74:bf:01:
                    dd:91:15:9d:f0:43:bc:ee:58:83:6b:82:4a:8a:df:50:
                    ff:c9:7a:6f:04:34:e3:13:51:58:e5:cc:4c:f2:7a:79:
                    23:cb:1f:68:3c:e5:d6:16:68:ef:31:d0:ae:4e:92:e7:
                    af:1e:83:8f:5c:33:03:69:48:b4:8f:89:2f:ea:7a:b9:
                    9d:bf:67:94:ba:e9:5a:f8:d2:80:e9:07:ef:d1:36:0c:
                    6e:ef:a3:20:42:75:24:57:ba:cd:49:53:be:06:9a:37:
                    29:10:a4:7f:0f:76:a2:1e:db:c4:ff:72:d0:39:a6:b9:
                    b6:42:30:53:93:f8:b1:af:ca:00:9a:69:d5:b9:f6:76:
                    ff:71:d6:67:54:d8:ce:c7:e6:7f:70:e8:60:51:40:f8:
                    be:f8:c4:65:57:0b:1e:89:98:2d:82:4e:d7:63:43:d9:
                    24:41:d7:f7:d9:dd:f9:b2:58:ff:6d:a5:11:85:48:5a:
                    30:12:30:bd:ed:2e:bb:52:7c:72:63:50:03:e4:ef:95:
                    ca:16:9d:25:38:01:3e:5a:f3:82:7f:14:3e:48:1f:19:
                    83:e7:7b:a8:46:f7:a6:65:1d:a5:50:db:4c:e6:80:d2:
                    37:78:f3:17:d4:c9:34:94:ab:b5:ca:38:c9:aa:21:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:9a:38:be:7b:16:c2:5a:a0:91:c9:e0:67:fd:b5:cc:
        fd:03:b1:36:1e:3c:d7:c5:26:4e:16:19:e3:ad:ce:f5:
        fb:7f:fc:30:ba:6b:be:79:0c:49:54:4a:6d:70:b5:a3:
        a2:28:8d:7d:dd:8c:5b:97:7e:a9:a0:00:0f:ef:c1:2b:
        ab:18:56:c2:04:4c:dc:bb:ec:f9:56:f5:2e:35:ef:30:
        35:f3:c1:aa:fa:38:13:d0:a8:4e:d4:54:0e:50:25:5b:
        11:ad:48:00:d2:39:13:b2:5c:73:9c:df:d7:59:6b:8e:
        de:80:cd:5c:58:d0:22:20:ab:f2:ae:fb:db:45:ba:c9:
        a7:1f:35:84:8e:83:04:5d:82:2e:4a:42:33:09:db:1a:
        0f:a7:bd:99:22:22:54:58:7b:99:3f:3c:6f:ee:65:88:
        0d:4a:af:b6:93:f6:a0:ce:5b:fc:06:0c:db:32:03:c1:
        94:0e:3e:97:8b:44:6c:71:37:e7:9a:ff:9b:1a:b3:ec:
        24:62:61:90:ac:6c:30:0c:55:8e:31:35:90:15:a4:74:
        34:bd:a0:2c:b0:c3:47:c8:05:1b:08:72:3c:b1:42:1b:
        b1:e7:78:aa:7f:61:b7:90:08:72:a9:75:76:c2:dc:6f:
        de:6e:e6:06:39:c9:09:1e:ba:c3:45:d0:42:b7:25:b4
    Fingerprint (SHA-256):
        85:29:CA:D5:D5:5A:20:9F:7E:4E:EE:B9:22:55:4F:A6:1B:79:FB:9D:08:C5:0D:A2:3F:C4:70:65:37:27:62:B1
    Fingerprint (SHA1):
        C8:05:50:BC:A8:75:0E:49:40:C0:F6:32:1F:DF:B3:3A:D3:F0:99:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12427: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #12428: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #12429: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #12430: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #12431: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #12432: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 510123423 (0x1e67dd9f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Wed May 10 12:41:36 2017
            Not After : Tue May 10 12:41:36 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:b6:39:75:27:ff:d0:09:80:d4:12:d4:cb:2a:30:6d:
                    e5:f5:5e:17:38:8c:01:93:bd:2a:f6:72:e4:48:70:7b:
                    fc:32:7c:97:0f:d2:f2:13:15:07:06:75:26:ae:f0:37:
                    2a:a8:88:27:50:5b:18:e4:4f:3b:0f:de:cb:41:72:aa:
                    4b:b6:6b:b7:7a:aa:27:ed:4c:f3:6e:cc:8c:d7:17:60:
                    98:a5:4c:a5:a1:2b:c3:79:f1:68:91:44:78:5d:ef:e7:
                    ab:f4:8a:14:9e:1d:54:5b:46:36:0e:81:74:2a:0e:26:
                    ad:7c:a6:18:0c:74:90:08:5c:d9:b4:3f:35:f0:50:f6:
                    cb:7c:8f:d7:8e:2b:f3:37:19:f7:6a:13:cd:0f:75:8f:
                    79:8d:4e:17:1a:1e:ae:fa:d8:cf:f0:58:bb:de:23:31:
                    07:30:6c:15:cc:f2:c9:58:66:0f:8a:df:d1:fe:65:48:
                    dd:8b:17:08:2f:a2:09:21:39:b9:04:55:a4:e1:62:22:
                    dc:43:d6:8f:19:a2:f5:c5:44:d3:43:78:19:9f:41:33:
                    b7:5c:7f:7b:4b:05:1b:ac:48:23:2c:7f:f4:a0:ed:ca:
                    54:e1:79:fe:76:1c:7d:fd:41:a5:09:f0:e4:bd:ec:fa:
                    70:f0:dd:6d:5a:c6:bf:f5:f5:99:8a:ce:01:13:af:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:c0:cb:bc:6e:f2:c4:6f:b8:bc:da:7a:72:e5:72:a8:
        06:86:b1:3a:50:f6:e8:3e:b2:0e:f8:71:8b:a3:fd:9c:
        c4:4d:ec:72:56:6a:fd:b6:57:e4:e3:26:05:0e:dd:e7:
        c2:26:34:31:fa:48:bb:79:b1:47:be:61:15:c4:31:33:
        f0:20:89:2b:f7:f3:4a:77:e4:cf:37:21:1c:cf:be:22:
        bb:fa:3c:95:fa:46:1a:56:05:06:ee:ff:57:6e:53:02:
        ee:e8:a2:1e:29:7c:c1:54:f2:ab:5b:98:a6:ff:74:03:
        ea:52:87:d1:13:98:1e:ad:bd:ce:d6:1e:61:35:d2:76:
        97:d6:20:3c:89:4c:37:4f:5e:b1:c4:24:f5:e0:73:3f:
        cc:b8:1d:08:7d:28:65:3b:e4:d2:eb:10:ac:9c:e3:a7:
        63:1b:ed:18:19:68:04:eb:61:c5:63:c2:de:16:1c:9c:
        d2:18:50:2c:e9:c7:d9:04:41:f8:05:aa:14:5d:1a:ba:
        7f:48:31:43:83:d7:e2:75:b3:cb:56:a3:f1:05:08:c4:
        c8:79:29:73:e9:8b:28:a7:32:2c:a7:01:41:cb:31:67:
        ef:13:35:f5:65:4a:a1:db:ec:34:cd:45:b9:5b:98:48:
        f0:f4:57:f7:67:48:61:1c:6b:48:e8:82:b0:58:2a:d5
    Fingerprint (SHA-256):
        A6:8A:DB:CB:E9:35:DF:CC:20:22:91:51:D6:2C:9A:B8:27:B8:E1:26:1E:D0:7C:A1:D7:60:A7:94:46:09:8E:5D
    Fingerprint (SHA1):
        9E:2F:39:82:2B:71:5A:87:B2:52:91:39:C0:00:51:5F:0F:83:B2:72
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12433: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #12434: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #12435: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #12436: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #12437: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12438: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12439: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12440: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12441: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12442: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12443: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12444: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12445: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12446: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12447: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12448: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12449: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12450: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12451: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12452: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12453: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12454: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12455: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.30.2/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12456: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 1509 at Wed May 10 12:41:46 UTC 2017
kill -USR1 1509
httpserv: normal termination
httpserv -b -p 9515 2>/dev/null;
httpserv with PID 1509 killed at Wed May 10 12:41:46 UTC 2017
TIMESTAMP chains END: Wed May 10 12:41:46 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Wed May 10 12:41:46 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Wed May 10 12:41:46 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #12457: ec(perf) test - PASSED
TIMESTAMP ecperf END: Wed May 10 12:41:46 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Wed May 10 12:41:46 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12458: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12459: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12460: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12461: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #12462: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #12463: pk11 ec tests - PASSED
TIMESTAMP ectest END: Wed May 10 12:41:48 UTC 2017
TIMESTAMP ec END: Wed May 10 12:41:48 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Wed May 10 12:41:48 UTC 2017
gtests: prng_gtest der_gtest pk11_gtest util_gtest
gtests.sh: #12464: Skipping prng_gtest (not built) - UNKNOWN
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (1 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (10 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (13 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #12465: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.30.2/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #12466: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #12467: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #12468: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #12469: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #12470: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #12471: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #12472: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #12473: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #12474: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #12475: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #12476: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #12477: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #12478: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #12479: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #12480: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #12481: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #12482: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #12483: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Wed May 10 12:41:48 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Wed May 10 12:41:48 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #12484: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12485: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12486: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12487: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12488: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12489: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12490: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12491: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12492: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12493: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12494: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12495: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12496: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12497: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12498: create certificate: sign  - PASSED
ssl_gtest.sh: #12499: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Wed May 10 12:41:56 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=1
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             12483
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     16
TinderboxPrint:Unknown: 16
+ popd
~/build/BUILD/nss-3.30.2
+ killall selfserv_9505
selfserv_9505: no process found
+ :
+ '[' x == x ']'
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
okay: test suite detected no failures
test suite completed
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Processing files: nss-3.30.2-1.1.fc26.aarch64
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.Qj1Imv
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ LICENSEDIR=/builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/licenses/nss
+ export LICENSEDIR
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/licenses/nss
+ cp -pr nss/COPYING /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64/usr/share/licenses/nss
+ exit 0
Provides: config(nss) = 3.30.2-1.1.fc26 libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.10.2)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.11.9)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.10)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.4)(64bit) libnss3.so(NSS_3.12.5)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.7)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.13.2)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.15.4)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.19)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.2.1)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.7.1)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssckbi.so()(64bit) libnssckbi.so(NSS_3.1)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.12.10)(64bit) libsmime3.so(NSS_3.12.2)(64bit) libsmime3.so(NSS_3.13)(64bit) libsmime3.so(NSS_3.15)(64bit) libsmime3.so(NSS_3.16)(64bit) libsmime3.so(NSS_3.18)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.2.1)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.4.1)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.7)(64bit) libsmime3.so(NSS_3.7.2)(64bit) libsmime3.so(NSS_3.8)(64bit) libsmime3.so(NSS_3.9)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.11.4)(64bit) libssl3.so(NSS_3.11.8)(64bit) libssl3.so(NSS_3.12.10)(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.2.1)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.21)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.23)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.28)(64bit) libssl3.so(NSS_3.30)(64bit) libssl3.so(NSS_3.30.0.1)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) nss = 3.30.2-1.1.fc26 nss(aarch-64) = 3.30.2-1.1.fc26
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.3)(64bit) libnssutil3.so(NSSUTIL_3.12.5)(64bit) libnssutil3.so(NSSUTIL_3.13)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libnssutil3.so(NSSUTIL_3.17.1)(64bit) libnssutil3.so(NSSUTIL_3.21)(64bit) libnssutil3.so(NSSUTIL_3.24)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.17)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Conflicts: firefox < 50.1.0-3 seamonkey < 2.46-2 thunderbird < 45.6.0-5 xulrunner < 44.0-9
Processing files: nss-tools-3.30.2-1.1.fc26.aarch64
Provides: nss-tools = 3.30.2-1.1.fc26 nss-tools(aarch-64) = 3.30.2-1.1.fc26
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.7)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.17)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libsoftokn3.so()(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-sysinit-3.30.2-1.1.fc26.aarch64
Provides: libnsssysinit.so()(64bit) nss-sysinit = 3.30.2-1.1.fc26 nss-sysinit(aarch-64) = 3.30.2-1.1.fc26 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) rtld(GNU_HASH)
Processing files: nss-devel-3.30.2-1.1.fc26.aarch64
Provides: nss-devel = 3.30.2-1.1.fc26 nss-devel(aarch-64) = 3.30.2-1.1.fc26 nss-static = 3.30.2-1.1.fc26 pkgconfig(nss) = 3.30.2
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.14.0 pkgconfig(nss-util) >= 3.30.2
Processing files: nss-pkcs11-devel-3.30.2-1.1.fc26.aarch64
Provides: nss-pkcs11-devel = 3.30.2-1.1.fc26 nss-pkcs11-devel(aarch-64) = 3.30.2-1.1.fc26 nss-pkcs11-devel-static = 3.30.2-1.1.fc26
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.30.2-1.1.fc26.aarch64
Provides: nss-debuginfo = 3.30.2-1.1.fc26 nss-debuginfo(aarch-64) = 3.30.2-1.1.fc26
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64
Wrote: /builddir/build/RPMS/nss-3.30.2-1.1.fc26.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.30.2-1.1.fc26.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.30.2-1.1.fc26.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.30.2-1.1.fc26.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.30.2-1.1.fc26.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.30.2-1.1.fc26.aarch64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.DwuYqy
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.30.2
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.30.2-1.1.fc26.aarch64
+ exit 0
Child return code was: 0